CACI International Cyber Security Architect - Agile in Ashburn, Virginia
CACI is looking for a Cybersecurity Architect with agile methodology experience to join our BEAGLE (Border Enforcement Applications for Government Leading-Edge Information Technology) Team supporting our Customs and Border Protection (CBP) client located in Northern Virginia!
As a member of the BEAGLE Cybersecurity Team, you will support the men and women charged with safeguarding the American people and enhancing the Nation’s safety, security, and prosperity. CBP agents and officers are on the front lines, every day, protecting our national security by combining customs, immigration, border security, and agricultural protection into one coordinated and supportive activity.
The ideal Cybersecurity Architect will need to have a deep technical understanding of Cybersecurity practices. You will work as an integral part of a highly productive team of seasoned technical professionals who thrive on supporting our customer's mission. You will need an in-depth knowledge of enterprise class Cybersecurity, information assurance requirements and network security and survivability requirements and capabilities.
You will also be responsible for supporting development of a spectrum of engineering artifacts that adequately, but succinctly capture system security requirements, application and network security design, and network security architecture.
The ideal candidate will have a background in cybersecurity; cyber mitigation techniques; various cybersecurity frameworks; and be comfortable working directly with multiple senior-level government sponsors.
What you’ll get to do:
Serve as a Cybersecurity Architectural Subject Matter Expert, embedded with the Agile Development team, responsible for the Information Assurance and Security of custom coded and COTS applications and databases. Responsible for activities associated with delivery of Cybersecurity technical control implementation, configuration, and architectural solutions associated with customer-defined systems/software projects; basic responsibilities include:
In-depth knowledge of system security engineering principles
Ability to apply system engineering principles to solve cybersecurity problems
Ability to apply system security engineering techniques to mitigate cyber vulnerabilities
Provide guidance on ensuring systems are designed, developed and implemented with required security features and safeguards
Architect & Engineer security – develop security goals, capabilities, and architecture to ensure NIST RMF compliance for applicable systems and applications
Design & Implement security – vulnerability management, build security into development
Integrate & Test Security – static and dynamic code analysis, system hardening, ensure the testing of software patches and system security settings, develop artifacts demonstrating compliance
Understanding of cybersecurity frameworks such as NIST cybersecurity criteria and NIST Risk Management Framework
Enable assurance for information security during all phases of agile software development and deployment. Coordinate with Cybersecurity ISSOs during the entire system lifecycle and assist with identifying and mitigating system and application vulnerabilities, and defining any negative security impacts
Provide Cybersecurity support and expertise to provide secure the SecDevOps Continuous Integration pipelines
Ability to design, configure, maintain, and support deployment, integration and test, and development of interconnected Enterprise systems and applications for cyber & data security and assurance for on-premise, Cloud and/or high-performance computing platforms, and supporting infrastructure including connected but not limited to PL2 and PL3 ancillary networks. Applications utilized, deployed, configured, and maintained will include, but are not limited to, NESSUS, SPLUNK, RSA Authentication Servers or equivalent/similar applications
Apply information security in accordance with National/DHS/CBP directives security policy
Work to achieve team objectives, operational plans with measurable contribution towards the achievement of results of the job function or completion of a project.
Execute basic Penetration Testing using tools such as Kali Linux
Must be a U.S. Citizen with the ability to pass CBP background investigation, criteria will include:
3-year check for felony convictions
1-year check for illegal drug use
1-year check for misconduct such as theft or fraud
College degree (B.S., M.S.) in Cybersecurity, Computer Science, Computer Information Systems, or a related discipline
Certifications: minimum Security+ CE or equivalent, CISSP or CASP preferred
You are good at:
Working knowledge of and ability to assist others in the use of information security provisioning and monitoring tools to support process improvement
Ability to apply advanced principles, theories, and concepts, and contribute to the development of innovative IA principles and ideas
Demonstrated experience with DISA Security Technical Implementation Guide (STIG) implementation and Security Content Automation Protocol (SCAP) tool usage
Experience with continuous integration tools and environments
Acting independently to expose and resolve problems
Demonstrated ability to identify and manage risk
Ability to identify cyber risks and identify potential technical or procedural mitigation of the risks
Demonstrated knowledge of Cybersecurity and enterprise Cybersecurity solutions
Strong knowledge of advanced cyber threats and adversary methodologies
Ability to develop new ideas and techniques that advance the state of the practice for cybersecurity; ability to apply advanced principles, theories, and concepts, and contribute to the development of innovative principles and ideas
Ability to document and/or present ideas and findings such that others can easily learn from or make decisions based upon the material
Excellent written and verbal communication skills
Strong collaboration skills and desire to work within a team
Highly responsible, team-oriented individual with very strong communication skills and work ethic; self-starter
Bonus would be having:
Technical Certifications, such as OCAJP; OCPJP; OCE, OCM; CSM.
Ability to apply advanced principles, theories, and concepts, and contribute to the development of innovative principles and ideas
Direct experience providing production support for applications utilizing Oracle databases; experience with Oracle tools
Additionally, familiarity with any of the following is highly desirable: HTML, Angular, VMware, ETL tools, ESB, message queuing, application security, automated testing, UML, VersionOne, Jira, or Sparx Enterprise Architect
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.