Information System Security Officer

About The Position

Requirements

• Bachelor’s degree in a related field or 6 years’ experience.
• Knowledgeable of DoDI 8500.01 (Cyber Security), 8510.01 (Risk Management Framework for Air Force Information Technology), AFI 17-101(Risk Management Framework for Air Force Information Technology), and NIST SP 800-53 Security and Privacy Controls.
• Active DoD 8140 IAM Level II certification (CASP+, CCNP Security, CISA, CISSP (or Associate), CCSP, GCED, or GCIH).
• Strong knowledge of IT security principles, network monitoring, operating systems, and security tools.
• Strong customer service, interpersonal, and communication skills (written and verbal).
• Good organizational, time management, analytical, and problem-solving skills.
• Must be able to work as part of a team and individually, meeting tight deadlines.
• Candidates must be U.S. Citizens and have the ability to obtain a secret clearance investigation in a timely manner.

Nice To Haves

• Knowledgeable with Enterprise Mission Assurance Support Service (eMASS) and associated artifacts and Plan of Actions & Milestone (POA&M) requirements.
• Knowledgeable about ZeroTrust tools and techniques including Identity, Credential, and Access Management (ICAM) efforts.
• Ability to review and analyze for consistency, congruency, and in-depth due diligence.
• Experience with Cloud environments and Cloud security tools.
• Experience in software development environments including DevSecOps and tools such as the Atlassian suite (Jira, Confluence, etc).
• Experience with security control evidence development.
• Familiarity with Configuration Management and Configuration Control Boards.

Responsibilities

• Create and implement Air Force security policies, procedures, and controls to protect information systems.
• Conduct risk assessments and develop risk management plans to identify and mitigate vulnerabilities.
• Configure cloud-based security tools to monitor networks, systems, and user activity for security breaches, analyze threats, and review security and audit logs.
• Develop and perform continuous monitoring techniques and procedures.
• Review and evaluate STIG and static code analysis scans for compliance and vulnerabilities.
• Provide security guidance to technical and software development teams throughout the software development lifecycle (SDLC).
• Ensure software, hardware, and user access controls comply with security configuration guidelines.
• Report incidents or vulnerabilities and initiate counter measures and actions to restore cybersecurity posture.

Benefits

• A culture of integrity. At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
• An environment of trust. CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
• A focus on continuous growth. Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy. Your potential is limitless. So is ours.
• healthcare
• wellness
• financial
• retirement
• family support
• continuing education
• time off benefits