Join our Talent Network >

Senior Cybersecurity Analyst Vulnerability Management

Job ID: 2211157
Location: SAN DIEGO, CA, United States
Date Posted: Aug 5, 2022
Category: Cyber
Subcategory: Cybersecurity Spec
Schedule: Full-time
Shift: Day Job
Travel: No
Minimum Clearance Required: Secret
Clearance Level Must Be Able to Obtain: None
Potential for Remote Work: Hybrid Remote
Benefits: Click here

Share: mail

Job Description


SAIC is looking for a Cybersecurity Vulnerability Analyst to provide contract support for a contracted located in San Diego, CA.This position supports the Assessment and Authorization (A&A) cybersecurity efforts for NIWC PAC code 82000 to support the Research, Development, Test & Evaluation (RDT&E) network.

The Cybersecurity Vulnerability Analyst II will serve as a Risk Management Framework (RMF) Subject Matter Expert (SME) for all network security architectures, designs, implementations, and operations within 3 NIWC Pacific RDT&E systems, networks, and applications with emphasis on ACAS support. Additionally, the candidate will provide engineering and technical support for the testing of systems, software, tools and products while identifying operational and functional requirements of new, developing and existing systems and develop a system security approach, which includes but not limited to defining potential threats, vulnerabilities, safeguards, and risk factors.

Roles and associated responsibilities

  • Shall perform analysis of cybersecurity directives, policies and instructions to include, but not limited to: Communications Task Orders (CTOs), Fragmentary/Task/Operation Orders (FRAG/TASK/OPORDs),
  • IA Vulnerability Management (IAVM), Public Key Infrastructure (PKI) guidance, ACAS and STIG
  • requirements.
  • Ability to build and maintain an ACAS server, and know how to create/generate reports from Security     
  • Center.
  • Experience with updating ACAS licenses in order to keep ACAS in compliance.
  • Perform and have the ability to update ACAS plug-ins
  • Ensure configuration, asset, remediation, and mitigation management supports vulnerability 
  • management efforts within the DODIN.
  • Identify and provide guidance on security-relevant configurations for DoD.
  • Ensure compliance with DoD vulnerability notification and corrective action process.
  • Coordinate vulnerability risk reports and assessments within NIWC PAC as required.
  • Interface with NIWC Pacific supported programs/projects to provide technical consulting/advisory     
  •  support services required to ensure accurate vulnerability management of NIWC Pacific Corporate,
  •  Program of Record (POR), operationally supported, and various RDT&E and joint assets to the Navy's Vulnerability Remediation and Asset Management (VRAM) tool or other government directed tool.
  • Determine the impact compliance with these directives will have on the security and operability of     
  • the RDT&E network and make recommendations to the government regarding strategies to meet compliance objectives.
  • Track and report compliance status in the Vulnerability Remediation Asset Manager (VRAM) and
  • similar reporting tools as applicable
  • Perform risk analysis/independent verification on security configuration and STIG finding risk reports /
  • POA&Ms for devices on the RDT&E network.
  • Support Federal Information Security Management Act (FISMA) data reporting requirements.


Required Education and Experience: 

  • Bachelor's Degree in (STEM), or an Information Technology (IT) related field AND five (5) years of relevant work experience, OR Associate's Degree in an Information Technology (IT) related field AND eight (8) years of relevant work experience, OR High School Diploma or equivalent AND ten (10) years of relevant work experience relevant to the specific cybersecurity task area to be performed.

Required skills:

  • NQV Level I or II qualification.
  • Risk Management Framework (RMF).
  • Threat and Vulnerability Analysis.
  • ACAS Administration experience.
  • HBSS experience.

Required Certifications:

  • IAT Level II/IAM-1 (CAP or Security+ CE), ACAS Administrator, Linux +, Red Hat System

Required Clearance:

  • Must have an active Secret clearance.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.


SAIC® is a premier Fortune 500® technology integrator driving our nation's technology transformation. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes secure high-end solutions in engineering, digital, artificial intelligence, and mission solutions. Using our expertise and understanding of existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions that are critical to achieving our customers' missions.

We are more than 26,500 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer, fostering a respectful work culture based on diversity, equity, and inclusion that values all contributors. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.1 billion. For more information, visit

Share: mail

Similar Jobs

Cyber Engineer Sr

SAN DIEGO, CA, United States

Information System Security Manager

SAN DIEGO, CA, United States

Senior Cybersecurity Analyst Vulnerability Management

SAN DIEGO, CA, United States