CACI International Cybersecurity Subject Matter Expert in San Antonio, Texas
Cybersecurity Subject Matter Expert
Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: TS/SCI
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Local
CACI is seeking a Cybersecurity SME to join our DevSecOps Development and Sustainment team working for a CACI DoD customer. The team will be responsible for the sustainment and continuous re-engineering of a DevSecOps pipeline as described in the DoD Enterprise DevSecOps Reference Design Document.
What You’ll Get to Do:
As a Cybersecurity SME , you will:
Work in close coordination with team members and other groups related to cybersecurity matters. Ensure projects meet cybersecurity objectives.
Ensure National Institute of Standards and Technology (NIST) compliance standards are met
Responsible for cybersecurity operations such as process re-engineering, automation, and documentation
Conducts threat and risk analysis, identify cybersecurity issues, assess vulnerabilities and devise/drive effective mitigation
Develop innovative solutions to complex problems
Maintain awareness and understanding of new cybersecurity threats, trends, and procedures
Support the technical application of existing and future cybersecurity tools, analysis of requirements and design specifications, development of capability requirements, and provide consultation and recommendations on various solutions
Support engineering design reviews such as System Requirements Reviews (SRR), Design Reviews (PDR/CDR) and Program Management Reviews (PMRs)
Develop and/or gather information to generate technical documents and status reports necessary to support deliverables as required
Support continuous process improvement while exhibiting the ability to identify waste in the system and improve the overall process to reduce wasted time and redundancy
More About the Role:
The team will maintain/update Infrastructure as Code (IaC) and Configuration as Code (CaC) to be fully cloud agnostic and to automate the deployment of various Kubernetes distributions (Kubernetes upstream, Rancher, VMWare, etc.). The team will deploy the IaC/CaC in relevant product team environments, across multiple security classifications (in-cloud and on-premises) and provide continued development/support in a Platform-as-a-Service (PaaS) capacity.
The team will utilize or create necessary new hardened containers from the DoD Centralized Artifacts Repository (DCAR) and update/maintain these containers according to the DoD Enterprise DevSecOps Container Hardening Document/Process. The team will also develop various backend/automated processes for the automation of the container accreditation process and create any accreditation documentation following DoD best practices including the Risk Management Framework (RMF) process.
Services will be performed physically on-site at the customer’s location in San Antonio, TX when required, 1-2 days a week, or through telework for the remainder.
You’ll Bring These Qualifications:
US Citizenship is a mandatory requirement
Top Secret level clearance with Sensitive Compartmented Information (TS/SCI) eligibility
Ability to obtain Top Secret / Special Access Program (SAP) clearance (if needed)
BA or BS plus 5 years’ experience is required (MA or MS is a plus)
Expertise in Cloud and off-premises security best practices
Extensive cybersecurity knowledge/experience in cybersecurity analysis; includes monitoring security access, executive security assessments, overseeing Security Audits, identifying security breaches, and developing recovery plans
Experience with designing and implementing network security solutions; includes firewalls, intrusion detection, encryption, monitoring, vulnerability scanning, and authentication
Experience with the full software or systems development life cycle, including requirements analysis, design, integration, testing, and implementation
Demonstrated experience in the following:
Zero trust architectures (Beyond Corp/SDP)
NIST Publication 800-53 Security and Privacy Controls for Federal Information Systems and Organization
NIST Publication 800-190 Application Container Security Guide
Effective interpersonal skills including mentoring, coaching, collaborating, and team building
Strong analytical, planning, and organizational skills with an ability to manage competing demands
Excellent oral and written communications skills
Proficient in Microsoft Office applications (Work, Excel, PowerPoint)
These Qualifications Would be Nice to Have:
MA or MS plus 5 years’ experience
Experience supporting Federal government projects (desired)
Experience on an Agile/Scrum team (desired)
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
Company Overview: At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is an Equal Opportunity Employer – Females/Minorities/Protected Veterans/Individuals with Disabilities.
As a federal contractor, CACI is subject to any federal vaccine mandates or other customer vaccination requirements. All new hires are required to report their vaccination status.