Cybersecurity Operations Manager

SAIC • ARLINGTON, VA, United States • 8h ago

Description

A trusted leader in cloud, digital engineering, data, and Artificial Intelligence, the nation looks to SAIC to integrate emerging technology to modernize critical missions and enable its national imperatives. To address the growing demands within the Department of Defense, SAIC is seeking a highly skilled and dynamic Cybersecurity Operations Manager to join our Digital and AI Team as we embark on a large initiative to lead the design and operate integrated Enterprise IT solutions that deliver AI-enabled capabilities and enable data-driven decision making to missions across the Department, Services, and Combatant Commands.

The Ideal candidate will be adept at managing customer relationships, driving operational excellence, and fostering continuous improvement across all service areas.

Core Responsibilities

Performs Cybersecurity Defense & Analysis, Incident Response, Threat Analysis, Exploitation Analysis and Cyber Investigations from the National Initiative for Cybersecurity Education (NICE) Framework.
Utilizes COTS/GOTS applications, ticketing systems, lab systems, forensic applications and/or custom tools, techniques, and procedures (TTPs) to monitor systems for abnormal events.
Determines if events are to be deemed an incident.
Determines if incidents are due to malicious or nefarious actions by one or more threat actors.
Utilizes threat intelligence to determine if the incident is part of a named campaign to determine appropriate levels of response, or provide new intelligence based on investigative actions to threat intelligence teams, organizations, and/or external parties.
Obtains information and evidence to be utilized in legal proceedings or to provide to government counterparts for possible military, law enforcement, and/or counter-intelligence response actions/activities, Human Resources investigations, and/or management action.
Works with system owners to restore affected systems to secure baseline configurations.
Maintains chain of custody on items of evidentiary value.
Maintain cybersecurity measures for the Advana System per Federal, DoD, and agency-specific policies across all CSP/Security Environments.
Follow the DoD RMF process and implement zero trust capabilities throughout the system lifecycle.
Provide qualified personnel to perform DoD Information System Security Manager (ISSM) functions with required DoD certifications.
Develop and maintain cybersecurity architecture and engineering artifacts across all Advana CSP/Security Environment
Implement and maintain NIST security controls for the Advana System in all environments.
Continuously improve Zero Trust security controls (Advana System).
Develop and sustain processes and tools for securing the Advana System and integrate automated test procedures into CI/CD DevSecOps pipelines.
Generate test results to support DoD RMF authorization for deploying the system into production.
Prepare and maintain documents like IATTs, ATOs, and Change Requests to obtain and maintain Authority to Operate (APWSs).
Implement and maintain a Cybersecurity Continuous Monitoring Plan and conduct continuous monitoring and defense operations.
Develop and execute a Security Incident Management Plan and conduct incident management operations per DoD regulations.
Prepare and conduct penetration testing as outlined in the Advana System Penetration Test Plan

Qualifications

Bachelors and fourteen (14) years or more experience; Masters and twelve (12) years or more experience; PhD or JD and nine (9) years or more experience.
Information Systems Security Professional (CISSP) Certification.
SEC+ certification or similar certification to meet DoD 8140 (formerly DoD 8570) requirements.
Experience working in a cloud environment, preferably AWS.
Experience working in an Agile Community, using Agile methodology for product and project management.
Experience working in a DoD environment supporting one of the Armed Forces in an enterprise IT environment, across multiple domains and various clearance levels.
US citizenship and Secret security clearance is required.

Preferred Qualifications:

Information Security Manager (CISM) Certification
Risk and Information Systems Control (CRISC) Certification
Certified Advanced Security Practitioner (CASP) Certification
ITIL Certification.
IAM Certification.
AWS AI Practitioner Certification

Join SAIC: Be a part of a team that's passionate about the power of AI to transform the public sector.

Apply Now: Interested candidates with a drive for innovation are encouraged to apply. Share your passion, expertise, and leadership by joining our team.

SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.