Job ID: 2114760
Location: CHANTILLY, VA, United States
Date Posted: Jan 14, 2022
Subcategory: Cyber Engineer
Shift: Day Job
Travel: Yes, 10 % of the Time
Minimum Clearance Required: TS/SCI with Poly
Clearance Level Must Be Able to Obtain: TS/SCI with Poly
Potential for Remote Work:
Benefits: Click here
SAIC is seeking a Senior Cyber Security Analyst, to serve as a Blue Team Vulnerability Assessment subject matter expert. Conducts Blue Team risk and vulnerability assessment at the network, system and application levels. Conducts cyber threat modeling exercises with commercial tools such as Red Seal, Sky Box or like tools. Ensure applicable Blue Team Vulnerability Assessment discipline is applied. Leverage customer/contractual Vulnerability Assessment Process Framework to include documentation creation and review as it relates the assessment, document risk/issues. Designs, tests, and implements secure operating systems, networks, security monitoring, tuning and management of IT security systems and applications, incident response, digital forensics, loss prevention.
Possess a thorough understanding in a wide range of security issues including vulnerability assessment architectures, firewalls, electronic data traffic, and network access. Experience with utilizing commercial tools such as NESSUS, KIBANA, RedSeal, Lancope, WireShark, etc. Researches, evaluates and recommends new security tools, techniques, and technologies and introduces them to the enterprise in alignment with IT security strategy. Utilizes COTS/GOTS and custom tools and processes/procedures in order to scan, identify, contain, mitigate and mitigate vulnerabilities, and intrusions. Assists in the implementation of the required government security policy ICD/503 in support of Cyber lab environment.
Performs analyses to validate established security requirements and to recommend additional security requirements and safeguards. Support cyber metrics development, maintenance and reporting. Supports the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations participation in the tests, analysis of the results, and preparation of required reports. Periodically conducts review of each system's audits and monitors corrective actions until all actions are closed. Experience with providing briefings to senior staff. Applies advanced technical principles, theories, and concepts. Contributes to development of new principles and concepts. Participates with senior managers to establish strategic plans and objectives: Serves as organization spokesperson on advanced projects and/or programs. Acts as advisor to management and customers on advanced technical research studies and applications.
FREEDOM TO ACT: Work is performed without appreciable direction. Exercises considerable latitude in determining technical objectives of assignment. Completed work is reviewed from a relatively long-term perspective for desired results. Exercises judgment in selecting methods, techniques and evaluation criteria for obtaining results. IMPACT: Guides the successful completion of major programs. Erroneous decisions or recommendations would typically result in failure to achieve major organizational objectives. LIASON: Represents organization as prime technical contact on contracts and projects. Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.
TYPICAL EDUCATION AND EXPERIENCE: Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience ; PhD or JD and four (4) years or more experience. Experience accepted in lieu of degree.
Clearance required to start: Top Secret with Polygraph
Required certification compliance: DoD Directive 8570 / 8140 IAT/IAM III certification
Certified Information Systems Security Professional (CISSP)
ISACA Certified Information Systems Auditor (CISA)
EC-Council Certified Ethical Hacker (CEH)
SANs GIAC certification (e.g., GPEN or GW APT)
Offensive-Security Certified Professional (OSCP)
Experience with Cyber threat methodologies
Desired Specific Blue Team Skills:
Identification and Validation of Security Flaws
Network Mapping / Network Analysis
Pen-testing network filters and security countermeasures
COVID Policy: Prospective and/or new employees are required to adhere with SAIC's vaccination policy. All SAIC employees must be fully vaccinated and they must submit proof of vaccination on their first day of employment. Prospective or new employees may seek an exemption to the vaccination requirement at Contact Us and must have an approved exemption prior to the start of their employment. Where work is performed strictly at a customer site, customer site vaccination requirements preempt SAIC's vaccination policy.
SAIC® is a premier Fortune 500® technology integrator driving our nation's technology transformation. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes secure high-end solutions in engineering, digital, artificial intelligence, and mission solutions. Using our expertise and understanding of existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions that are critical to achieving our customers' missions.
We are more than 26,500 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer, fostering a respectful work culture based on diversity, equity, and inclusion that values all contributors. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.1 billion. For more information, visit saic.com.