Cyber Data Analytics Engineer

About The Position

Requirements

• 5+ years of Systems Engineer or similar experience
• IAT II certification and obtain CSSP Infrastructure Support certification 120 days of hire
• Possesses a strong work ethic, be self-directed, and be a detail-oriented professional
• Willing to learn and adapt to new, cutting-edge technologies
• Possess excellent time management skills and the drive to work unsupervised
• Demonstrated ability to use problem solving techniques such as root cause analysis to resolve issues
• Advanced Linux proficiency
• Knowledge of network communication principles, common infrastructure components (IPAM, DNS, DHCP), load balancers, firewalls, virtual and physical infrastructure design
• Experience with hypervisors such as VMware ESXi, Citrix XenServer, Microsoft Hyper-V
• Advanced knowledge of systems engineering principles, methods, and techniques

Nice To Haves

• Experience with public clouds such as AWS, Google, Rackspace.
• Experience with private clouds such as VMWare, OpenStack.
• Strong background in Unix, or Windows servers.
• Experience with SIEM technologies such as Elastic, Splunk, and/or ArcS

Responsibilities

• Resolve escalated issues and perform root cause analysis for complex issues
• Have ability to communicate with program SMEs as well as other customers with less technical backgrounds
• Demonstrate a high attention to detail, examining every aspect of the system
• Be able to multi-task, working with several different customers in various stages of onboarding process
• Apply Configuration Management disciplines to maintain hardware/software revisions, security patches, hardening, and documentation
• Coordinate and conducts event collection, log management, event management, compliance activities, and identity monitoring activities for the customer's system
• Works with other Service Providers to support areas of common interest
• Provide all preventative and corrective maintenance to ensure consistent, reliable, and secure service availability
• Maintain system availability and reliability with a threshold of 99.99%
• Detect and ticket degradations (volume/velocity) of all SIEM data flows within 60 minutes of the start of the degradation
• Perform day-to-day maintenance, and specific scheduled maintenance activities that result from manufacturers recommended service intervals, alerts, bulletins, available patches, and updates according to agency approved change management processes
• Execute emergency maintenance actions with sufficient urgency to preclude unacceptable outage durations, approved by the Government prior to execution, and coordinated through and approved by CSOC and ESC government management
• Perform all development, engineering, testing, integration, and implementation actions necessary for major vendor revisions
• Retain documentation regarding loss of event logs (e.g. June 5-7th DNS logs were not ingested from SBU and are lost)
• Configure all assets assigned to this service within the Government Furnished Information - Software Tools list in accordance with all Federal, DoD, IC, and NGA laws, directives, orders, polices, guidance, procedures etc.
• Utilize agency approved ticketing systems to document, track, assign, update, and coordinate all engineering, integration, configuration, and maintenance actions

Benefits

• Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
• We offer competitive compensation, benefits and learning and development opportunities.
• Our broad and competitive mix of benefits options is designed to support and protect employees and their families.
• At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.