CACI International Information Systems Security Engineer (Up to 25% Profit Sharing Benefit!) in Sterling, Virginia
BITS, a CACI Company, offers very rewarding and unique benefits, which equates to 50% of compensation on TOP of your base salary! The first part is a tax-qualified profit-sharing retirement plan, to which BITS annually contributes up to 25% of your base salary (not in excess of applicable IRS limits) to your retirement account. The second component consists of BITS' Individual Benefit Account (IBA), which is used for premiums, medical reimbursements, dependent care, education and Paid Time Off (PTO) policy. Both components of the BITS benefit package are paid for by BITS, in addition to your base salary and potential performance bonuses. We believe in a healthy home/work balance and both of our locations offer a wide variety of activities to balance with your work life. Learn more at http://www.caci.com/bit-systems/
We are looking for a talented Information Security Specialist that is excited about the dynamic intelligence community space and is knowledgeable in the latest security technologies available to aid in the creation of truly rich user experiences. This is your opportunity to work with talented engineering and development teams building novel solutions that fulfill intelligence community needs.
What You’ll Get to Do:
This section should outline the primary responsibilities of the position.
Duties and Responsibilities:
(Day to day actions this person will perform at the level of the job you are hiring at)
BIT Systems, a CACI Company, is hiring an Information Systems Security Engineer (ISSE). You will be part of an agile development team where problem-solving, teamwork, and communication skills are critical to success. This environment provides an unparalleled opportunity to grow and advance with cutting-edge technologies, while changing the way the government delivers software applications. Perhaps the most rewarding aspect of this program is the frequent user interaction and unsolicited feedback on the value you bring to the mission every single day. We live and breathe the mission right along-side our users. Choose us and make building and delivering innovative solutions part of your extraordinary career. Some of the detailed tasking you will perform include:
Serve as information security specialist for an IC program, reviewing all software, hardware, and infrastructure changes on the contract.
Lead Risk Management Framework (RMF) Assessment and Authorization (A&A) efforts, to include POA&M mitigation, the Continuous Monitoring program, and interfacing with government counterparts.
Review and update information security policy documentation for the contract, ensuring that it aligns with best practices and remains consistent with the current operating environment.
ISSE services to information system owners.
Applying best practices and processes to capture, refine, and assist in the prioritization of requirements based on risk, engineering principles, and mission requirements.
Providing enhanced security architectures, development tools, and information systems to facilitate secure missions.
Information System Owners (ISOs) guidance, requirements understanding, and options to support technical security engineering.
Capability based security analysis of system security architectures, identifies vulnerabilities, and provides suggested mitigation alternatives.
Participates in design, development, and implementation of information systems to ensure these systems are in compliance with required security features and safeguards.
Security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
Evaluates scan results and works with system developers and system administrators to eliminate or mitigate findings.
Generates certification and accreditation (C&A) documentation and artifacts (i.e. System Security Plans, Network Interface Planning Documents, etc.) for import / upload to the Xacta tool.
Proposes categorization of information systems based on types of information processed, in conjunction with DAO Representatives and ISOs.
Coordinates with appropriate Security Control Assessors (SCAs) early in engineering design phase for ongoing coordination, understanding of development and application of security controls, and security tradeoffs and other decisions.
More About this Role: optional
You’ll Bring These Qualifications: This section should include required qualifications, including Years of Experience as outlined in the Job Leveling Guide. Remember, if your contract contains minimum Labor Category Qualifications, they must be included.
- Bachelors degree in a technical discipline
- Minimum of 5 years of professional experience
Demonstrated competency in engineering related functional or cross-functional security areas (e.g., security engineering, IT operations security design, cybersecurity).
Working knowledge of IA principles and organizational requirements that are relevant to confidentiality, integrity, availability, authentication, and non-repudiation.
Working knowledge of DCID 6/3. ICD 503, CNSSI 1253, NIST SP 800-53, NIST SP 800-53A, NIST SP 800-37, and security controls assessment criteria/procedures.
Working knowledge of DoD/IC system security control requirements, roles, missions, and operational enterprise architecture.
Working knowledge of information security systems engineering principles and virtual machine technology.
Working knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).
Working knowledge of network access, identity, and access management (e.g., PKI).
Skill in discerning the protection needs (i.e., security controls) of information systems and networks.
Performing System Security in the NRO environment (working a system through the RMF process).
Writing CTPs based on DISA STIGs.
Executing CTPs for witness testing.
Working with engineers and system administrators to correct scan findings / system vulnerabilities.
These Qualifications Would be Nice to Have: This section should include and preferred or desired qualifications or attributes.
Working knowledge of system software and organizational design standards, policies, and authorized approaches (e.g., International Organization for Standardization guidelines) relating to system design.
Translating security requirements into functional requirements and options for developers.
Security control inheritance from enterprise security services and communicating these to developers.
Designing security controls based on IA principles and tenets.
Identifying gaps in technical capabilities and in talking to others to convey information effectively.
Experience using NESSUS / Security Center.
System Administrator experience.
Experience working in the Government cloud environment.
Desired Certifications: (If applicable)
AWS Certification (Developer, DevOps, or Architect)
Certified 8570 IAM or IAT level 3, CISSP, CISM, CASP, CISA or GSLC certification (CISSP preferred).
What We can Offer You:
- We’ve been named a Best Place to Work by the Washington Post.- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.- We offer competitive benefits and learning and development opportunities.- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.- For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.