Join our Talent Network >

Senior Cyber Defense Posture Evaluation Team

This job posting is no longer active.

Job ID: 199368
Location: SHAW AFB, SC, United States
Date Posted: Jun 2, 2020
Category: Cyber
Subcategory: Cyber Sec Analyst
Schedule: Full-time
Shift: Day Job
Travel: Yes, 10 % of the Time
Minimum Clearance Required: TS/SCI
Clearance Level Must Be Able to Obtain: TS/SCI
Potential for Remote Work: No

Share: mail

Job Description

Description

Join SAIC’s Information Technology (IT) Support Services Team in the Network Operations and Security Center (NOSC) of the US Air Forces Central Command (USAFCENT) Communications Directorate (A6). This opportunity places you at the tip of the spear for Engineering, Operations and Maintenance, Cyber Security, and Defensive Cyber Operations supporting the warfighter in the Southwest Asia area.

 

USAFCENT is the air component of United States Central Command (USCENTCOM), a regional unified command. USAFCENT, in concert with its coalition, joint and interagency partners, delivers decisive air and space power on behalf of USCENTCOM for the security and stability of the Southwest Asia (SWA) region. The USAFCENT NOSC delivers cyberspace command and control (C2) superiority to the warfighter by engineering, implementing, securing, managing, operating and maintaining USAFCENT’s Non-Classified Internet Protocol Router Network (NIPRNet), Secret Internet Protocol Router (SIPRNet), USCENTCOM Partner Networks (CPN-X), and associated C2 networks, systems and services.

 

The USAFCENT NOSC executes the full-spectrum of IT services management and operations for USAFCENT networks 24 hour-a-day, 7 day-a-week (24/7); and is tasked by USCENTCOM to provide information assurance (IA) boundary intrusion detection and intrusion prevention for USCENTCOM components. Comprised of NOSC operations, operations support, cybersecurity, network engineering, and command support functions, the USAFCENT NOSC plans, engineers, installs, integrates, operates and maintains, protects and manages enterprise-wide network and systems architecture, infrastructure and services; and provides enterprise-level oversight to its subordinate and supported communications support activities.

 

Candidates will be working at Shaw AFB, SC and/or Lackland AFB, TX. Frequent temporary duty (TDY) and/or deployment travel to OCONUS locations in the USCENTCOM AOR is required to support sustainment, site surveys, installations, upgrades, integration, testing, troubleshooting and other mission-related requirements.

 

The candidate for this position develops technical solutions to complex problems which require the regular use of ingenuity and creativity, exercises considerable latitude in determining technical objectives of assignment, exercises judgment in selecting methods, techniques and evaluation criteria for obtaining results, applies extensive technical expertise and has full knowledge of other related disciplines, provides guidance to subordinates to achieve goals in accordance with established policies and establishes and recommends changes to policies which affect subordinate organization(s).

 

The Senior Cyber Defense Posture Evaluation Team:

  • Designs, tests, and implements secure operating systems, networks, security monitoring, tuning and management of IT security systems and applications, incident response, digital forensics, loss prevention, and eDiscovery actions.

  • Conducts risk and vulnerability assessment at the network, system and application level.

  • Conducts threat modeling exercises.
  • Develops and implements security controls and formulates operational risk mitigations along with assisting in security awareness programs.

  • Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.

  • Researches, evaluates and recommends new security tools, techniques, and technologies and introduces them to the enterprise in alignment with IT security strategy.

  • Utilizes COTS/GOTS and custom tools and processes/procedures in order to scan, identify, contain, mitigate and remediate vulnerabilities, and intrusions. 

  • Assists in the implementation of the required government policy (i.e., NISPOM, DCID 6/3), and makes recommendations on process tailoring.

  • Performs analyses to validate established security requirements and to recommend additional security requirements and safeguards.

  • Supports the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results, and preparation of required reports.

  • Periodically conducts a review of each system's audits and monitors corrective actions until all actions are closed. 

  • May support cyber metrics development, maintenance and reporting.

  • May provide briefings to senior staff.
  • Utilizes COTS/GOTS and custom tools and processes/procedures in order to scan, identify, contain, mitigate and remediate vulnerabilities, and intrusions. 

  • Assists in the implementation of the required government policy (i.e., NISPOM, DCID 6/3), and makes recommendations on process tailoring.

  • Performs analyses to validate established security requirements and to recommend additional security requirements and safeguards.

  • Supports the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results, and preparation of required reports.

  • Periodically conducts a review of each system's audits and monitors corrective actions until all actions are closed. 

  • May support cyber metrics development, maintenance and reporting. May provide briefings to senior staff.  

  • Represents organization as prime technical contact on contracts and projects. 

  • Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.

Specific duties for this position include, but are not limited to:

  • Apply system security engineering principles to provide realistic a Network Health validation designed to enhance the USAFCENT security posture.

  • Execute and assist in shaping policy in line with RMF regulations. Adhering to standard physical security, information security and information assurance policies under the Cyber Readiness-365 engineering procedures and processes. Support auditing effort for all of USAFCENT’s mission-based enclaves and systems, as well as implementation of technical controls and ongoing vulnerability management processes (i.e., STIG, IAVA/IAVM, etc.).

  • Support Command Cyber Readiness Inspection preparations, to include mock CCRI audits, data collection and reporting, Score Card updates, Plan of Actions and Milestones (POA&M) updates, routine assessment reports and assisting OEM Remediation Team.

  • Will be able to evaluate different network and enclave configurations with respect to the National Institute of Standards and Technology (NIST) 800-53 Security Controls and formulate and execute effective auditing and incident response programs.

  • Be involved in supporting the RMF C&A process, maintenance, POA&M development and maintenance, authoring RMF Policy/Procedures, and similar activities.

  • Track, document, and report all security related events, including, but not limited to, Discharge of Classified Information and Cross Domain Violations IAW USCENTCOM/USAFCENT policy.

  • Coordinate and track Information Assurance Vulnerabilities Alerts (IAVA). Review and report USAFCENT compliance to USCENTCOM and develop Plans, Objectives, Actions and POA&M if unable to complete task.

  • Contractor shall coordinate all evaluations with the appropriate section-head. Section-head will determine time and date of evaluations based on operational tempo and availability of personnel.

  • Contractor shall produce written reports defining each inspection/evaluation to include, processes, procedures, findings, and recommendation. Due to the sensitivity of the reports they will only be reviewed by the NOSC Commander, appropriate section-head, or the individual themselves. Documents will be safeguarded in accordance with Privacy Act directives.


Qualifications

Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience ; PhD or JD and four (4) years or more experience. In addition the following certifications and skills are required: Security+ or CCNA-Sec, MCP – Server, MCSD App Builder, and ITIL Foundation. 



Overview

SAIC is a premier technology integrator solving our nation's most complex modernization and readiness challenges. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes high-end solutions in engineering, IT, and mission solutions. Using our expertise in existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions. We are 25,500 strong; driven by mission, united by purpose, and inspired by opportunities. Headquartered in Reston, Virginia, SAIC has pro forma annual revenues of nearly $7.1 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom. For SAIC benefits information, see Working at SAIC. EOE AA M/F/Vet/Disability

Share: mail