Job Description

Description

Position Summary

SAIC is seeking someone with a passion for cybersecurity to join our team providing security services for a major state & local government customer located in Texas. This position reports to our Cybersecurity Operations Director and is a member of the 24x7-security operations team. Your primary responsibility will be incident response/command, and how to prepare, detect, respond/contain, mitigate/eradicate, report on, recover from, remediate, and learn from cybersecurity events and incidents in the enterprise.

Primary job responsibilities include:

• Driving progress on incident and investigation ticket resolution, including, but not limited to:

• Identifying root cause of issue, configuration item(s) affected, and other investigatory activities
• Contain ongoing threats to prevent further spread
• Directing other service providers in tasks which restore affected systems to their secure baseline
• Provide input and recommendations to SIEM rules so that the tool detects events with greater accuracy
• Provide analysis and reporting of security events and investigations
• Coordinate and collaborate with peer technical teams in a multi-vendor environment
• Perform Advanced Threat Hunting to look for indicators of compromise using ATH tools
• Perform Digital Forensic acquisition and analysis of data
• Log security incidents and ongoing action item updates in the ITSM ticketing system
• Manage security incidents throughout their lifecycle to closure
• Support ad-hoc data and investigation requests

Secondary job responsibilities include:

• Implement SIEM rule tuning requests
• Use Cyber Threat Intelligence and the intelligence lifecycle to implement changes to systems which enrich the endpoint log data being received
• Develop SIEM dashboards, reports, and other tools to present data in ways that are easy to understand and export to other reports and presentations

Qualifications

Experience, Education and Certification

Required:

• Bachelor\'s degree in a relevant field of study (e.g. Cybersecurity, Information Systems, Computer Science, or other relevant business or IT field).
• Excellent oral and written communication skills, including confident and concise oral communications used in leading SIRT calls
• Experience with Microsoft Office including Word and PowerPoint

Preferred:

• Experience with ITIL, ITIL certification
• Unix/Linux and/or Windows System Administration
• Experience using ServiceNow
• Experience with Splunk Enterprise Security, Microsoft Azure Sentinel and other SIEM tools
• Experience with a multi-cloud environment and modern cloud security tools, techniques, and procedures

What we will provide:

• On the job training of the customer environment and tools
• A strong team and work environment
• A flexible approach to work hours
• Training and tuition assistance approved by leadership on a case-by-case basis

What we expect from you:

• Passion, personality, and persistence - you should provide the drive to learn and grow, while we provide the technical knowledge
• You must be able to provide on-call coverage on both a planned rotation and ad-hoc when issues arise, particularly after initial training is complete
• Continual learning - you must be willing to continue to learn and grow through acquisition and application of additional coursework toward a degree program and/or certifications.

Cybersec First Responder (CFR-410) required within six months of hire. Preferential treatment to those who already have this certification.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.

Overview

SAIC\xc2\xae is a premier Fortune 500\xc2\xae technology integrator driving our nation\'s technology transformation. Our robust portfolio of offerings across the defense, space, civilian, and intelligence markets includes secure high-end solutions in engineering, digital, artificial intelligence, and mission solutions. Using our expertise and understanding of existing and emerging technologies, we integrate the best components from our own portfolio and our partner ecosystem to deliver innovative, effective, and efficient solutions that are critical to achieving our customers\' missions.

We are approximately 26,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an fostering a culture of , which is core to our values and important to attract and retain exceptional talent. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.4 billion. For more information, visit . For ongoing news, please visit our .

Share:

SAIC