CACI International Security Analyst in Chantilly, Virginia
What You’ll Get to Do:
If chosen, YOU will get to work with an agile, fast paced team focused on defending our client’s global networks through threat hunting and tactical analysis of ongoing attacks. In this role, you will plan and implement security measures to protect our clients information systems; review and respond to security alerts, scans, and audits; investigate suspicious alerts and logs, tune security log analysis and alert systems; coordinate security incident response; test and maintain the integrity of our security monitoring systems; and report on information systems security status, standards compliance, and deficiencies. If chosen, YOU will have the opportunity to work on highly visible projects that directly make an impact to the Nations mission. YOU will be a motivated, passionate leader with the ability to drive our long-term strategic goals with daily tactical objectives. YOU will be a critical component in taking complex problems and delivering solutions that are simple yet elegant.
More About the Role:
Performs security analysis of large network devices and systems
Construct and exploit open source and classified threat intelligence to detect, respond, and defeat advanced persistent threats (APTs)
Fully analyze network and host activity in successful and unsuccessful intrusions by advanced attackers
Conduct advanced threat hunt operations using known adversary tactics, techniques and procedures as well as indicators of attack in order to detect adversaries with persistent access to the enterprise
Create and add custom signatures, to mitigate highly dynamic threats to the enterprise using the latest threat information obtained from multiple sources
Correlate data from intrusion detection and prevention systems with data from other sources such as firewall, web server, and DNS logs
Notify the management team of significant changes in the security threat against the government networks in a timely manner and in writing via established reporting methods
Coordinate with appropriate organizations within the intelligence community regarding possible security incidents
Analysis with PCAP and associated tools (Wireshark, etc)
Reverse engineer network packet structures to extract information and to identify traffic of interest- examples include clear text/information leaks, header/payload structure, unique communication channels
Experience using scripting languages (Python) to process network traffic is preferable
You’ll Bring These Qualifications:
Must have an active TS/SCI with Poly
Minimum of five with Computer Network Operations
Minimum of five assimilating and evaluating large amounts of data from from multiple sources, operations, and demonstrated success converting findings into actions
Demonstrated ability to mine data from customer tools and data repositories/databases
Experience working across organizations to share information and coordinate future operations
Experience using scripting languages for automation, parsing data sets, and data visualization/analytics (e.g. python, perl, etc.)
Proven ability to communicate technical requirements to development teams and represent stakeholder equities through ongoing relationships
Strong analytic skills
Demonstrated strong writing and briefing skills
Ability to work in a team environment
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.