SAIC
SAIC

Cyber GRC Analyst Principal

Remote in Remote Work, VA, US • Posted 2 hours ago • Updated 2 hours ago
Full Time
On-site
USD $120,001.00 - 160,000.00 per year
Company Branding Image
Fitment

Dice Job Match Score™

👾 Reticulating splines...

Job Details

Skills

  • Security Clearance
  • Reporting
  • Risk Assessment
  • Corrective And Preventive Action
  • SLA
  • Leadership
  • Continuous Improvement
  • Risk Management Framework
  • Training
  • Penetration Testing
  • Auditing
  • Documentation
  • Regulatory Compliance
  • Supply Chain Management
  • Risk Management
  • Vendor Management
  • ITIL
  • COBIT
  • System On A Chip
  • NIST 800-53
  • ISO/IEC 27001:2005
  • FIPS
  • NIST SP 800 Series
  • Communication
  • Presentations
  • Collaboration
  • Management
  • CISA
  • CISSP
  • CISM
  • Security+
  • ServiceNow
  • SAP GRC
  • Vulnerability Scanning
  • DLP
  • Endpoint Protection
  • Cyber Security
  • Information Technology
  • Systems Engineering
  • FOCUS

Summary

Job ID: 2610250

Location: Remote Work, VA, US

Date Posted: 2026-03-13

Category: Cyber

Subcategory: Cyber GRC

Schedule: Full-Time

Shift: Day Job

Travel: No

Minimum Clearance Required: None

Clearance Level Must Be Able to Obtain: None

Potential for Remote Work: ORA_REMOTE

Description

SAIC is seeking a Cybersecurity GRC Analyst Principal to join the Governance, Risk and Compliance (GRC) Team. This position is 100% remote.

The Cybersecurity Risk Manager will work closely with the technical process teams to facilitate application and system risk assessments, coordinate remediation efforts, assist with creating mitigation plans, validate control effectiveness, and track remediation efforts to completion. The position will also be a key cybersecurity role in continuous improvement of SAIC's Cybersecurity Risk Management Program.

Responsibilities include:
  • Maintain a broad understanding of cybersecurity trends, threats, and best practices to ensure risk mitigation strategies remain current and effective.
  • Perform application risk assessments/reassessment tasks.
  • Perform technical system/infrastructure risk assessments/reassessment tasks.
  • Monitor, track, report assessment results for risk owners; and escalate risks to Senior Leadership.
  • Perform vendor risk assessment/reassessment tasks.
  • Develop mitigation and corrective action plans with application/system owners.
  • Define and meet SLA expectations for assessments/reassessments.
  • Communicate and collaborate with internal teams, stakeholders, and leadership. Assist in the continuous improvement and maturity of the organizations overall cyber risk management framework, program, processes, and tools.
  • Develop and provide training/guidance to stakeholders across the organization to promote a strong risk-aware culture.
  • Collaborate with other risk management professionals to share knowledge, best practices, and lessons learned.
  • Assist with maintenance of the GRC tool used by the team.
  • Assist with tracking and remediation of penetration test results.
  • Assist with tracking and remediation of vulnerabilities.
  • Provide 2 nd line of defense support for technical process teams.
  • Recommend appropriate policy, standards, process, and procedural updates as part of comprehensive remediation solutions.
  • Develop and provide key risk metrics for the cybersecurity risk management program.
  • Develop and maintain documentation in support of audit reviews.
  • Develop and maintain documentation in support of the cybersecurity risk management program.


Qualifications

Required Skills:
  • Bachelor's degree in Information Technology or similar discipline and 9 years of experience, or Master's Degree and 7 years of experience.
  • Previous governance, risk, compliance experience in the IT field.
  • Previous supply chain risk management experience.
  • Previous vendor management experience.
  • Comprehensive understanding of cybersecurity principles, frameworks, and regulations (e.g., ITIL, MITRE, COBIT, COSO, HITRUST, SOC reports, CSF, NIST 800-53, NIST 800-37, and ISO 27001 standards).
  • Ability to categorize systems and information store/process on system based on FIPS 199 and/or NIST 800-60.
  • Ability to analyze complex information and make/defend independent judgements.
  • Strong oral and written communication skills and ability to transform technical knowledge into business language (e.g. reports, presentations, etc.)
  • Ability to work independently and strategically.
  • Ability to effectively collaborate and negotiate with diverse stakeholders to meet mission needs.
  • Ability to analyze complex information and make/defend independent judgements.
  • Ability to manage and prioritize multiple tasks and external dependencies to ensure deadlines are met.
  • Proven ability to manage multiple projects simultaneously and prioritize tasks based on urgency and impact.
  • Certifications such as CISA, CISSP, CISM, or Security+.

Desired Skills:
  • Working knowledge of ServiceNow and/or other GRC tools.
  • Working knowledge of security tools for vulnerability scanning, DLP, endpoint protection, etc.
  • Technical proficiency in Cybersecurity.


Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.


Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 10111346
  • Position Id: 2610250
  • Posted 2 hours ago

Company Info

About SAIC

SAIC® is a premier Fortune 500 mission integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, civilian and intelligence markets include secure high-end solutions in mission IT, enterprise IT, engineering services and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives.

We are approximately 24,000 strong; driven by mission, united by purpose, and inspired by opportunities. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.5 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom.

About_Company_One
Go to company profile
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Information Assurance Cyber Security Analyst

Remote

Today

Full-time

USD 40,001.00 - 80,000.00 per year

Cybersecurity Information System Security Officer (ISSO)

Remote

Today

Full-time

USD 40,000.00 per year

ServiceNow Software Developer

Remote

Today

Full-time

USD 120,001.00 - 160,000.00 per year

Search all similar jobs