CACI International Risk Management and Compliance Lead in Chantilly, Virginia
CACI is currently looking for outstanding IT candidates to join our TSA IT Management, Performance Analysis, and Collaborative Technologies (IMPACT) team in the National Capital Region (NCR) and throughout the United States. CACI will provide a variety of IT services through IMPACT including cyber security, identity and access management, risk management, cloud integration and engineering, field support services, service desk, application deployment and optimization, and operations center support services. CACI will support TSA in both classified and unclassified IT operational environments increasing availability and security for a variety of applications and systems. IMPACT services will integrate with the broader DHS mission and enhance existing Department-wide IT capabilities.
The Risk Management and Compliance Lead will lead a team responsible for providing support to maintain ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions. They will support TSA in maintenance of an all-encompassing system security program to proactively manage TSA Infrastructure systems security risks, vulnerabilities, and compliance with security configurations, guidance, and policies.
Management and Compliance Support to include Risk Management Framework (RMF) and FISMA compliance, Security Release management, Security Authorization and Ongoing Authorization, and DHS policy Directives and Cyber Orders.
Managing, coordinating, documenting, assessing, recommending and support Cyber Security operations IAW operational plans, SOPs, and Work Instructions
Recommend improvements on the security risk posture through new SOPs, tools, or methods
Compliance POA&M analysis, management, compliance, and remediation
Monitor security advisories and security bulletins to ensure compliance with applicable security requirements
Ensure remediation of all, but not limited to, critical and high vulnerabilities within prescribed timeframes, not inclusive of the standard POA&M process
Ensure remediation of all applicable DHS ISVM Alerts and Bulletins for applicable TSA systems
Create remediation plans and make recommendations on approving security risk through new tools, SOP, or other methods
Track and report software inventory for all infrastructure devices (patches and firmware)
Ability to obtain a DOD Security Clearance
Ability to obtain a DHS Entrance on Duty (EOD)
BA/BS or equivalent experience and minimum 5 years of related work experience.
Experience with IAVM processes and best practices
Experience with security compliance reporting for an enterprise
Experience with generating POA&Ms
Experience with FISMA compliance and the RMF Assessment and Authorization process
Ability to manage and lead a team by example
Excellent written and oral communication skills
Effective and efficient Time management of self and team duties
Strong understanding of monitoring tools such as Sunflower, NESSUS/Tenable Security Center and System Center Configuration Manager
Able to plan and prioritize team workload to ensure objectives are achieved on time.
- Relevant DHS focused experience
We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.