MSI Lead Senior Cybersecurity Analyst Senior Principal Job



  full-time   employee

United States

MSI Lead Senior Cybersecurity Analyst Senior Principal (Job Number:437159)


About the SAIC MSI Program

Science Applications International Corp. (NYSE: SAIC) has been awarded a $165 million contract by the Commonwealth of Virginia to serve as a multisourcing service integrator (MSI). Under the contract, SAIC will provide an innovative approach to assist the Virginia Information Technologies Agency (VITA) with modernizing the state?s technology infrastructure. Under the contract, SAIC will coordinate and monitor multiple IT infrastructure services suppliers for state executive branch agencies. The MSI is the cornerstone of a strategy that will diversify the state?s portfolio of suppliers, improve service delivery quality, ensure cost-competitiveness, and provide transparency and accountability into the commonwealth?s service delivery platform.

Position Summary

SAIC is seeking a Lead Senior Cybersecurity Analyst (Senior Principal) to join our team supporting a major state & local government customer. Essential duties of this position include:

- Act as senior technical resource for the Incident Response (IR) and Identity and Access Management (IAM) teams.

- Perform supervisory duties as assigned for the IR and IAM teams.

- Leading and participating in threat actor based investigations, creating new detection methodologies, and provided expert support to incident response and monitoring functions.

- Track threat actors and associated tactics, techniques, and procedures (TTPs)

- Lead team efforts in working with other Service Tower Suppliers and Customers to develop plans for the integration of systems and applications into the IAM infrastructure

- Lead team efforts in the development and maintenance of technical guidance and oversight for the Incident Response, Identity Governance and Privileged Account Management tools and procedures

- Lead Security Training planning and provide oversight for staff and Supplier training to maintain compliance with Commonwealth and IT Infrastructure (ITISP) requirements

- Act as Process Owner for Operational Security Processes (Cross-Functional); ensure Processes are maintained and updated on a regular basis

- Oversee Security Clearance management for all SAIC and Supplier staff including oversight for compliance and quality of the Security Clearance Management Database

The Lead Senior Cybersecurity Analyst Senior Principal performs a critical management role ensuring that the technology underpinning supporting IT support processes and workflows are working effectively, reliably, and efficiently to meet service objectives and customer expectations. You will have the opportunity to solve complex problems, coordinate with multiple suppliers, and optimize processes through automation. This position offers the chance to research and analyze cybersecurity capabilities to satisfy data protection requirements. The Lead Senior Cybersecurity Analyst will also play a key role in representing current and future capabilities of supporting ITSM tools, and contributing to long-term strategy as well as tactical activities leading to the continual improvement of the environment to meet security objectives.


Background / Experience

- Provides primary expertise for security incident response and handling based on NIST processes

- Provides the ability to create, and maintain processes and procedures to support a robust security incident response program.

- Provides support to plan, coordinate, and implement the organization?s information security.

- Supports efforts of security staff to design, develop, engineer and implement solutions to security requirements

- Supports the implementation and development of the MSI security detection protocols.

- Gathers and organizes technical information about existing security products, and ongoing programs.

- A working knowledge of security practices and procedures; knowledge of current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/tools; familiarity with commercial products, and current Internet/EC technology.

- Provide support for monitoring events and ongoing maintenance activities

- Knowledge and understanding of management tools used to detect most anomalies within the infrastructure

- Knowledge and understanding of incident response, IDS/IPS, Endpoint systems, firewalls, sensors, routers/switches

Education / Certifications / Other

- Bachelors and fourteen (14) years or more of related experience; Masters and twelve (12) years or more of related experience; in lieu of a degree, 4 additional years of related experience may be considered.

- ITIL certification preferred (Foundation or above)

- Strong attention to detail and organizational skills. Excellent communications skills.

- Possess security certification preferred, such as (CISM, CISSP, CSSP Incident Responder, IAT or IAM level 3 certification)

- Operational Knowledge of the following preferred: ServiceNow, Splunk, Tenable Nessus, Sailpoint, CyberArk

- Strong skills with: MS Office products and Microsoft SharePoint

- Experience with two or more the following preferred:

- Endpoint Security

- ServiceNow

- Splunk

- Tenable Nessus

- Sailpoint

- CyberArk

- Active Directory

- Okta

SAIC Overview:SAIC is a premier technology integrator providing full life cycle services and solutions in the technical, engineering, intelligence, and enterprise information technology markets. SAIC is Redefining Ingenuity through its deep customer and domain knowledge to enable the delivery of systems engineering and integration offerings for large, complex projects. SAICs approximately 15,000 employees are driven by integrity and mission focus to serve customers in the U.S. federal government. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $4.5 billion. For more information, visit For information on the benefits SAIC offers, see My SAIC Benefits. EOE AA M/F/Vet/Disability

Job Posting: Jun 14, 2018, 3:04:33 PM
Primary Location: United States-VA-RICHMOND
Clearance Level Must Currently Possess: None
Clearance Level Must Be Able to Obtain: None
Potential for Teleworking: No
Travel: Yes, 10% of the time
Shift: Day Job
Schedule: Full-time


Save This Job

Email This Job to a Friend