Network Analyst

Network Analyst

Job Category: Security

Time Type: Full time

Minimum Clearance Required to Start: TS/SCI

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Continental US

* * *

CACI is seeking a detail-oriented and proactive Network Analyst to join our cybersecurity team supporting the U.S. Strategic Command (USSTRATCOM) Cybersecurity Service Provider (CSSP). This role directly aligns with the DoD 8140 Cyber Workforce Framework work role for Cyber Network Analyst (ID: 443) at the Intermediate level. The successful candidate will specialize in analyzing network traffic signatures, discovering anomalies through packet capture (PCAP) analysis, and contributing to the identification, assessment, and mitigation of intrusions. Responsibilities include developing network detection rules, creating alerts and dashboards, assisting with network mapping, and collaborating on security improvements. This position requires the ability to work rotating shifts as necessary to support 24/7 mission requirements. 

 

The Opportunity:  

Join a CACI team where the mission is critical, and the team culture is paramount. We are building a positive, fun, collaborative, and light-hearted environment focused on collective success and individual growth. Our leadership is committed to: 

Culture: Fostering an engaging workplace through gamified cyber concepts (tabletop exercises, Backdoors & Breaches card game), team contests, informative lunch-and-learn sessions, active participation in local youth cyber programs, and opportunities to attend leading industry conventions like DEFCON and BSIDES. 

Training: Championing life-long learning. We prioritize robust training programs aligned with your career goals and DoD requirements, focusing on advanced network analysis techniques, intrusion detection, and emerging threats. Our leadership provides mentorship and resources to ensure continuous professional development. 

Talent Management: Investing in your future. Every team member receives a detailed and fully customized Individual Development Plan (IDP). We facilitate cross-training and exploration of different roles within CACI, ensuring you remain challenged, engaged, and never bored. 

This is more than just a job; it's an opportunity to apply your network analysis skills to defend vital national security networks within a supportive and collaborative team environment. 

 

Responsibilities: 

As a Network Analyst, you will perform in-depth network analysis and support intrusion detection efforts, including but not limited to: 

• Network Traffic Analysis: Perform deep-packet inspection and analyze network traffic (PCAP, flow data) to identify anomalous activity, characterize traffic patterns, detect C2 beaconing or data exfiltration, and understand protocol usage (KSAT 4603, 4212, 4201, 4233, 4241, 4268, 4270, 4275, 4348, 4680). 

• Signature & Rule Development: Develop custom intrusion detection signatures (e.g., Snort, Suricata), rules, alerts, and queries based on traffic analysis, threat intelligence, and identified compromises (KSAT 4171, 4230, 4637). Utilize regular expressions and Berkeley Packet Filters (KSAT 4661, 4672). 

• Intrusion Detection & Analysis: Monitor network data, triage alerts, and analyze potential intrusions. Correlate indicators of compromise from network data and logs (KSAT 4307, 4225, 4267). Assist in assessing adversary TTPs and attack vectors (KSAT 4183, 4250). 

• Network Mapping & Enumeration: Utilize network mapping tools and analyze device discovery tool output to assist in constructing and maintaining network maps (KSAT 4220, 4175, 4322, 4675). 

• Tool Usage & Integration: Employ network traffic packet analyzers, SIEM platforms, Comply to Connect (C2C) operations, IDS/IPS sensors, and potentially scripting (Bash, Python) for analysis and automation tasks (KSAT 4680, 4364, 8179, 8180). Configure and maintain sensor grids (KSAT 4218, 4357). 

• Reporting & Recommendations: Accurately document analysis findings, anomalous connections, and potential threats (KSAT 4170, 4242). Provide recommendations for tuning security tools (IDS/IPS, firewalls) and network configurations. Recommend patches or hardening measures for network vulnerabilities (KSAT 8182). Ensure reporting meets JFHQ-DODIN timelines per CJCSM 6510.01B. 

• Stakeholder Collaboration: Work with infrastructure teams, incident responders, and other analysts to investigate findings, share threat information, and implement security improvements. 

• Additional Duties: Perform other related duties as assigned by leadership to meet mission requirements and support USSTRATCOM objectives. Depending on experience and team structure, this role may involve working under direct supervision or potentially providing guidance, training, or supervision to others. 

 

Qualifications: 

Required Certifications (Must possess one): 

• GIAC Certified Intrusion Analyst (GCIA) 

• Combination of: Certified Wireless Network Administrator (CWNA) and Snort Certified Professional (SCP) 

Conditional Alternative Certifications (Considered): 

• Cisco Certified Network Professional (CCNP) Security (preferably including exam 300-710 SNCF) 

• Certified Forensic Network Examiner (CFNE) 

• GIAC Network Forensic Analyst (GNFA) 

Education & Experience: 

• Bachelor's degree (BS) in Information Technology, Cybersecurity, Computer Science, or a related technical field is required. 

• A minimum of 5 years of relevant experience is preferred, with a strong emphasis on network traffic analysis, intrusion detection, PCAP analysis, or network security monitoring. 

• Experience working within a Security Operations Center (SOC), CSSP, or Network Operations Center (NOC) environment is highly desirable. 

• Experience working within DoD or Federal government environments and familiarity with DoD cybersecurity policies and network architecture is a plus. 

• Expert-level knowledge of TCP/IP networking protocols (IPv4/IPv6), services (DNS, HTTP, etc.), network security methodologies, and common attack vectors (KSAT 22, 4472, 4558). 

• Demonstrated proficiency with network analysis tools (e.g., Wireshark, tcpdump, Zeek/Bro), IDS/IPS systems (e.g., Snort, Suricata), and SIEM platforms. 

• Skill in developing IDS/IPS signatures and using packet filters (BPF). 

• Familiarity with scripting languages (e.g., Python, Bash) for network analysis tasks is beneficial. 

• Strong analytical and problem-solving skills with the ability to interpret complex network data. 

• Excellent written and verbal communication skills. 

• Must be willing and able to work rotating shifts (days, evenings, nights, weekends, holidays) as required by mission needs. 

• Must possess an active or be eligible to acquire Top Secret w/ SCI security clearance. 

-

________________________________________________________________________________________

What You Can Expect:

 

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

 

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy. 

 

Your potential is limitless. So is ours.

Learn more about CACI here.

________________________________________________________________________________________

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.

The proposed salary range for this position is:

$65,000 - $136,500

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.