Cybersecurity Specialist

SAlC is seeking a Cybersecurity Specialist to support the U.S. Army Combat Capabilities Development Command (CCDEVCOM), Engineering and Systems Integration (ESl) Directorate, Quick Reaction Capability (QRC) Branch.

This position is on-site in Aberdeen, MD on Aberdeen Proving Ground (APG).

In support of the Information Analysis Center Multiple Award Contract (lAC MAC) and Task Order (TO), SAlC is seeking a qualified, cleared, and experienced professional with in-depth experience in achieving strategic goals related to the ongoing execution and maturity of cybersecurity and assessment and authorization (A&A) programs.

• Support the maintenance and upkeep of system packages using a GRC application (e.g., eMASS / XACTA) and/or customer tool(s) to ensure auditability and report on the security posture of assigned systems.
• Support the Army’s risk management process by maintaining visibility of changes in the cyber threat landscape that impact system security and ensuring efforts to address security risks are executed efficiently and on schedule.
• Interface broadly with internal and external stakeholders to support the achievement of strategic goals and mature A&A capabilities and services.
• Guide federal customers through the Risk Management Framework, focusing on A&A and continuous monitoring lifecycles, working independently and as part of a team.
• Execute A&A and ongoing authorization activities, providing guidance and technical direction to SO and Federal ISSOs, and serve as an interface on system package status.
• Collaborate on risk assessments, impact assessments, vulnerability and compliance management, and security change requests to ensure system compliance and up-to-date package information.
• Support the GRC PM and GRC Lead to ensure a coordinated approach on program efforts in support of RMF/CSF maturity.
• Provide technical guidance and best practices to maximize the value of IT investments.

Required Education: Bachelor's degree with five (5) years or more experience; Master's degree with three (3) years or more; PhD with no minimum experience; four (4) years of experience can be considered in lieu of degree.

Required Skills:

• Experience establishing, implementing, and maintaining the A&A lifecycle using the NIST RMF.
• Experience with vulnerability scanning reports from Nessus, Security Center, and/or EvaluateStig.
• Knowledge of risk management and compliance frameworks including ISO, NIST CSF, NIST 800-53, NIST 800-171, NIST 800-137, and NIST 1800 series.
• Experience developing and updating policies to align with mandates from OMB, DHS, NIST, CNSS, ICD, and Congress.
• Experience with Application Security Audits and Risk Scoring.
• Ability to manage tasks across multiple priorities independently.
• Physical ability to lift, pull, push, and carry up to 30 pounds; stand, walk, bend, kneel, squat, climb ladders/equipment, and crawl for extended periods; perform repetitive tasks; and work outdoors in all weather conditions.

Must have an active TS/SCI clearance with current CI polygraph.

Target salary range: $80,001 - $120,000. This estimate reflects typical salaries based on experience and other factors. SAIC accepts applications ongoing with no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when working at a customer site.

Receive tips & info on cleared job search, security clearances, and career development.