CACI International Cyber Security Engineer/Information Assurance Technician (IAT-II) in Aberdeen Proving Ground, Maryland
Cyber Security Engineer/Information Assurance Technician (IAT-II)
Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: TS/SCI
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Continental US
CACI is seeking a Cyber Security Engineer to join our team at Aberdeen Proving Ground, MD. The ideal candidate will be responsible for ensuring IT system compliance with all applicable laws, DoD policies, and standards. Perform system scans, analyze results, and write necessary reports and plans. Provide network environment and computing environment support, including monitoring and validating all applicable Information Assurance (IA) vulnerability alerts, IA vulnerability bulletins, and Cyber Tasking Orders from U.S. Cyber Command. Develop and implement standard operating procedures, System Security Plans (SSP), Plan Of Actions and Milestones (POA&Ms) and other related documents to satisfy Assessment and Authorization requirements in accordance with NIST 800-53, FISMA, Risk Management Framework (RMF) and other government guidelines, as required to achieve and maintain an ATO (Authority To Operate).
What You’ll Get to Do:
Assess and validate technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access.
Maintain computer systems, networks, and other related devices, including monitoring and validating all applicable IA vulnerability alerts, IA vulnerability bulletins, and Cyber Tasking Orders from U.S. Cyber Command.
Investigate IT related security incidents to determine extent of compromise to national security information and automated information systems.
May provide support to investigations in the form of network assessments.
Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding, network, device security and encryption.
Performs duties in support of in-house and external customers. Assesses and validates national security systems, tests security products/systems to detect computer and information security weakness or evidence of compromise.
Produces and edits security documentation as part of the body of evidence required for accreditation.
Provides critical written and verbal analyses of security architecture documentation to include vulnerability and risk assessments.
Develop and implement documentation to satisfy NIST 800-53, FISMA, and Risk Management Framework (RMF) requirements. Designs, reviews and monitors Plans of Action and Milestones (POA&M) to remediate findings from vulnerability and risk assessments.
Provides information assurance for digital information, ensuring its confidentiality, integrity, and availability. Responsibilities include monitoring and testing of IT systems for vulnerabilities and indications of compromise, incident response and remediation, and compliance with applicable government and other external standards.
More About the Role:
Apply instructions and pre-established guidelines to perform IA tasks.
Provide programmatic and end user IA support.
Support, monitor, test, and troubleshoot hardware and software IA problems pertaining to their CE.
Apply appropriate CE and NE access controls.
Implement applicable patches including IA vulnerability alerts (IAVA), IA vulnerability bulletins (IAVB), and technical advisories (TA) for the CE operating system(s).
Install, test, maintain, and upgrade network operating systems software and hardware to comply with IA requirements.
Support Security Test and Evaluations (Part of A&A Process).
You’ll Bring These Qualifications:
Active TS/SCI Clearance and obtain a Poly.
Must have at least 5 years of interpreting and implementing DoD IT/Cyber directives, instructions, and policies that provide direction and guidance.
Knowledge of the Assessment & Authorization, and NIST RMF processes.
Experience installing, maintaining, administering, and troubleshooting computer systems and networks.
Experience with network security architecture to include, but not limited to firewalls, intrusion detection/prevention systems (IDS/IPS), content filtering devices, encryption devices, and DoD Public Key Infrastructure (PKI).
Qualified at the IAT Level II for the DoD Information Assurance Workforce, must possess one of the following certifications: CCNA-Security, GICSP, GSEC, Security+, or SSCP.
These Qualifications Would be Nice to Have:
Familiar with scanning tools (e.g. NESSUS, ACAS, etc.)
Familiarity with Army tactical intelligence systems; experience with eMASS or Xacta; technical writing experience (creating/updating IA policy & procedure documentation)
Excellent written and verbal communication skills with strong presentation abilities; must be able to work well on independent engagements as well as within a team setting; strong client presence and interaction abilities; excellent understanding of common computing platforms, including Windows Server, RedHat Linux Server, and vendor specific appliance support; Some understanding of military hierarchy.
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
Company Overview: At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is an Equal Opportunity Employer – Females/Minorities/Protected Veterans/Individuals with Disabilities.
As directed by Executive Order 14042, all current and newly hired employees are required to be fully vaccinated for COVID-19 by January 18, 2022 and provide proof of vaccination, except where they are legally entitled to an exemption/accommodation.