Today
Top Secret/SCI
Unspecified
Unspecified
IT - Security
Stuttgart, Germany (On-Site/Office)
Cyber Security Analyst - Senior
Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: TS/SCI
Employee Type: Regular-Long Term Assignment
Percentage of Travel Required: Up to 10%
Type of Travel: Local
* * *
The Opportunity:
The successful candidate must be able to communicate clearly and succinctly both written and orally, and present products and ideas in a business-like manner. The candidate will be required to work in dynamic fast-paced environments that require team interaction and coordination of efforts. The candidate must be experienced in interfacing with Stakeholders: Information System Owner/Program Manager, Information Systems Security Manager (ISSM), and/or Information System Security Officer (ISSO), Security Control Assessor (SCA), and Authorizing Official Designated Representative (AODR).
Responsibility:
The Cyber Security Analyst - Senior will provide subject matter expert level technical expertise in the areas of Compliance Reporting and Risk Management Framework (RMF) for the enterprise at the Combatant Command (CCMD) level (United States Africa Command (USAFRICOM)) under the ELITE contract.
Compliance Reporting: Register Information Systems (IS) IAW DoD and CCMD Policy. Registrations include, Ports, Protocols, and Services Management (PPSM), DoD NIPR DMZ Whitelist, and Enterprise Mission Assurance Support System (eMASS). Compile information and provide support for cyber evaluations, inspections (CCRI), security control assessments, continuous monitoring and risk scoring (CMRS), and reporting tasks (for example, the Cybersecurity Scorecard). Ensure that Compliance Reporting performance metrics are monitored through Elastic and PowerBI. Support vulnerability management by tracking and reporting system Plan of Action and Milestone (POA&M) statuses for the enterprise.
Risk Management Framework (RMF): Manage the RMF program for the enterprise under the purview of the CCMD. Perform technical writing to develop Assessment and Authorization (A&A) documentation for Government approval IAW DoD and CCMD Policies. Develop and maintain the enterprise Tier II Common Control Package (under NIST 800-35rev5) in eMASS. Create and maintain enterprise level RMF policies and guides for the CCMD. Perform duties as the enterprise eMASS administrator. Coordinate with stakeholders to obtain, update, organize, maintain, and track required RMF documentation (for example, documents, templates, exception to policy, and diagrams) and populate these artifacts in the appropriate repository (eMASS). Provide subject matter expertise and guidance to system ISO/ISSM/ISSOs to support them through the entire RMF process and A&A workflows to achieve and maintain Authorizations to Operate (ATOs). Provide risk analysis and cybersecurity data analysis to the customer (SCA and AODR) to ensure there is a clear understanding of systems' risk posture before presenting eMASS packages to the Authorizing Official (AO) for approval/ authorization. QA/QC all eMASS workflows and provide analysis and recommendations to the SCA. Leverage automation and dashboards to support RMF Continuous Monitoring and Continuous Authorization to Operate (ATO).
Qualifications:
Required:
• Currently hold an adjudicated TS/SCI Clearance
• BA/BS +5 years recent specialized or AA/AS + 9 years recent specialized or a major cert + 11 years recent specialized experience
• DOD 8570 IAM II (CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISPP)
• Experience with eMASS and navigating the RMF process to achieve Authority to Operate (ATO)
• TESA eligibility
Desired:
• ISSM and/or ISO experience
• SCA and/or SCA-V experience
• Combatant Command experience and/or adaptability to changing circumstances and operational needs
• Demonstrated knowledge of DoD Cloud Computing Policies, the Cloud Computing Security Requirements Guide (SRG) and Fed Ramp.
• Demonstrated scripting Experience (e.g. PowerShell, python, etc.).
• Demonstrated experience with NIST SP 800-53rev5, DISA STIGS/SRGs, CMRS, ACAS, and HBSS/ESS.
• Proficient at O365 tools and environments
• Experience with policy creation and updates
-
________________________________________________________________________________________
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.
An environment of trust.
CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.
Your potential is limitless. So is ours.
Learn more about CACI here.
________________________________________________________________________________________
Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here .
