Information Systems Security Officer

About The Position

Requirements

• A Bachelors degree is required.
• Knowledge of risk assessment tools, technologies, and methods
• Experience designing secure networks, systems, and application architectures
• Experience planning, researching, and developing security policies, standards, and procedures
• Ability to communicate network security issues to peers and customers
• Working knowledge of current Cyber technologies and experience with NIST 800 Series and DoD 8570 regulations and governing DISA STIGs and/or SRGs
• Understanding of Information Assurance Vulnerability Management (IAVM) and Information Assurance Vulnerability Assessments (IAVAs)
• Prior experience with RMF controls, risk assessments, and POA&M generation.
• Strong working knowledge of Confidentiality, Integrity, and Availability (CIA) concepts, to include 2-factor authentication, Public Key encryption techniques, patch management, end-point security systems, intrusion detection, security event management and defense-in-depth.
• Well versed in DoD cyber security Assessment and Authorizations (A&A) DoD Implementation, Directives, NIST Special Publications and other government cyber security standards, policies, and directives.
• Experience with Nessus, ACAS, SCAP
• Experience completing and review DISA Security Technical Implementation Guides (STIGs)
• Experience conducting risk analysis on products and system components through review of CVEs, plugins, IAVAs
• Experience onboarding assets to centrally managed Enterprise solutions.
• Application Security Architecture and Design experience
• Security Compliance Operations and Application Security Assessment experience
• DoD 8570.01 IAT level 2 or greater cyber security certification per DoD 8570.01 (such as Security+)
• Experience designing and implementing Commercial Solutions for Classified (CSfC) Multi-Site Connectivity Capability Package desired
• Systems integration experience
• Excellent interpersonal and presentation skills
• At least five years of continuous recent experience in the field of DoD information systems security and/or cybersecurity.
• Possess an active Information Assurance Management (IAM) Level III certification.
• Additional cyber and/or IT certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or CompTIA’s Advanced Security Practitioner (CASP)
• Possess an active TS/SCI w/Poly.

Nice To Haves

• At least five years of continuous recent experience as an Information System Security Manager (ISSM), Information Systems Security Engineer (ISSE), and/or Information Systems Security Officer (ISSO).
• At least five years of continuous recent experience performing information systems security and/or cybersecurity roles in IT projects and obtaining ATO/ATC.
• At least five years of continuous recent experience in XACTA and Service Now (SNOW).
• At least five years of continuous recent experience in networking and/or system engineering.

Responsibilities

• Manage Risk Management Framework (RMF) process
• Work with system development team to identify needed RMF artifacts and load them into the government’s EMASS system.
• Develop security plans, policies, and designs.
• Configure and implement security solutions based upon the customer’s performance criteria and specifications
• Conduct systems pre-test and acceptance tests to validate the designed performance criteria
• Structure mock designs based upon RFP specifications in support of the Bids & Proposal teams
• Collaborate with government and /or subcontractors at customer site for security solution integration into existing infrastructure
• Develop and perform technical presentations for customers
• Mentor junior engineers and technicians
• Serve as technical lead on projects.
• Travel to other CACI Locations or Customer Sites as necessary
• Proactively ensure a safe work environment and adhere to CACI EH&S policies and procedures
• Perform other duties as required.

Benefits

• Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
• We offer competitive compensation, benefits and learning and development opportunities.
• Our broad and competitive mix of benefits options is designed to support and protect employees and their families.
• At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.