Cyber Security Engineer

Job Title: Cyber Security Engineer

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: Secret

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Local

* * *

Exciting Opportunity: Join Our Team as a Cyber Security Engineer!

Are you passionate about cybersecurity and eager to make a significant impact? CACI is looking for a talented and cleared Cyber Security Engineer to join our dynamic team as an Information Systems Security Officer (ISSO) and Risk Management Framework (RMF 2.0) Subject Matter Expert (SME) for the DoD System Authorization and Accreditation process for Capability Program Executive Command and Control Information Network (CPE C2IN) products.

Why Join Us?

At CACI, you'll have the opportunity to:

• Grow Your Career: Work on cutting-edge projects and advance your skills in a supportive environment.
• Make a Difference: Contribute to the security of critical DoD systems and protect national assets.
• Collaborate with Experts: Join a team of dedicated professionals and learn from industry leaders.
• Enjoy Competitive Benefits: Receive comprehensive benefits, including health insurance, retirement plans, and professional development opportunities.

Your Role:

As a Cyber Security Engineer, you will:

• Serve as the ISSO and RMF SME for the DoD System Authorization and Accreditation process for CPE C2IN products.
• Review, assess, and manage systems' security requirements and validation methods via Enterprise Mission Assurance Support Service (eMASS).
• Provide cybersecurity systems engineering oversight on applications development projects to ensure the appropriate security configuration of the operating environment is enforced.
• Review and assess systems' security implementation via product-reported Assured Compliance Assessment Solution (ACAS) Vulnerability scans, Defense Information Systems Agency (DISA) Security Technical Implementation Guidelines (STIGs) and Security Requirements Guides (SRGs), and source code vulnerability scans where applicable. Identify, communicate, and support resolution of deficiencies in security implementation reporting with product teams.
• Manage Plan of Action and Milestone (POA&M) records with CPE C2IN product teams.
• Communicate DoD RMF system accreditation processes, documentation requirements, and security hardening reporting requirements to CPE C2IN Product development teams.
• Provide security considerations to inform systems/development engineering efforts to reduce errors, flaws, and weaknesses that may constitute security vulnerability leading to unacceptable asset loss and consequences.
• Facilitate continuous monitoring activities for supported CPE C2IN products.
• Coordinate with Engineering and other Cybersecurity personnel to implement and enforce security policies and patch management processes. This includes working with PM ISSEs to review technical information.
• Provide technical consultative/advisory services to the PM/Product Manager (PdM) to review proposed new systems, networks, and software designs for potential security risks.
• Identify and/or assess vulnerabilities and susceptibility to life cycle disruptions, hazards, and threats.
• Support development of program cybersecurity policies and procedures to ensure information systems reliability and accessibility in accordance with Army & DISA requirements to prevent and defend against unauthorized access to systems, networks, and data; for short- and long-term mission and goals of the PM.
• Collaborate responses for Army Cyber (ARCYBER) Cyber Tasking Order (CTO) compliance reporting and vulnerability remediation/mitigation requests for information (RFIs).
• Support system accreditation and Security Control Assessor - Validation events.

Qualifications:

Required:

• Active DOD Secret security clearance.
• Bachelor's Degree (Computer Science, Engineering or similar) and at least 3 years of experience OR an Associate's degree and at least 7 years of experience OR no degree and at least 9 years of experience.
• Security + CE certification or higher.
• Fluent in the use of eMASS.
• Fluent in analyzing ACAS Vulnerability scans, DISA STIGs/SRGs, and processes related to residual risk identification.
• Capability to communicate across cross-functional teams.
• Familiarity with Systems Security Engineering (SSE) documentation (e.g. Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs).
• Knowledge of, and skill in applying DoD RMF to conduct risk and vulnerability assessments of planned and installed information systems and identify vulnerabilities, risks, and protection needs.
• Knowledge of AR 25-2 Army Cybersecurity and DoDI 8510.01 Risk Management Framework (RMF 2.0) for DOD Information Technology (IT).

Desired:

• Experience with identifying applicable STIGs, integrating security controls, and validating their implementation on Linux OSs, Microsoft Windows & Windows Server, Microsoft Office, VMware, Nutanix, Cisco IOS, Windows and Palo Alto Firewall, Containers, and Hyper-V products.
• Fluent in conducting ACAS Vulnerability scans and DISA STIGs/SRGs.
• Familiarity with Army Systems Acquisitions Process, milestone decision points, and related cybersecurity artifact requirements.
• Experience with GovCloud environments (Azure & AWS).
• Familiarity with Kubernetes environments (K8s & K3s).
• Aware of fundamental concepts within a DevSecOps environment.
• Familiarity with Zero Trust.

Ready to Take the Next Step?

Apply now and join a team where your skills and passion for cybersecurity will be valued and rewarded. At CACI, we are committed to your professional growth and success.

-

What You Can Expect:

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.

Pay Range :

There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.

The proposed salary range for this position is:
$99,300 - 208,600 USD

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.