The proposed salary range for this position is:
$115,600 - 254,200 USD
CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.
Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: TS/SCI
Employee Type: Regular-Long Term Assignment
Percentage of Travel Required: Up to 10%
Type of Travel: Local
* * *
The Opportunity:
The successful candidate must be able to communicate clearly and succinctly both written and orally, and present products and ideas in a business-like manner. The candidate will be required to work in dynamic fast-paced environments that require team interaction and coordination of efforts. The candidate must be experienced in interfacing with Stakeholders: Information System Owner/Program Manager, Information Systems Security Manager (ISSM), and/or Information System Security Officer (ISSO), Security Control Assessor (SCA), and Authorizing Official Designated Representative (AODR).
Responsibility:
The Cyber Security Analyst - Senior will provide subject matter expert level technical expertise in the areas of Compliance Reporting and Risk Management Framework (RMF) for the enterprise at the Combatant Command (CCMD) level (United States Africa Command (USAFRICOM)) under the ELITE contract.
Compliance Reporting: Register Information Systems (IS) IAW DoD and CCMD Policy. Registrations include, Ports, Protocols, and Services Management (PPSM), DoD NIPR DMZ Whitelist, and Enterprise Mission Assurance Support System (eMASS). Compile information and provide support for cyber evaluations, inspections (CCRI), security control assessments, continuous monitoring and risk scoring (CMRS), and reporting tasks (for example, the Cybersecurity Scorecard). Ensure that Compliance Reporting performance metrics are monitored through Elastic and PowerBI. Support vulnerability management by tracking and reporting system Plan of Action and Milestone (POA&M) statuses for the enterprise.
Risk Management Framework (RMF): Manage the RMF program for the enterprise under the purview of the CCMD. Perform technical writing to develop Assessment and Authorization (A&A) documentation for Government approval IAW DoD and CCMD Policies. Develop and maintain the enterprise Tier II Common Control Package (under NIST 800-35rev5) in eMASS. Create and maintain enterprise level RMF policies and guides for the CCMD. Perform duties as the enterprise eMASS administrator. Coordinate with stakeholders to obtain, update, organize, maintain, and track required RMF documentation (for example, documents, templates, exception to policy, and diagrams) and populate these artifacts in the appropriate repository (eMASS). Provide subject matter expertise and guidance to system ISO/ISSM/ISSOs to support them through the entire RMF process and A&A workflows to achieve and maintain Authorizations to Operate (ATOs). Provide risk analysis and cybersecurity data analysis to the customer (SCA and AODR) to ensure there is a clear understanding of systems' risk posture before presenting eMASS packages to the Authorizing Official (AO) for approval/ authorization. QA/QC all eMASS workflows and provide analysis and recommendations to the SCA. Leverage automation and dashboards to support RMF Continuous Monitoring and Continuous Authorization to Operate (ATO).
Qualifications:
Required:
• Currently hold an adjudicated TS/SCI Clearance
• BA/BS +5 years recent specialized or AA/AS + 9 years recent specialized or a major cert + 11 years recent specialized experience
• DOD 8570 IAM II (CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISPP)
• Experience with eMASS and navigating the RMF process to achieve Authority to Operate (ATO)
• TESA eligibility
Desired:
• ISSM and/or ISO experience
• SCA and/or SCA-V experience
• Combatant Command experience and/or adaptability to changing circumstances and operational needs
• Demonstrated knowledge of DoD Cloud Computing Policies, the Cloud Computing Security Requirements Guide (SRG) and Fed Ramp.
• Demonstrated scripting Experience (e.g. PowerShell, python, etc.).
• Demonstrated experience with NIST SP 800-53rev5, DISA STIGS/SRGs, CMRS, ACAS, and HBSS/ESS.
• Proficient at O365 tools and environments
• Experience with policy creation and updates
-
________________________________________________________________________________________
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.
An environment of trust.
CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.
Your potential is limitless. So is ours.
Learn more about CACI here.
________________________________________________________________________________________
Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here .
The proposed salary range for this position is:
$115,600 - 254,200 USD
CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.
group id: caci
CACI Careers – Make an Impact
