Description
Description
A trusted leader in cloud, digital engineering, data, and Artificial Intelligence, the nation looks to SAIC to integrate emerging technology to modernize critical missions and enable its national imperatives. To address the growing demands within the Department of Defense, SAIC is seeking a highly skilled and dynamic Cyber GRC Team Manager to support migration planning for Platform Infrastructure Management of our Digital and AI Team as we embark on a large initiative to lead the design and operate integrated Enterprise IT solutions that deliver AI-enabled capabilities and enable data-driven decision making to missions across the Department, Services, and Combatant Commands.
The Ideal candidate will be adept at managing customer relationships, driving operational excellence, and fostering continuous improvement across all service areas.
Core Responsibilities
- Governance, Risk and Compliance: Performs Risk Management; Test & Evaluation; Training, Education, & Awareness; and Vulnerability Scanning & Management activities from the National Initiative for Cybersecurity Education (NICE) Framework.
- This work is typically categorized as security control selection, assessment, and auditing or similar oversight and assessment activities.
- Following NIST Risk Management practices outlined in 800-39, performs multiple functions, including one or more of the following: Categorizes systems and information stored/processed on the system based on FIPS199 and/or NIST 800-60.
- Selects initial baseline of applicable security controls based on FIPS 200 and/or NIST 800-53.
- May supplement the baseline with further security controls in accordance with organizational policy.
- Implements security controls based on numerous NIST Special Publication guidance documents, including 800-34, 800-64, and 800-128.
- Specifically, and functionally documents implemented security controls.
- Assesses security controls based on NIST 800-53A to ensure they are implemented correctly and effectively.
- Ensures systems are authorized based on NIST 800-37.
- Ensures continuous monitoring is achieved based on NIST 800-137, 800-37, 800-53A, and/or other special publications.
- Performs internal auditing functions in support of ISO/IEC standards, such as 9000, 20000, 27001, etc.
Qualifications
- Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience; PhD or JD and four (4) years or more related experience.
- Information Systems Security Professional (CISSP) Certification.
- SEC+ certification or similar certification to meet DoD 8140 (formerly DoD 8570) requirements.
- Experience working in a cloud environment, preferably AWS.
- Experience working in an Agile Community, using Agile methodology for product and project management.
- Experience working in a DoD environment supporting one of the Armed Forces in an enterprise IT environment, across multiple domains and various clearance levels.
- US citizenship and a Secret security clearance is required.
Preferred Qualifications:
- Information Security Manager (CISM) Certification
- Risk and Information Systems Control (CRISC) Certification
- Governance of Enterprise IT (CGEIT) Certification
- Certified Advanced Security Practitioner (CASP) Certification
- ITIL Certification
- AWS AI Practitioner Certification
Join SAIC: Be a part of a team that's passionate about the power of AI to transform the public sector.
Apply Now: Interested candidates with a drive for innovation are encouraged to apply. Share your passion, expertise, and leadership by joining our team.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
Apply on company website
Find Connections via Linkedin
