Information System Security Officer
About The Position
CACI is seeking a Cyber Security professional with experience fulfilling customer requirements for system security posture assessment, authorization process execution, and continuous monitoring to work as part of a team supporting CACI products. The successful candidate will work with CACI team members to assess information security controls on new and existing systems, work with system owners to resolve/mitigate information security findings, and help maintain security posture of systems/networks. Conduct Risk Management Framework (RMF) tasks for obtaining Authorization to Operate (ATO) for CACI systems/networks.
Requirements
- Bachelor’s degree in information technology and/or information systems related discipline desired (will consider experience in lieu of degree) and 5 or more years of experience
- Must have an active Top Secret/SCI clearance to start
- Strong background in Information Technology processes and/or systems administration
- 5+ years recent experience generating and implementing System Security Accreditation/ICD 503 packages for DoD and/or IC Customers
- 5+ years recent experience establishing security processes, practices and principles for TOP SECRET communication network connected systems
- 5+ years recent experience with NIST SP 800-53, CNSSI 1253, and FISMA requirements
- RMF Working knowledge
- Windows and Linux working knowledge
- Understanding of networking concepts
- 8140.03 Compliant: Security+ or equivalent
- Ability to work independently with minimal supervision as well as part of a team
- US Citizenship is required
Nice To Haves
- Ability to work in an agile, fast paced environment
- Excellent verbal and written communications for technical and security related topics
- Experience with XACTA and or eMASS
- Use of network security vulnerability assessment tools including ACAS - NESSUS, SCAP, and HBSS
- Knowledge of DoD/IC Information Assurance Vulnerability Management (IAVM) and Configuration Management processes
- Desired Certifications: Certified Information Systems Security Professional (CISSP), Certified Governance Risk Compliance (CGRC), Linux OS Certifications
Responsibilities
- Collaborate with system integrators and administrators to harden information systems to the required acceptable level
- Provide full Assessment & Authorization (A&A) support and technical security guidance in all phases of the system authorization process and/or Risk Management Framework (RMF)
- Conduct security review of information system security plans (SSP) for networks and information systems
- Conduct the research to identify security vulnerabilities and provide guidance to mitigate risks to information systems
- Provide corrective actions into a coherent information security strategy
- Review and analyze systems/networks architecture diagrams
- Convey knowledge and security focused comprehensive solutions to technically complex systems and challenges encountered while implementing security
Benefits
- healthcare
- wellness
- financial
- retirement
- family support
- continuing education
- time off benefits
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
