CACI International SOC Support Specialist (Security Specialist) in Chantilly, Virginia
CACI is currently looking for outstanding IT candidates to join our TSA IT Management, Performance Analysis, and Collaborative Technologies (IMPACT) team in the National Capital Region (NCR) and throughout the United States. CACI provides a variety of IT services through IMPACT including cyber security, identity and access management, risk management, cloud integration and engineering, field support services, service desk, application deployment and optimization, and operations center support services. CACI supports TSA in both classified and unclassified IT operational environments increasing availability and security for a variety of applications and systems. IMPACT services will integrate with the broader DHS mission and enhance existing Department-wide IT capabilities.
What You’ll Get to Do:
The successful candidate must be well-versed in security monitoring and response operations, cyber security tools, intrusion detection, and secured networks.
Responsible for Security monitoring across TSA Infrastructure
Responsible for executing the cyber security monitoring and response methodology in accordance with TSA infrastructure program requirements
Responsible for implementing and applying technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access
Provide security support of Network Security Systems
Proxy Server Web Content Filter
Host Intrusion Detection
Security Event Logging
Coordinate response to detected anomalies or incidents through by maintaining network device and information security incident, damage and threat assessment programs
Investigate network device and information security incidents to determine root cause and remediation efforts
Support Vulnerability Scanning Assessments by identifying vulnerabilities or anomalies, providing mitigation, and associated reports
Support measurement and SLRs defined by the TSA Infrastructure Cyber Security Monitoring Response program
Provide intrusion support to high technology investigations in the form of network assessments
Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities
Brief senior level internal and external customers on technical adherence to security controls as part of the Cyber Security Monitoring and Response program
Coordinate with Cyber SOC to provide Cyber Security Monitoring and Response reports
You’ll Bring These Qualifications:
US Citizenship required
An active DHS Entrance on Duty (EOD) is required to begin employment and must be maintained as a requirement of continued employment
University Degree (BA/BS) or equivalent experience and minimum 3 years related work experience
Must be a “hands-on” engineer with a well-developed understanding of Security Hardening guides, Vulnerability Assessment tools and methods, Security Content and Automation Protocol (SCAP), Security Monitoring and Response tools and procedures
Well-developed understanding of Defensive (and Offensive) Cybersecurity technologies, e.g. Next Generation Firewall (NGFW), Intrusion Prevention System (IPS), Content Filtering devices and proxies (Web and Email), Data Loss Prevention (DLP), Security Intrusion and Event Monitoring (SIEM), etc.
Understands the structure and functionality of COTS applications (e.g., Security Automation & Orchestration platforms, Splunk, etc.)
Understands Python programming language
Flexible – The environment is highly dynamic. You will be expected to keep up with the changing environment while ensuring a high level of operational effectiveness
Team Player – This role is part of a much larger team
ITIL v4 certification required within 90 days of hire
These Qualifications Would be Nice to Have:
- Relevant DHS focused experience
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.