Job Detail

Cyber Security Engineer - CACI International
Aberdeen Proving Ground, MD
Posted: Jun 27, 2024 03:34

Job Description

Cyber Security Engineer

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: Secret

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Continental US


CACI has an opening for a cleared Cyber Security Engineer to serve as an Information Systems Security Officer (ISSO) and Risk Management Framework (RMF 2.0) SME for the DoD System Authorization and Accreditation process for Project Manager Mission Command (PM MC) products.

What You'll Get to Do:

  • Serve as the Information Systems Security Officer (ISSO) and Risk Management Framework (RMF) Subject Matter Expert (SME) for the DoD System Authorization and Accreditation process for PM MC products.

  • Review, assess, and manage systems' security requirements and validation methods via Enterprise Mission Assurance Support Service (eMASS).

  • Provide cybersecurity systems engineering oversight on applications development projects to ensure the appropriate security configuration of the operating environment are enforced.

  • Review and assess systems' security implementation via product-reported Assured Compliance Assessment Solution (ACAS) Vulnerability scans, Defense Information Systems Agency (DISA) Security Technical Implementation Guidelines (STIGs) and Security Requirements Guides (SRGs), and source code vulnerability scans where applicable. Identify, communicate, and support resolution of deficiencies in security implementation reporting with product teams.

  • Manage Plan of Action and Milestone (POA&M) records with PM MC product teams.

  • Communicate DoD RMF system accreditation processes, documentation requirements, and security hardening reporting requirements to PM MC Product development teams during Integrated Product Team (IPT) and working group meetings.

  • Provide security considerations to inform systems/development engineering efforts to reduce errors, flaws, and weakness that may constitute security vulnerability leading to unacceptable asset loss and consequences.

  • Facilitate continuous monitoring activities with product network/system/development engineers.

  • Coordinate with Engineering and other Cybersecurity personnel to implement and enforce security policies and patch management processes.

  • Provide technical consultative/advisory services to the PM/Product Manager (PdM) to review proposed new systems, networks, and software designs for potential security risks.

  • Identify and/or assess vulnerabilities and susceptibility to life cycle disruptions, hazards, and threats.

  • Support development of program cybersecurity policies and procedures to ensure information systems reliability and accessibility in accordance with Army/DISA requirements to prevent and defend against unauthorized access to systems, networks, and data; for short- and long-term mission and goals of the PM.

  • Collaborate responses for Army Cyber (ARCYBER) Cyber Tasking Order (CTO) compliance reporting and vulnerability remediation/mitigation requests for information (RFIs).

  • Participate in Configuration Management/Review Boards to provide Cybersecurity input.

  • Support system accreditation and Security Control Assessor - Validation events.

You'll Bring These Qualifications:

  • Active DOD Secret security clearance.

  • Bachelor's Degree (Computer Science, Engineering or similar) and at least 3 years of experience OR an Associates Degree and at least 7 years of experience OR no degree and at least 9 years of experience.

  • Security + CE certification or higher.

  • Fluent in the use of eMASS.

  • Fluent in analyzing ACAS Vulnerability scans, DISA STIGs/SRGs, and processes related to residual risk identification.

  • Capability to communicate across cross-functional teams.

  • Familiarity with Systems Security Engineering (SSE) documentation (e.g. Cybersecurity Strategies, Information Support Plans, Program Protection Plans (PPPs).

  • Knowledge of, and skill in applying DoD RMF to conduct risk and vulnerability assessments of planned and installed information systems and identify vulnerabilities, risks, and protection needs.

  • Knowledge of AR 25-2 Army Cybersecurity and DoDI 8510.01 Risk Management Framework (RMF 2.0) for DOD Information Technology (IT).

These Qualifications Would Be Nice to Have:

  • Experience with identifying applicable STIGs, integrating security controls, and validating their implementation on Linux OSs, Microsoft Windows & Windows Server, Microsoft Office, VMware, Cisco IOS, Windows and Palo Alto Firewall, Network, modem, containers, and Hyper-V products.

  • Fluent in conducting ACAS Vulnerability scans and DISA STIGs/SRGs.

  • Familiarity with Army Systems Acquisitions Process, milestone decision points, and related cybersecurity artifact requirements.

What We Can Offer You:

  • We've been named a Best Place to Work by the Washington Post.

  • Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

  • We offer competitive benefits and learning and development opportunities.

  • We are mission-oriented and ever vigilant in aligning our solutions with the nation's highest priorities.

  • For over 55 years, the principles of CACI's unique, character-based culture have been the driving force behind our success.

Company Overview:

CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.

Pay Range : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here (https://careers.caci.com/global/en/employee-benefits)

The proposed salary range for this position is:

$90,300 - 189,600 USD



Job Detail


Company Overview

CACI International

Aberdeen Proving Ground, MD