Deputy Cybersecurity Governance Lead Job Listing at SAIC in Washington, DC (Job ID 2612836)

Description

Description

JOB DESCRIPTION: Governance, Risk & Compliance: Performs Risk Management; Test & Evaluation; Training, Education, & Awareness; and Vulnerability Scanning & Management activities from the National Initiative for Cybersecurity Education (NICE) Framework. This work is typically categorized as security control selection, assessment, and auditing or similar oversight and assessment activities. Following NIST Risk Management practices outlined in 800-39, performs multiple functions, including one or more of the following: Categorizes systems and information stored/processed on the system based on FIPS199 and/or NIST 800-60. Selects initial baseline of applicable security controls based on FIPS 200 and/or NIST 800-53. May supplement the baseline with further security controls in accordance with organizational policy. Implements security controls based on numerous NIST Special Publication guidance documents, including 800-34, 800-64, and 800-128. Specifically and functionally documents implemented security controls. Assesses security controls based on NIST 800-53A to ensure they are implemented correctly and effectively. May perform testing to verify and validate. Ensures systems are authorized based on NIST 800-37. Ensures continuous monitoring is achieved based on NIST 800-137, 800-37, 800-53A, and/or other special publications. May perform internal auditing functions in support of ISO/IEC standards, such as 9000, 20000, 27001, etc. May work with external auditors to ensure these actions have been performed to industry standards. May perform policy analysis activities to author or support the authoring of new enterprise policy. SCOPE: N/A LEADERSHIP AND MANAGEMENT: N/A KNOWLEDGE/SKILLS AND ABILITY: Applies extensive technical expertise and has full knowledge of other related disciplines. Receives assignments in the form of objectives and establishes goals to meet objectives. Provides guidance to subordinates to achieve goals in accordance with established policies. Work is reviewed and measured based on meeting objectives and schedules. Establishes and recommends changes to policies which affect subordinate organization(s). PROBLEM COMPLEXITY: Develops technical solutions to complex problems which require the regular use of ingenuity and creativity. FREEDOM TO ACT: Work is performed without appreciable direction. Exercises considerable latitude in determining technical objectives of assignment. Completed work is reviewed from a relatively long-term perspective for desired results. Exercises judgment in selecting methods, techniques and evaluation criteria for obtaining results. IMPACT: Guides the succesful completion of major programs. Erroneous decisions or recommendations would typically result in failure to achieve major organizational objectives. LIASON: Represents organization as prime technical contact on contracts and projects. Interacts with senior external personnel on significant technical matters often requiring coordination between organizations.

Qualifications

TYPICAL EDUCATION AND EXPERIENCE: Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience; PhD or JD and four (4) years or more related experience Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

 Apply on company website