Join our Talent Network >

Senior Cyber Security Analyst

Job ID: 1924043
Location: RICHMOND, VA, United States
Date Posted: Oct 16, 2019
Category: Cyber
Subcategory: Cyber Sec Analyst
Schedule: Full-time
Shift: Day Job
Travel: No
Minimum Clearance Required: None
Clearance Level Must Be Able to Obtain: None
Potential for Teleworking: No

Share: mail

Job Description


SAIC is seeking a Senior Cybersecurity Analyst to join our MSI Team supporting a major state & local government customer.


About the SAIC MSI Program

Science Applications International Corp. (NYSE: SAIC) has been awarded a $165 million contract by the Commonwealth of Virginia to serve as a Multisourcing service integrator (MSI). Under the contract, SAIC will provide an innovative approach to assist the Virginia Information Technologies Agency (VITA) with modernizing the state’s technology infrastructure. Under the contract, SAIC will coordinate and monitor multiple IT infrastructure services suppliers for state executive branch agencies. The MSI is the cornerstone of a strategy that will diversify the state’s portfolio of suppliers, improve service delivery quality, ensure cost-competitiveness, and provide transparency and accountability into the commonwealth’s service delivery platform.

Position Summary

SAIC is seeking a Cybersecurity Analyst to join our team supporting a major state & local government customer.  Your Role is to act as a Senior Technical Resource and Mentor for the Security Incident Response (IR) Team. This is a very hands on Cyber Security role. 

Essential duties of this position include:
  • Lead and participate in threat actor based investigations, create new detection methodologies, and provided expert support for security incident response and monitoring functions
  • Proactive Threat Intel and Vulnerability Management:  Track threat actors and associated tactics, techniques, and procedures (TTPs)
  • Work with the Team Lead and guide team efforts while working with other Service Tower Suppliers and Customers to develop plans for the integration of supplier processes into the VITA Security Incident Response Program
  • Participate in team efforts of the development and maintenance of technical guidance and oversight for the Incident Response Management tools and procedures
  • Lead Security Incident Response Desktop Exercises with all Service Tower Suppliers and Customers, and provide oversight for Service Tower Supplier Incident Response POC training to maintain compliance with Commonwealth and IT Infrastructure (ITISP) requirements
  • Participate in efforts to align Security Incident Response Management as Process Owner for Operational Security Processes (Cross-Functional) as they relate to the individual Service Tower Supplier’s Response
  • Coordinate with Service Tower Supplier Incident Response POC ensure Processes are maintained and updated on a regular basis

The Cybersecurity Analyst performs a critical management role ensuring that the technology underpinning supporting IT support processes and workflows are working effectively, reliably, and efficiently to meet service objectives and customer expectations. You will have the opportunity to solve complex problems, coordinate with multiple suppliers, and optimize processes through automation. This position offers the chance to research and analyze cybersecurity capabilities to satisfy data protection requirements. The Cybersecurity Analyst will also play a key role in representing current capabilities, and support development of future capabilities of supporting ITSM tools.  This is a key concept in contributing to a long-term strategy using tactical activities and paving the way for continual improvement of the environment to meet security objectives for a satisfying customer experience.


Background / Experience

  • Provides primary expertise for security incident response and handling based on NIST processes
  • Provides the ability to create, and maintain processes and procedures to support a robust security incident response program
  • Provides support to plan, coordinate, and implement tactical response to improve the organization’s information security posture
  • Supports Team efforts of colleagues to design, develop, engineer and implement solutions to meet security requirements
  • Supports the implementation and maintenance of the MSI security detection protocols
  • Gathers and organizes technical information about existing security products, and ongoing programs
  • A working knowledge of security practices and procedures; knowledge of current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/tools; familiarity with commercial products, current Internet/EC technology, and open source methodologies
  • Provide support for monitoring events and ongoing maintenance activities
  • Working Knowledge and understanding of management tools used to detect most anomalies within the infrastructure
  • Strong attention to detail and organizational skills
  • Demonstrated previous leadership, deep technical risk analysis, understanding of engineering and architectural system design concepts
  • Ability to write and verbally communicate information security and risk-related concepts effectively to both technical and non- technical audiences
  • Must have strong problem- solving and analytical skills and demonstrate poise and ability to act calmly and competently in high-pressure, high-stress situations
  • Experience working with managing Security Incidents across multiple suppliers, customers, technologies, and processes
  • Support the development of cybersecurity technical roadmaps and documentation to drive constant cyber transformation and improvements for the MSI Program
  • Collaborate using networks and professional relationships to achieve common goals
  • Be a cybersecurity leader, and provide mentorship for less experienced cybersecurity practitioners

Education / Certifications

  • Bachelors in Information Systems, Computer Science, Information Security or related IT field and five (5) years or more of related experience; Masters and five (5) years or more of related experience.  In lieu of a degree, 4 years of additional related experience to the above may be considered with 3+ years relevant risk assessment, information security / analytical experience
  • Working knowledge of Security Standards/Controls specified under various IT governance and compliance models (NIST, ISO 27001&27002, ITIL, SOX, and DFARS/FARS). This includes Applications and Systems Development Security, Security Management Practices, Access Control, Security Architecture and Modeling, Telecommunications, Network Security, Cryptography (PKI), Operations Security, and Physical Security Controls Experience in security hardening and firewall configurations that reflect best practice secure settings based on industry benchmark and / or exceptions that minimize risk to the security and enable business
  • Fundamental technical knowledge of Active Directory, Windows and Linux OSes, VMWare, SDDC and Virtual firewalls, networks, Oracle, SQL, stored procedures, scripts and reports. Experienced with: Linux, Unix, and multiple MS Office products including SharePoint
  • Solid understanding and technical knowledge of common cybersecurity engineering, architecture and design and principles
  • Experience acting as a Subject Matter Expert or team lead providing guidance to others
  • Demonstrate success leading and conducting senior level security risk analysis. Specifically, threat modeling involving system decomposition, threat and vulnerability discovery and mitigation
  • Possess security certification preferred, such as (CISM, CISSP, CSSP Incident Responder Certification)

Desired Qualifications

  • Proven ability to work with cross-functional teams
  • Strong communication skills; person in this role must be able to successfully communicate with management personnel, technical personnel, the customer, and third parties
  • Self-starter and Team contributor; must be able to perform in a Team environment, and with tasked with a priority to complete with limited or no supervision
  • Possesses strong drive and initiative, matured development of listening skills
  • Demonstrate timely task completion involving solid organizational skills, task tracking, and follow-up, and productive peer interaction
  • Possess strong technical writing, verbal and presentation skills especially when communicating with other internal SAIC business units, Project Managers, Executives, and Peer Review working groups
  • Provide feedback on internal processes required to help train and mentor other less seasoned security practitioners as needed
  • Familiarity with common cybersecurity COTS products and their integration in a large enterprise environment


SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability

Share: mail

Similar Jobs

Cyber Security Analyst

RICHMOND, VA, United States

Senior Cyber Security Analyst

RICHMOND, VA, United States

Provide your information to receive jobs that fit you by keywords, location, and more,
and then receive great opportunities based on your skills and experience.

Join our Talent Network >