Cyber Security Analyst – CACI International

by
Cyber Security AnalystJob Category: SecurityTime Type: Full timeMinimum Clearance Required to Start: Top SecretEmployee Type: RegularPercentage of Travel Required: NoneType of Travel: None* * *

CACI is seeking a Cyber Security Analyst in the Washington, DC area.

What You’ll Get to Do:

A Cybersecurity Analyst with a technical background will work with a team responsible for IT Security Risk and Compliance by providing direct support to the Information System Security Officer (ISSO). A Cybersecurity Analyst will support the IT Security management with technical review, technical solution proposal, and planning in the areas of security controls, risk assessment, issue analysis, and response development and execution.

More about this role:

  • Perform root cause analysis of audit findings.
  • Develop requirements for security control remediation activities.
  • Review audit closure requests and status reports for security control accuracy and completeness.
  • Develop plans to address gaps in the General Support System’s security posture.
  • Develop security recommendations following NIST 800-53 rev.5 guidance and security best practices.
  • Support the development of security solutions.
  • Formulate, create, and track security Plans of Action and Milestones (POA&Ms).
  • Coordinate with platform teams to maintain currency of the system’s technical description and control implementation statements.

You’ll Bring These Qualifications:

  • Bachelor’s degree in relevant field.
  • At least two (2) years working as or supporting, an ISSO or ISSM.
  • Experience with information security engineering practices and NIST security controls.
  • Demonstrated experience with implementation of NIST Risk Management Framework.
  • Broad understanding of security protections typical in enterprise environments, including security hardening, firewalls, and boundary/endpoint best practices.
  • Basic understanding of server, workstation, network, and database architecture.
  • Familiarity with cloud service providers such as AWS and best practices.
  • Familiarity with Splunk, Symantec Endpoint Protection, Tenable Security Center, IBM BigFix and IDS/IPS tools, and Sonarqube.
  • Knowledge of security policy/manuals, and other guiding policy documents.
  • Strong interpersonal, presentation, and communication skills (verbal and written).
  • Fluent with Microsoft Office products (Word, PowerPoint, Excel, Project, Visio).
  • Active/current Top Secret clearance is required.

What We Can Offer You:

close