Senior IT Security Specialist / Network Engineer (Job Number:402536)
Description:
SAIC continues to grow out support of the nations government servives. That growth has created an opportunity for a Sr. IT Security Analyst to join our talented team supporting the Department of Homeland
Security (DHS) United States Citizenship and Immigration Service (USCIS).
As a member of the Security Compliance Team, the IT Security Specialist will assist with security control assessments,
documentation reviews and Plan of Action and Milestone (POAM) support. The Security Compliance Team conducts
security compliance testing of all USCIS systems and applications in compliance with the current editions of NIST SP
800-53, NIST SP 800-63-1, NIST SP 800-115, and NIST SP 800-70 guidance, as well as DHS and USCIS policies and
procedures. These assessments (full, partial, limited, and hybrid) are done as part of the authorization process and
when required by the Government.
The Security Compliance Team provides interpretation and analysis of results as
requested to assess the vulnerability and risk to the system and USCIS, and creates formal documentation of the analysis
as required. The Security Compliance Team also conducts quality assurance reviews of system documentation to ensure
compliance with DHS and USCIS standards and requirements. The documentation is submitted by the Information
Security System Officers for the USCIS systems and is required as part of the overall authorization process. The Security
Compliance team is expected to conduct thorough and timely reviews of submitted documents. The types of documents to be reviewed include, but are not limited to: Security Plans, E-Authentication workbooks, Contingency Plans, Contingency Plan Tests, FIPS 199 workbooks, and Privacy Threshold Assessments. As part of the POAM support provided to USCIS, the Security Compliance team develops the POA&M table for a system once a Security Assessment has been completed and the Security Assessment Report has been accepted and approved by the government. The team validates the remediation of POA&Ms and closes the POA&M(s) if satisfactorily resolved.
The ideal candidate will be a proactive self-starter with excellent written/verbal communication skills, and able to work
with minimal supervision. Candidate will have an eye for detail, ability to multi-task, organize priorities, and work in
a systematic style. Candidate will have the ability to work within a cross-functional, highly matrixed, organizational
structure team environment.
Candidate must be able to obtain a DHS Public Trust clearance.
RESPONSIBILITIES:
- Understanding of the security control assessment process.
- Strong experience in creating, performing, and documenting security assessments.
- Pinpointing the factors that affect the status of a security control and clearly explaining how to remedy an ineffective control.
Qualifications:
REQUIRED EDUCATION/SKILLS:
Bachelors Degree or higher. 4+ years of direct experience within the specific field of Information Technology/
Information Security AND Bachelors Degree in computer science, computer information systems, information systems,
information security OR 7-10 years of direct experience within the specific field of Information Technology/ Information
Security in lieu of the degree.
- Excellent analytical skills.
- Good understanding of key network and technical security controls and NIST Special Publication 800-53.
- Strong oral and written communication skills with experience with formal writing and preparing assessment results.
- Strong organizational skills; ability to manage multiple tasks in a fast-paced environment with competing priorities and
- quick turnaround deliverables.
- Technical knowledge of TCP/IP, network security, application security, database security, and endpoint security
DESIRED SKILLS & CERTIFICATIONS:
- CISSP
- Experience with the following security tools: Tenable Nessus Security Center, WebInspect, DBProtect.
SAIC Overview:SAIC is a leading provider of technical, engineering and enterprise information technology services to the U.S. government. Our 13,000 employees deliver systems engineering and information technology offerings for large, complex government programs, as well as a broad range of higher-end, differentiated technology services. The company is headquartered in McLean, Va. For more information, visit www.saic.com.
EOE AA M/F/Vet/Disability
Job Posting: Mar 12, 2014, 9:15:44 AM
Primary Location: United States-DC-WASHINGTON
Clearance Level Must Currently Possess: None
Clearance Level Must Be Able to Obtain: Public Trust
Potential for Teleworking: No
Travel: None
Shift: Day Job
Schedule: Full-time
Description:
SAIC continues to grow out support of the nations government servives. That growth has created an opportunity for a Sr. IT Security Analyst to join our talented team supporting the Department of Homeland
Security (DHS) United States Citizenship and Immigration Service (USCIS).
