Information Systems Security Engineer (ISSE)
Job Category: Engineering
Time Type: Full time
Minimum Clearance Required to Start: TS/SCI with Polygraph
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Local
Anticipated Posting End: 12/27/2024
The Opportunity:
You will perform Information System Security Engineering support for various information systems throughout the system development lifecycle. You will have the opportunity to perform system hardening, prepare comprehensive assessment testing procedures, system vulnerability scanning and mitigation, system maintenance and configuration, documentation, and support the engineering team by providing direct input on the information system design to obtain and/or maintain a successful Authorization to Operate.
You will perform in depth analysis of the various security hardening guides (DISA STIGs, CIS Benchmarks, vendor guides, SANS, etc.) to ensure security control coverage is addressed in the scanning methodology.
Responsibilities:
Assess and mitigate system security threats, risks, and vulnerabilities throughout the program life cycle. Contribute to the security planning, assessment, risk analysis, risk management, certification, and awareness activities for system operations.
Execution of the Assessment & Authorization (A&A process in accordance with government requirements (e.g. ICD-503).
Ensure that accreditation data is maintained within customer databases (e.g. SNOW).
Conduct research in multiple areas, to include emerging technologies, vulnerability information, system hardening (e.g. STIGs), operating systems, application software and security tools.
Execute system configuration, and maintenance in support of the Security Engineering discipline.
Prepare comprehensive security assessment testing documentation to validate applied security controls in support of Assessment and Authorization (A&A) testing.
Provide technical guidance focused on information security architecture.
Generate security accreditation artifacts to include, but not limited to, Security Plans, Certification Test Plans, and Continuous Monitoring Plans.
Track and fulfill liens associated with A&A activities as documented in the Plan of Actions and Milestones.
Perform vulnerability assessments using standardized tools (Nessus, DISA STIGs) and configuration updates as required to comply with security requirements.
Provide guidance with the hardening of operating systems, COTS product and Open-Source products as required to support compliance with security requirements.
Provide technical engineering services for the support of integrated security systems and solutions.
Participate as a member of a security engineering team that designs, develops, implements, evaluates and/or integrates security architectures, systems, or system components.
Support and interact with customers in the enforcement of the design of security throughout the system life cycle.
Apply knowledge of IA policies and procedures disseminated by the customers organization.
Qualifications:
Required:
An active TS/SCI clearance with polygraph is required.
Must have a current certification compliant with DoD 8570 IAM or IAT level 2.
Bachelor's degree in Computer Science, Information Assurance, Information Security System Engineering, or equivalent and five (5) years of directly related experience.
Knowledge of DCID 6/3, ICD 503, CNSSI 1253, NIST SP 800-53, NIST SP 800-53A, NIST SP 800-37, and security controls assessment criteria/procedures.
Experience with implementing NIST 800-53 controls/ICD 503.
Knowledge of the NRO environment and the ability to navigate projects through the RMF process to achieve IATT & ATO.
Experience participating in Assessment and Authorization (A&A) process.
Experience preparing systems security documentation (e.g., security plans, risk assessment reports, Plan of Actions and Milestones (POA&Ms), etc.).
Experience with Continuous Monitoring, mitigating scan findings, maintaining Ports, Protocols and Services sheets (PPS).
Vulnerability assessment scanning experience (Security Center/NESSUS).
Experience working with engineers and system administrators to correct scan findings / system vulnerabilities.
Experience with creation/use of Security Center Dashboards and reports.
Excellent communication and interpersonal skills required.
Must be able to efficiently manage time management and workload
Ability to support a flexible schedule and work in a dynamic, real-time environment with rapidly changing priorities required.
Desired:
Proficient in the use of Microsoft Application tools (i.e., Excel and Powerpoint).
Experience with Sharepoint, Confluence, JIRA
Experience with developing test plans for information systems.
Demonstrated system administration experience with Linux (Red Hat, CentOS) and/or Windows
Experience with DevOps
Familiarity with code quality and code analyzing security tools
Experience with Amazon Web Services (AWS): Should have current or ability to obtain an Amazon Cloud certification, such as AWS Certified Solutions Architect - Associate or AWS Certified Security Specialty
Audit log review: ability to query and perform analysis in Splunk.
Experience within the Intelligence Community
-
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.
An environment of trust.
CACI takes pride in fostering a diverse and accessible culture where every individual feels supported to chart their own path. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.
Your potential is limitless. So is ours.
Learn more about CACI here. (https://careers.caci.com/global/en/life-at-caci)
Pay Range : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here (https://careers.caci.com/global/en/employee-benefits) .
Since this position can be worked in more than one location, the range shown is the national average for the position.
The proposed salary range for this position is:
$89,500-$188,000
CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, age, national origin, disability, status as a protected veteran, or any other protected characteristic.