Description

SAIC is hiring a Senior Cloud Security Engineer for the Cloud One program under the Air Force Lifecycle Management Center Office for Network Integration (AFLCMC/HNI). The Cloud One Common Computing Environment is an existing global, interconnected, virtualized, hybrid, and IT infrastructure hosting mission systems, applications, services, and data that will serve the U.S. Air Force (USAF) and U.S. Army (USA). Cloud One incorporates the capabilities of commercial cloud and Managed Service Providers (MSP) residing in Cloud Service Providers (CSPs). Cloud One facilitates the USAF and USA's efforts to migrate applications to a cloud environment, allowing the closure of data centers to support the Data Center Optimization Initiative (DCOI) and allowing for increased efficiencies across the entire spectrum of the USAF and USA's IT operations. This position is 100% remote.

Job Duties:

• Analyze and recommended risk mitigations for identified vulnerabilities and weaknesses.
• Support the documenting of the inheritable environment controls required to meet security standards as described in the RMF for an A&A package.
• Support security assessments and the resolution of concerns/issues identified by assessment team(s) including security reviews, test, and exercises.
• Develop, deliver and execute a contractor Security Assessment Plan (SAP)Record actual results of the Security Control Assessment in the Security Assessment Report (SAR) and Plan of Action and Milestones (POA&M).
• Conduct security testing and continuous vulnerability monitoring to include delivering a continuous monitoring plan and vulnerability management reports.
• Work with the CSSP to ensure applications are properly configured for auditing/monitoring
• Ensure DoD Public Key Infrastructure (PKI) is enabled/implemented where appropriate according to policy.
• Provide timely remediation recommendations for audit findings
• Support POA&M reviews and recommendations

Qualifications

Required Education and Experience:

• Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience.
• Additional four (4) years of experience may be substituted in lieu of degree

Required Clearance:

• Interim Secret clearance required to start; Ability to obtain a Secret clearance required to maintain employment.
• US citizenship

Required Qualifications:

• Security + certification or higher
• Knowledge of DoD Policies and procedures including DoD 8500.01 and DoD 8510.01
• Experience with Risk Management Framework (RMF) and updating of security artifacts
• Experience with compliance verification methods including DISA STIG, SRGs, and best practices
• Experience with DevSecOps
• Knowledge of the DoD suite of security tools including ACAS, HBSS, and eMASS
• Knowledge of cloud environments provided by AWS, Azure, OCI or GCP
• Working knowledge of Microsoft Office Suite including Microsoft Visio

Desired Qualifications:

• Knowledge of DESMF
• CISSP certification
• Experience with Agile, Scrum, SAFe or other modern software development methods/practices
• Experience supporting USAF or USA software development projects
• Experience supporting software migration efforts

Target salary range: $125,001 - $150,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.