As a member of the Security Compliance Team, the IT Security Specialist will assist with security control assessments,
documentation reviews and Plan of Action and Milestone (POAM) support. The Security Compliance Team conducts
security compliance testing of all USCIS systems and applications in compliance with the current editions of NIST SP
800-53, NIST SP 800-63-1, NIST SP 800-115, and NIST SP 800-70 guidance, as well as DHS and USCIS policies and
procedures. These assessments (full, partial, limited, and hybrid) are done as part of the authorization process and
when required by the Government.
The Security Compliance Team provides interpretation and analysis of results as
requested to assess the vulnerability and risk to the system and USCIS, and creates formal documentation of the analysis
as required. The Security Compliance Team also conducts quality assurance reviews of system documentation to ensure
compliance with DHS and USCIS standards and requirements. The documentation is submitted by the Information
Security System Officers for the USCIS systems and is required as part of the overall authorization process. The Security
Compliance team is expected to conduct thorough and timely reviews of submitted documents. The types of documents to be reviewed include, but are not limited to: Security Plans, E-Authentication workbooks, Contingency Plans, Contingency Plan Tests, FIPS 199 workbooks, and Privacy Threshold Assessments. As part of the POAM support provided to USCIS, the Security Compliance team develops the POA&M table for a system once a Security Assessment has been completed and the Security Assessment Report has been accepted and approved by the government. The team validates the remediation of POA&Ms and closes the POA&M(s) if satisfactorily resolved.
The ideal candidate will be a proactive self-starter with excellent written/verbal communication skills, and able to work
with minimal supervision. Candidate will have an eye for detail, ability to multi-task, organize priorities, and work in
a systematic style. Candidate will have the ability to work within a cross-functional, highly matrixed, organizational
structure team environment.
Candidate must be able to obtain a DHS Public Trust clearance.
RESPONSIBILITIES:
- Understanding of the security control assessment process.
- Strong experience in creating, performing, and documenting security assessments.
- Pinpointing the factors that affect the status of a security control and clearly explaining how to remedy an ineffective control.
Qualifications:
REQUIRED EDUCATION/SKILLS:
Bachelors Degree or higher. 4+ years of direct experience within the specific field of Information Technology/
Information Security AND Bachelors Degree in computer science, computer information systems, information systems,
information security OR 7-10 years of direct experience within the specific field of Information Technology/ Information
Security in lieu of the degree.
- Excellent analytical skills.
- Good understanding of key network and technical security controls and NIST Special Publication 800-53.
- Strong oral and written communication skills with experience with formal writing and preparing assessment results.
- Strong organizational skills; ability to manage multiple tasks in a fast-paced environment with competing priorities and
- quick turnaround deliverables.
- Technical knowledge of TCP/IP, network security, application security, database security, and endpoint security
DESIRED SKILLS & CERTIFICATIONS:
- CISSP
- Experience with the following security tools: Tenable Nessus Security Center, WebInspect, DBProtect.
SAIC Overview:SAIC is a leading provider of technical, engineering and enterprise information technology services to the U.S. government. Our 13,000 employees deliver systems engineering and information technology offerings for large, complex government programs, as well as a broad range of higher-end, differentiated technology services. The company is headquartered in McLean, Va. For more information, visit www.saic.com.
EOE AA M/F/Vet/Disability
Job Posting: Mar 12, 2014, 9:15:44 AM
Primary Location: United States-DC-WASHINGTON
Clearance Level Must Currently Possess: None
Clearance Level Must Be Able to Obtain: Public Trust
Potential for Teleworking: No
Travel: None
Shift: Day Job
Schedule: Full-time