Description
Description
SAIC is seeking an ISSO to join our team to support the Department of Air Force's (DAF) Advanced Battle Management System's (ABMS) Digital Infrastructure (DI), Digital Infrastructure Processing Node (DIPN) Product Line Team. ABMS is the Air Force's latest effort to create a next-generation command and control (C2) system and is a top modernization priority for the DAF. ABMS will be the backbone of a network-centric approach to battle management in partnership with all the services across the Department of Defense. The broader effort known as the Joint All Domain Command and Control (JADC2) is focused on rapid integration of capabilities and modernizing the decision-making processes for combat operations.
Job Responsibilities:
- Implement and enforce DoD,NIST, CNSS, and organizational cybersecurity policies, procedures, and standards.
- Support the development, review, and maintenance of system security documentation (SSPs, POA&Ms, Security Assessment Reports, Continuous Monitoring Plans) within eMASS.
- Conduct vulnerability assessments and assist in remediation of findings (e.g., STIGs, ACAS, Nessus).
- Assist in preparing and submitting systems for Authorization to Operate (ATO) under the Risk Management Framework (RMF).
- Identify and direct the remediation of technical problems encountered during testing and implementation of new systems (e.g., identify and find work-arounds for communication protocols that are not interoperable).
- Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
- Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change.
- Analyze design constraints, trade-offs and detailed system and security design, and consider lifecycle support.
- Stay current on emerging threats, vulnerabilities, and compliance requirements.
Qualifications
Required Qualifications:
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience).
- 5+ years of experience in cybersecurity, with at least 2–3 years specifically as an ISSO or similar security role.
- Working knowledge of:
- DoDRMF process and NIST SP 800-53 controls
- Security Technical Implementation Guides (STIGs)
- Vulnerability management tools (ACAS, Nessus, HBSS, Splunk, etc.)
- Monitor and evaluate system compliance with information technology (IT) security, resilience, and dependability requirements.
- Experience supporting and developing required artifacts for the ATO/authorization processes within theDoD environment.
- 2+ years of documented experience cybersecurity designs to meet specific operational needs and environmental factors (e.g.,access controls, automated applications, networked operations, high integrity and availability requirements, multilevel security/processing of multiple classification levels, and processing Sensitive Compartmented Information).
- DoD 8570/8140 IAT Level II or IAM Level I baseline certification (e.g., Security+ CE, CAP, CISM, CISSP).
- Active DoD Secret clearance (or higher) required.
Desired Qualifications:
- Knowledge of cloud computing service models Software as Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).
- Experience with government cloud security environments ( GovCloud, Azure Government, Commercial Cloud Environment (C2E), Secret Commercial Cloud Environment (SC2E).
- 2+ years of documented experience on information technology (IT) supply chain security and risk management policies, requirements, and procedures.
Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
Apply on company website
Find Connections via Linkedin
