The Opportunity:

CACI/BITS is seeking a Cyber Security Engineer to support our Makalu contract. If you are interested and passionate about working as part of a modern, fast-paced agile software development team, then this opportunity is for you!
On team Makalu, cloud security engineers are an integral part of the development team. Cyber security engineers are expected to be flexible and adaptive to supporting the needs of the program. Responsibilities include serving as information security specialist, reviewing all software, hardware, and infrastructure changes on the contracts, following the risk management framework process to support system accreditation, continuous monitoring, security mitigation; maintain security documentation, and other tasks as necessary. Additionally, candidate will be integral to development of new cyber monitoring, cyber hardening, and cyber response plan for large program with multiple applications. As an engineer on the program, candidate will be responsible for researching, designing, testing, and implementing cyber security features that meet new and demanding environments.
The right candidate will understand software development, system administration, networking, and security and be able to take a holistic systems level approach to influence how we build our applications to meet the higher level security requirements associated with a system that bridges security domains, as well as someone who can help the software engineers understand zero trust architecture for a multi-releasability domain.

Responsibilities:

• Reviewing Audit logs and creating mitigation and corrective action plans.

• Using forensic tools for attack reconstructions, determine how to correct vulnerabilities.

• Working with development teams to create, maintain, and monitor data connections, NPE security certificates, firewall connection requests.

• Applying cloud, network, and security best practices to ensure that all requests meet the application goals while minimizing security risk.

• Continually implement and improve DevSecOps process maintained in Linux/Cloud based development environment.

• Applying best practices and processes to capture, refine, and assist in the prioritization of requirements based on risk, engineering principles, and mission requirements.

• Architect security infrastructure as needed to protect against cyber attacks. Providing enhanced security architectures, development tools, and information systems to facilitate secure missions.

• Information System Owners (ISOs) guidance, requirements understanding, and options to support technical security engineering.

• Capability based security analysis of system security architectures, identifies vulnerabilities, and provides suggested mitigation alternatives.

• Participates in design, development, and implementation of information systems to ensure these systems are in compliance with required security features and safeguards.

• Security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.

• Evaluates scan results and works with system developers and system administrators to eliminate or mitigate findings.

• Generates certification and accreditation (C&A) documentation and artifacts (ie. System Security Plans, Network Interface Planning Documents, etc.) for import / upload to the SNOW tool.

• Proposes categorization of information systems based on types of information processed, in conjunction with DAO Representatives and ISOs.

• Coordinates with appropriate Security Control Assessors (SCAs) early in engineering design phase for ongoing coordination, understating in development and application of security controls, and security tradeoffs and other decisions.

Qualifications:

Required: 

• An active TS/SCI clearance with Poly

• Bachelor's degree in information systems, systems engineering, electrical engineering, information technology, or related field

• 9+ years of relevant experience (or 7 + years without related degree)

• Understanding of engineering in development and operational environment

• Understanding of IA principle and organizational requirements

• Experience with DOD/IC System Security control requirements

• Understanding of information security systems engineering principles and IT security technologies (e.g. firewalls, encryption, proxies)

• Experience with security

Pay Range:

There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.

Since this position can be worked in more than one location, the range shown is the national average for the position.

The proposed salary range for this position is: