<p>Job Description</p> <p>Description</p> <p>SAIC is seeking a Senior Cyber GRC Analyst to work in Middletown, RI The ideal candidate will leverage technical and information assurance (IA) expertise to monitor our customers' computing systems, networks, and environments to detect, correct, and mitigate security policy non-compliance, vulnerabilities, and risks that potentially jeopardize national security. You will have the opportunity to work with multi-disciplined engineering teams and organizations to develop and implement security strategies to mitigate security risks for mission-critical information systems, networks, and computing environments. Your talents, perspectives, and efforts will contribute directly to the safeguarding of valuable weapon systems and data, ensuring positive mission outcomes. Role may include travel.</p> <p>Job Duties:</p> <ul> <li>Categorizes systems and information stored/processed on the system based on FIPS199 and/or NIST 800-60. </li><li>Selects initial baseline of applicable security controls based on FIPS 200 and/or NIST 800-53. </li><li>May supplement the baseline with further security controls in accordance with organizational policy. Implements security controls based on numerous NIST Special Publication guidance documents, including 800-34, 800-64, and 800-128. </li><li>Specifically and functionally documents implemented security controls. </li><li>Assesses security controls based on NIST 800-53A to ensure they are implemented correctly and effectively. </li><li>May perform testing to verify and validate. </li><li>Ensures systems are authorized based on NIST 800-37. </li><li>Ensures continuous monitoring is achieved based on NIST 800-137, 800-37, 800-53A, and/or other special publications. </li><li>May perform internal auditing functions in support of ISO/IEC standards, such as 9000, 20000, 27001, etc. </li><li>May work with external auditors to ensure these actions have been performed to industry standards. </li><li>May perform policy analysis activities to author or support the authoring of new enterprise policy. </li></ul> <p>Qualifications</p> <p>Qualifications:</p> <ul> <li>B.S. Degree in a STEM field and nine (9) years of experience; years of experience accepted in lieu of degree. </li><li>Must already possess minimum of interim SECRET clearance with the ability to obtain and maintain TOP SECRET clearance. </li><li>Strong understanding of DoD security policies and guidelines, including Risk Management Framework (RMF). </li><li>Experience with managing and implementing security controls and requirements for DoD information systems. </li><li>Experience with conducting security assessments. </li><li>Familiarity with security technologies such as firewalls, intrusion detection and prevention systems, and vulnerability assessment tools. </li><li>Excellent written and verbal communication skills. </li><li>Ability to work independently and in a team environment. </li><li>Ability to travel as required. </li><li>DoD 8570 IAT Level III or IAM Level II+ (CISSP, CISM, CCNP Security, CISA, CASP+) </li><li>Experience with SSBN/Ballistic Missile Submarines and Navy combat/weapon systems is extremely desired. </li></ul> <p>Overview</p> <p>SAIC accepts applications on an ongoing basis and there is no deadline.</p> <p>SAIC is a premier Fortune 500 mission integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, civilian and intelligence markets includes secure high-end solutions in mission IT, enterprise IT, engineering services and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives.</p> <p>We are approximately 24,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.5 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom.</p>