Cyber Security Analyst/ISSO

Cyber Security Analyst/ISSO

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: Secret

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Local

* * *

The Opportunity:

CACI is seeking a Cyber Security Analyst to join our team supporting a Department of Defense (DoD) client. If you are looking for your next career challenge with a highly skilled development team, CACI would like to speak with you. In this role, you will support the DoD Risk Management Framework (RMF) process and activities to support the customer’s mission and cyber security posture for a portfolio of systems (NIPR/SIPR), sponsored by a variety of DoD customers. You will be an integral part of the team specializing in cybersecurity and Authority To Operate (ATO) package management in a DoD cloud environment. 

Responsibilities:

·       Work collaboratively with the ISSM, stakeholders, and the team to support cybersecurity efforts (NIPR/SIPR) 

·       Create and manage RMF artifacts and the entire ATO lifecycle   

·       Conduct vulnerability assessments on technologies to verify system security and compliance and assist in remediation efforts   

·       Review and analyze GitHub and software vulnerability scans   

·       Utilize scripting and development tools to achieve cybersecurity compliance and reporting needs   

·       Ensure application, system, environment, or organizational changes do not have an adverse effect on the security posture of the system security compliance and assessment

·       Monitor and validate vulnerability postures in Assured Compliance Assessment Solution (ACAS), and ensure all systems comply with DISA Security Technical Implementation Guidelines (STIG)s and with CSSP requirements

·       Update and ensure Plan of Action and Milestones (POA&Ms) are in place for vulnerabilities that cannot be remedied at the time of the finding

Qualifications:

•         Must be a U.S. Citizen with an active DoD Secret clearance (at minimum)

•         Typically requires at least 2 years’ experience and a B.S. in Information Technology, Information Security, or related field. Equivalent professional experience may be considered in lieu of degree.

•         Experience and knowledge in DoD RMF v2.0, National Institute of Standards (NIST) directives and controls, and Authorization to Operate (ATO) processes  

•         Knowledge of cybersecurity concepts and tools, such as DISA STIGs, SCAP, SCC Tool

•         Minimum 2 years’ experience using the DoD Enterprise Mission Assurance Support Service (eMASS) as a system certification and accreditation tracking tool

•         Trained in the use of the ACAS to include how to remedy Information Assurance Vulnerability Management (IAVM) findings

•         DoD Manual 8140.03 level Intermediate from the Foundational Qualification Options for the (541) Vulnerability Assessment Analyst work role including applicable certification(s) (e.g_Security+) or be able to obtain within 6 months of starting position

•         Experience with cloud implementations (e.g. MS Azure) and environments  

•         Experience using vulnerability assessment tools as well as analyzing and interpreting assessment results

•         Experience in initial risk assessment activities and ability to assist Authorizing Official risk determination with risk acceptance

Desired:

·       Experience implementing NIST 800-53 controls  

·       Familiarity with any of the following: FEDRAMP, DISA APL, Reciprocity, DevSecOps, SIEM, Microsoft Defender for Cloud

·       Familiarity with Continuous ATO

·       Experience with container technology   

·       Operational knowledge of GitHub Advanced Security scanning tools, to include reviewing results of custom software security scans

·       Ability to apply principles, theories, and concepts while contributing to the development of new, innovative principles and ideas 

·       Highly responsible, team-oriented individual with strong work ethic

·       Excellent written and verbal communication skills 

-

________________________________________________________________________________________

What You Can Expect:

 

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

 

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy. 

 

Your potential is limitless. So is ours.

Learn more about CACI here.

________________________________________________________________________________________

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.

The proposed salary range for this position is:

$66,100 - $135,600

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.