Join our Talent Network >

Senior Compliance Management Specialist

This job posting is no longer active.

Job ID: 2015371
Location: WASHINGTON DC, DC, United States
Date Posted: Dec 21, 2020
Category: Cyber
Subcategory: Cyber Sec Analyst
Schedule: Full-time
Shift: Day Job
Travel: Yes, 10 % of the Time
Minimum Clearance Required: None
Clearance Level Must Be Able to Obtain: Public Trust
Potential for Remote Work: Yes
Benefits: Click here

Share: mail

Job Description


SAIC is seeking a Senior Compliance Management Specialist in Washington DC.  This is support the Department of Health and Human Services (HHS) cybersecurity mission to ensure HHS can actively protect the vital health information with which it is entrusted, respond to existing and emerging cybersecurity threats, and continue to enhance the program to ensure HHS has the capability and capacity to respond to new and emerging requirements, technologies and threats.


The Information Assurance SME ensures information and information technology (IT) assets are appropriately secure and compliant with federal regulations and industry-best security practices   The Information Assurance SME shall deliver services and support to the client delivery of Cybersecurity, Operations, Governance, Risk Management, and Compliance (GRC) services to support the client’s Cybersecurity mission  The Information Assurance SME will plan and implement wide policies, procedures, standards, and controls to govern enterprise level protection of corporate information systems, networks, and data down to subordinate level divisions  The Information Assurance SME will stay up-to-date on the latest cybersecurity intelligence, including hackers' methodologies, in order to modify frameworks, standards, policies, and security controls that govern cybersecurity across the client’s information resources  The Information Assurance SME will provide security engineering, security tools support and asset management for the ongoing improvement, analysis, recommendations, and continuous improvement of the client’s cybersecurity maturity.


Duties and responsibilities include but are not limited to:

  • Work closely with project managers and other senior technical leads to ensure objectives are met

  • Provide oral reports/briefings, presentations and thought leadership to stakeholders

  • Lead the review of policies and supporting procedures/processes to identify gaps

  • Lead the assessment of 3rd party vendors for adherence to standards

  • Architect, implement, and support monitoring of GRC information within the Divisions

  • Lead the management, monitoring, and tracking of audit engagements to include coordinating with necessary stakeholders, crafting responses for government review and approval

  • Review, analyze, and provide SME guidance for compliance network and device scans

  • Contribute to research and analysis, and translate security policy and requirements to define best methods and practices

  • Lead the effort in creating and maintain a centralized audit process and repository for the collection, aggregation and storage of audit responses  

  • Be a trusted advisor in performing control assessments against corporate cyber-security framework

  • Aid in the development of all security documentation, POA&Ms, and continuous monitoring activities






  • Bachelors Degree in relevant field such as Cybersecurity, Computer Engineering, Computer Science, or Information Systems Management or equivalent of work experience (+4 years) in the field of Cybersecurity

  • 8-10+ years’ experience in Cybersecurity, Information Assurance, GRC, Engineering, or Security Architecture.

  • Hold an Industry Certification such as CompTIA Security+ Certification, CISSP, CISM, CCIE, CEH, or similar certification.

  • Must have the ability to manage a small team, adapt to change, be a self-starter, and have great soft skills

  • Ability to work with and collaborate with regional team members and provide guidance to subordinate divisions

  • Strong verbal and written communication skills

  • Able to engage with users in a professional manner and plainly present technical concepts

  • Experience with the RMF process.

Clearance Requirement


  • Ability to obtain and maintain a Public Trust clearance.


Desired Skills:

  • Proven experience managing small to medium sized teams. (Virtual or remote teams is a plus)

  • Additional security-related certification(s)

  • Proven ability to successfully engage with ISSOs, ISSMs, Authorizing Officials (AOs), and their representatives, or have performed those roles in the past

  • Experience managing the integration of security appliances such as Splunk, QRadar, FireEye, Akamai, Tenable, iSight, or other publicly available threat intelligence communities EMASS, CSAM, Risk Vision, RSA Archer GRC experience. Splunk, QRadar, ArcSite, AlienVault, Nessus, RiskSense, Tripwire, Wireshark, SolarWinds, Retina, MBSA, Nexpose, Netsparker, Acunetix, Intruder, OpenVAS, Nmap, Metasploit, AppScan, Burp Suite, Qualys

  • Master’s Degree, ideally in Engineering or related field or equivalent work experience in the field of Cyber-Security, Information Technology, Information Assurance, Privacy and Compliance

  • Certifications such as CISSP, CISM. PCI QSA, TOGAF, ITIL, SixSigma, PMP, CSM, SAFE, C-CISO, etc.




SAIC is a premier technology integrator solving our nation's modernization and readiness challenges. Our offerings across defense, space, civilian, and intelligence markets include high-end solutions in engineering, IT, and mission outcomes. We integrate the best components from our portfolio with our partner's ecosystem to deliver innovative and effective solutions. We are 25,500 strong; driven by mission, united by purpose, and inspired by opportunities. Headquartered in Reston, VA, SAIC has annual revenues of nearly $7.1 billion. For information, visit or Working at SAIC for benefits details. SAIC is an Equal Opportunity Employer empowering people no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status. We strive to create a diverse, inclusive and respectful work culture that values all.

Share: mail

Similar Jobs

Cyber Operational Training SME

WASHINGTON, DC, United States

Cyber Engineer/Architect Chief

WASHINGTON DC, DC, United States

Cyber Security Operations Lead

WASHINGTON, DC, United States