CACI International Senior Systems Engineer - AWS in Remote (Any State), Virginia
Senior Systems Engineer - AWS
Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: Secret
Employee Type: Regular
Percentage of Travel Required: None
Type of Travel: None
What You’ll Get to Do
The DHS CDM Program mission is to safeguard and secure cyberspace in an environment where the threat of cyber-attack is continuously growing and evolving. The CDM Program defends the United States (U.S.) Federal Information Technology (IT) networks from cybersecurity threats by providing continuous monitoring sensors (tools), diagnosis, mitigation tools, and associated services to strengthen the security posture of Government networks.
As an AWS Security Engineer, you are responsible for managing an enterprise that consists of multiple flavors of Linux & Windows within the AWS infrastructure. All with Cybersecurity at the core.
Although this is a high-pace environment, be assured you’d be joining a high-tech people-oriented team and overall community that’s just as flexible as we’re hoping you to be.
More About the Role
Currently, this is a full-time remote position (work from home). Must reside within the United States.
Must meet eligibility requirements for access to classified information and be successfully obtain to a Department of Homeland Security (DHS) EOD authorization.
Effectively and professionally communicate with both technical and non-technical colleagues and customers at all levels of seniority
You will spear-head in-depth system administration of AWS Cloud environments. Looking for a hands-on SME that– in other words, you need to understand “why things work the way they do”
You will plan, coordinate, and perform integration and troubleshooting of systems in an AWS Cloud environment.
Security is the key word – so you will of course have to integrate Multi-factor authentication (MFA, 2MFA)
What good is security without a key - Enhance data protection and compliance (with technologies such as OpenSSL, KeyStore, and Cyphers)
In-depth knowledge and understanding of DoD STIGs, best practices, and government/compliance requirements (such as NIST 800-53, NIST 800-171, FISMA, FEDRAMP), and negotiating/working-with IA personnel to arrive at sensible and effective solutions
Manage AWS configuration and policies using automated methods (that means writing scripts, code, etc. to implement including CLI) – knowledge of JSON and Python helps too
Able to track down the root cause of a service/application failure through the use of logs and CLI-based tools (Log-based Analysis, not just guessing)
Perform integrations with network devices, such as VPN, firewall, routing
Work independently or on very small teams to integrate systems and solutions, triage issues, and prioritize tasks
Ability to create and coordinate technical solutions. This will involve briefing solutions to other members of the team.
You may be asked to attend meetings, obtain credentials, etc. Virtually (with and without a camera), in a CACI or government office at any time
You’ll Bring These Qualifications
Cleared for Secret work
DoD Approved 8570 Baseline Certification: IAT Level II
US Citizenship required.
University Degree (BS), or equivalent years of related experience, and additionally 10+ years of related IT engineering experience required.
10+ years’ cumulative experience with customer interactions, including presenting, answering questions, proactively resolving issues.
10+ years’ cumulative experience with in-depth systems administration in Linux environments (RHCE equivalence) and Windows Server environments.
10+ years’ cumulative experience integrating and troubleshooting systems in a Cloud environment (AWS Cloud preferred).
7+ years’ hands-on cumulative experience creating, analyzing and automating Linux scripts (Command, Bash, C, Ansible) – basically you need to know how to connect things for automation needs.
5+ years’ cumulative experience implementing and securing services relating to remote connections.
3+ years’ cumulative experience integrating/understanding Multi-factor authentication (MFA, 2MFA).
7+ years’ cumulative experience with enhance data protection and compliance (such as OpenSSL, KeyStore, Cyphers).
3+ years’ cumulative experience with securing systems by following STIGs, best practices, and government/compliance requirements (such as NIST 800-53, NIST 800-171, FISMA, FEDRAMP), and negotiating/working-with IA personnel to arrive at sensible and effective solutions.
1+ years’ cumulative experience with network devices, integrations and concepts such as VPN, firewall, routing.
1+ years’ cumulative experience with Agile/Kanban, Git/GitHub
Responsible for Configuration, maintenance, and troubleshooting when necessary - IaaS (Linux and windows), SaaS, and PaaS implementations. "as well as other cloud resources"
One (1) of the following certifications: AWS DevOps Engineering Expert, AWS Solutions Architect Expert, AWS Security Engineer Associate (Certification must be recent)
These Qualifications Would Be Nice to Have
Technical degree in Computer Science, Computer Engineering, or a related subject area
Relevant Technical and/or Security Certifications (e.g. CISSP, Sec+ etc.)
Two or more of the following certifications: AWS DevOps Engineering Expert, AWS Solutions Architect Expert, AWS Security Engineer Associate
Proven communication skills both written and verbal to management
Familiarity with common cybersecurity tools is greatly desired. Our mission to support DHS in their cybersecurity needs, inclusive of identifying and preventing culprits from accessing systems/data that they shouldn’t is a high priority focus for our team.
2+ years’ recent (within the past 3 years) cumulative experience with AWS Cloud Computing
3+ years’ cumulative experience with VMWare (implementing, managing, configuring)
Some experience (1+ years’) with any or all these products or technologies: MS SQL, Ansible, Puppet, Chef, Qualys, SCCM, BigFix, MDM solutions, GIT (again, nice to have, not required)
Some experience (1+ years’) setup and integration with IIS, SQL Server
Experienced and understanding of ADFS, SAML and PKI.
Experience with AWS Rest API calls
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 60 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
Company Overview: At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.
Pay Range: The proposed salary range for this position is $93,300-$200,500. There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, geographic location, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. Employment benefits include health and wellness programs, income protection, paid leave and, life insurance, retirement and savings.
As a federal contractor, CACI is subject to any federal vaccine mandates or other customer vaccination requirements. All new hires are required to report their vaccination status.