Information Systems Security Officer

SAIC is seeking an Information Systems Security Officer (ISSO) to provide system security support for ongoing and future system development within the Customer organization.

Our unique team of technical and business disciplines provide operational support for Systems Engineering/Integration, Mission Planning, and Business Operations to multiple functional mission areas. The team is responsible for technical design, operations, and mission planning and business operations for the full life cycle of customer specific operations (from concept through development and installation/O&M).

Position Responsibilities:

The Senior Information Systems Security Officer (ISSO) will be responsible for the following but not limited to:

• Support organization-wide activities to maintain A&A compliance of all systems and full-lifecycle
• Closely collaborate with the ISSM staff to manage ongoing issues and accreditations
• Serve as the focal POC between the project teams and the accreditation office
• Review/assess network diagrams and schematics
• Review and interpret system vulnerability scans and work with project teams to resolve security issues
• Resolve inconsistencies and irregularities in the submission of A&A documentation
• Required to put together assessment reports to provide organizational risk, ad hoc customer responses mostly dealing with analysis and policy interpretation
• Will handle software management, laptop compliance, certification and accreditation of systems, patch management, continuous monitoring/scanning
• Develop and maintain SSPs
• Maintaining systems as well as working with SETA and development contractors to prepare SSPs and work through the A&A processes
• Generate and review the Body of Evidence (BOE) and artifacts

• Bachelor’s degree in engineering, science, or other related technical discipline and 12 years relevant experience; or a Master’s degree and 10 years of relevant experience; or a PhD and seven (7) years of relevant experience
• Must currently hold a TS/SCI and Poly clearance to be considered
• Experience in Risk Management and the Certification and Accreditation processes and related policies
• Previous ISSO, ISSE or ISSM experience
• System Administrator Security Course
• Proven experience in Information Systems Security to include:
  • Direct project management experience with patch management, continuous monitoring, and vulnerability scanning/remediation activities - this includes devising or implementing a continuous monitoring plan across multiple security domains and familiarity with tools used in compliance and vulnerability assessments
  • Familiarity with cloud computing and related security concepts, as well as, cross-domain solutions
  • Working knowledge of digital communications and related IT communications technologies

• Ability to support multiple projects simultaneously

   

• Must be a team player and possess a strong ability to work collaboratively with a diverse team as well as work independently with minimal supervision
• Demonstrated ability to quickly ramp up to support customer's needs, clearly communicate (orally and written) ideas, take initiative to provide creative solutions to challenges and/or systemic problems
• Previous experience with customer