IT Security Administrator

SAIC • RESTON, VA, United States • 20h ago

Description

SAIC, a leading provider of systems development & deployment, targeting & intelligence analysis, systems engineering & integration, and training capabilities and solutions for the Intelligence Community, is seeking creative and dedicated professionals to fulfill their career goals and objectives while delivering mission excellence on programs of national importance.

We are seeking a highly motivated IT Security Administrator to join our National Intelligence Program supporting the operations, maintenance of a complex, hybrid on-premises and cloud enterprise IT environment. As an IT Security Administrator you will be responsible for implementing, administrating, and maintaining the organization's IT enterprise. This includes developing and implementing security policies and procedures, network management, conducting security assessments, and administering enterprise user and identity management

Job Responsibilities:

Monitor, maintain, and configure enterprise networks and devices
Develop and maintain the risk management framework
Collaborate with stakeholders to define and implement security policies and controls
Contribute to incident response planning and post-incident analysis
Conduct regular security audits and vulnerability assessments
Identify, prioritize, and address vulnerabilities, ensuring timely installation of security updates.
Prepare risk reports and present findings to senior management
Stay abreast of the latest network security trends, threats, and technologies
Scan information systems using scanning tools such as Nessus, AppDetective, or others
Create and update security documentation such as SOPs, internal process documents, and input into IT policies that support the continuous monitoring of accredited information systems.
Coordinate and manage the resolution of security incidents, providing root cause analysis and remediation strategies
Coordinate with information system POCs for plan updates and mitigation strategies to ensure overall health of IT systems, networks and applications.
Manage and enforce user authentication, authorization, and role-based access control (RBAC)
Review and monitor user access rights to ensure appropriate levels of access
Develop continuous monitoring and plans of actions and milestones (POA&Ms)
Develop ATOs following NIST guides and Risk Management Framework (RMF)
Work closely with IT departments to ensure that security measures are integrated into the network and system design.

Qualifications

Required Education:

Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience; PhD or JD and four (4) years or more experience.

Desired Education:

Bachelor’s degree in business, computer science, management information systems, or related field

Required Experience:

3+ years’ experience with continuous monitoring and plans of actions and milestones (POA&Ms).
5+ years’ experience working with NIST 800-53, 800-137 and the Risk Management Framework (RMF)
Knowledge of DoD Security Technical Implementation Guides (STIGs)
Demonstrated experience with cyber security concepts to include encryption services, access control, information protection, network security
Hands on experience creating and updating RMF documentation
Demonstrated experience assessing systems within cloud environments focusing on security posture
Ability to interpret vulnerability, risk, and security assessment of hardware and software
Excellent written and oral communication skills, with the ability to articulate technical concepts to non-technical stakeholders

Desired Experience:

Knowledgeable of various cloud services to include Infrastructure as a Service, Platform as a Service, Software as a Service
Computer Networking experience (e.g., TCP/IP, packet capture data structures, TLS and related data)

Clearance:

Must be a U.S. Citizen with an active TS/SCI with the required poly.

SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.