CACI International Cloud Security Engineer in Reston, Virginia

Job Description

You will serve as a contract systems and business analyst supporting organization-wide cyber assessments. This position will deliver technical and programmatic solutions to support activities of the group to assess and report risks and vulnerabilities of organizational systems in order to provide senior decision makers with actionable data to make strategic investment decisions. Roles and responsibilities include, but are not limited to:

General Duties:

  • Shall support efforts requiring AWS IAM policy creation and execution on multiple network domains

  • Shall provide support and lead analytical, programmatic and business activities in line with defined process and procedures

  • Shall provide assessment operational support in order to streamline and maintain effective and efficient assessment workflow and operations

  • Shall provide support in delivering tools, techniques and guidance in order to increase quality assessment written and technical products

  • Review and make recommendations on program-level documentation (e.g., requirements specification, system architecture, design documents, test plans and security plans)

  • Provide quality assurance reviews on security evaluation test plans and procedures

  • Assist in researching, evaluating and developing relevant information security policies and guidance

  • Brief management, as needed, on the status of action items and/ or results of these activities

  • Conduct hands-on systems analysis and engineering in order to deliver solutions to support assessment workflow and reporting processes

  • Coordinate with other program elements conducting security testing

  • Deliver solutions that enable the division to consistently assess/calculate risk based on threats, vulnerabilities and shortfalls uncovered in testing

  • Assist with the implementation, modification, and improvement of the Sponsor’s Risk Management Framework (RMF) workflow and its component parts, specifically with continuous monitoring tools used by the program

  • Assist with the development of standards and requirements for securing Sponsor IT systems

  • Assist in providing guidance on the population of required security documentation for both internal Sponsor documentation as well as RMF reciprocity documentation, including Security Controls Traceability Matrix (SCTM), Systems Security Plan (SSP) and Concept of Operations (CONOPS), SSP Questionnaire, Continuous Monitoring Plan and Functional Testing Plans

  • Assist in the generation of monthly security relevant articles and metrics for distribution to Sponsor’s senior leadership

  • Assist in the generation and deployment of web content in support of informing the Sponsor organization’s population of new and existing standards, general FAQ, requirement and workflows

  • Assist with the development of documentation templates for use by the sponsor population

  • Perform data analysis on assessment findings to determine trends, and develop reports on those trends in an effort to increase security awareness within the Sponsor organization

  • Perform functional analysis, timeline analysis, cost estimation, trade studies, and requirements allocation

  • Apply, as appropriate, activity and data modeling, transaction flow analysis, internal control and risk analysis and modern business methods and performance measurement techniques

  • Develop, improve, or build in regulatory and best practices for risk reduction across a range of enterprise-wide applications, systems, networks and the corresponding interfaces

  • Short-term, hands-on technical assistance for information security or project staffs to aid in securely configuring systems or troubleshooting security issues

  • Research, design, and help build proof of concept to address emergent needs or vulnerabilities in applications, systems, or networks

  • Provide technical support to existing security applications and utilities to develop improvements in configurations, added capabilities or evolutionary replacement

You will have experience or proven knowledge in:

  • AWS, NESSUS for vulnerability management, Ability to query and perform analysis in Splunk, Configuration Management (Puppet)

  • Experience or proven knowledge in:

    AWS, NESSUS for vulnerability management, Ability to query and perform analysis in Splunk, Configuration Management (Puppet) Managed Linux Baseline (CLSE), Windows and Virtual Desktops, Experience with Continuous Monitoring, IAA requirements and A&A, Experience testing systems and ability to identify issues with workflows or rule validation.

You will have one of the following:

  • 10 Years of job related experience and High School/GED diploma

  • 8 Years of job related experience and Associate degree

  • 4-7 Years of job related experience and Bachelor’s degree

  • 3 Years of job related experience and Master’s degree

  • 2 Years of job related experience and Doctorate

You may have the following:

  • AWS Certification (Architect, Developer, or SysOps) or ability to obtain within 6 months.

  • Experience with security scan validation

  • Experience with OS Administration

  • Experience with Neo4j/Cypher

  • Experience with Auditd (System Auditing)

  • Experience with Agile development and security experience preferred but not required

Core hours:

9:30am to 2:30pm

Work location:

Herndon, VA

Job Location


CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.