CACI International Sr. Principal Cyber Security Assessor in Chantilly, Virginia

Job Description

What You’ll Get to Do:

As part of the CACI team, you will get to have an immediate impact on the sponsors Cyber Security posture while protecting our national security.

More About the Role:

You will perform Cyber Security Scans/Assessments on high visibility systems to ensure they comply with NIST/RMF/ICD 503 standards. You will also take actions and make recommendations based on findings and assessment standards.

  • Execute vulnerability assessment tools and SOPs for systems undergoing cyber assessment.

  • Provide recommendations to management on additional assessment activities that should be performed against a given target.

  • Provide documentation to Sponsor which describes all identified system risks, planned test procedures taken and test results.

  • Provide enhancement capabilities and SOPs to assessment operations for execution and implementation.

  • Maintain accountability to endure integrity and confidentiality of the process.

  • Provide analysis of vulnerabilities.

  • Review and make recommendations on program-level documentation (e.g., requirements specification, system architecture, design documents, test plans and security plans).

  • Develop and document security evaluation test plan and procedures.

  • Assist in researching, evaluating and developing relevant Information Security policies and guidance.

  • Actively participate in or lead technical exchange meetings and application review boards, documenting actions items/results of these events.

  • Brief management, as needed, on the status of action items and/or results of activities

  • Conduct hands-on security testing, analyze test results, document risk and recommend countermeasures.

  • Coordinate with other program elements conducting security testing.

  • Assess/calculate risk based on threats, vulnerabilities and shortfalls uncovered in testing.

  • Identify mitigating countermeasures to identified threats, vulnerabilities and shortfalls.

  • Conduct hands-on security testing leveraging commercial tools and custom developed scripts and procedures.

You’ll Bring These Qualifications:

You will bring your intimate knowledge of NIST 800-53 Rev 4 standards and methodologies, Risk Management Framework (RMF) implementation, ICD 503 implementation and standards.

  • Access controls

  • Audit and Accountability

  • Risk Assessment

  • System and Information Integrity

  • TS/SCI w/ poly

These Qualifications Would be Nice to Have:


  • Security Controls Assessors (SCA) course training

  • Significant experience carrying out large scale implementations of NIST standards while maintaining operational readiness and reducing customer impact

What We Can Offer You:

  • We’ve been named a Best Place to Work by the Washington Post.

  • Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

  • We offer competitive benefits and learning and development opportunities.

  • We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.

  • For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.

Job Location


CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.