Cleared Security Engineer

Job Category: Engineering

Time Type: Full time

Minimum Clearance Required to Start: TS/SCI with Polygraph

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Local

Anticipated Posting End: 9/1/2024

CACI is seeking a Cyber Security Engineer to support our Makalu contract. If you are interested and passionate about working as part of a modern, fast-paced agile software development team, then this opportunity is for you!

On team Makalu, cyber security engineers are an integral part of the development team. Cyber security engineers are expected to be flexible and adaptive to supporting the needs of the program. Responsibilities include serving as information security specialist, reviewing all software, hardware, and infrastructure changes on the contracts, following the risk management framework process to support system accreditation, continuous monitoring, security mitigation; maintain security documentation, and other tasks as necessary. Additionally, candidate will be integral to development of new cyber monitoring, cyber hardening, and cyber response plan for large program with multiple applications.

What You’ll Get to Do:

• Applying best practices and processes to capture, refine, and assist in the prioritization of requirements based on risk, engineering principles, and mission requirements.

• Providing enhanced security architectures, development tools, and information systems to facilitate secure missions.

• Information System Owners (ISOs) guidance, requirements understanding, and options to support technical security engineering.

• Capability based security analysis of system security architectures, identifies vulnerabilities, and provides suggested mitigation alternatives.

• Participates in design, development, and implementation of information systems to ensure these systems are in compliance with required security features and safeguards.

• Security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.

• Evaluates scan results and works with system developers and system administrators to eliminate or mitigate findings.

• Generates certification and accreditation (C&A) documentation and artifacts (ie. System Security Plans, Network Interface Planning Documents, etc.) for import / upload to the SNOW tool.

• Proposes categorization of information systems based on types of information processed, in conjunction with DAO Representatives and ISOs.

• Coordinates with appropriate Security Control Assessors (SCAs) early in engineering design phase for ongoing coordination, understating in development and application of security controls, and security tradeoffs and other decisions.

You’ll Bring These Qualifications:

• An active TS/SCI clearance with CI Polygraph is required

• Bachelor's degree in systems engineering, electrical engineering, information technology, or related field

• 5+ years of relevant experience (or 7+ years without related degree)

• Understanding of engineering in development and operational environment

• Understanding of IA principle and organizational requirements

• Experience with DOD/IC System Security control requirements

• Understanding of information security systems engineering principles and IT security technologies (e.g. firewalls, encryption, proxies)

• Experience with security control testing and demonstration.

• Familiarity with implementing configuration management tools (e.g., Ansible, Puppet, Chef) to enforce security policies.

• Ability to integrate security requirements into the design and development of systems.

• Familiarity with implementing security controls in cloud based environment and development environments.

• Experience working with system administrators, developers, and systems engineers to continually monitor and ensure system compliance.

• Strong Communication skills

• Familiarity with developing and maintaining system security documentation

• Enthusiastic & energetic performer able to work in a dynamic, fast-paced, & high visibility environment

• Self-motivated and capable of performing tasks with minimal oversight

• Team player incorporating a team based success philosophy

• Current Security+, CISSP, or equivalent DOD 8570 IAT 2/3 certification

• Familiarity with working in a Linux environment

These Qualifications Would be Nice to Have:

• Certification and/or experience with Amazon Web Services

• Hands-on experience with security technologies such as firewalls, intrusion detection/prevention systems (IDS/IPS), encryption technologies, and vulnerability management tools.

• Strong understanding of IAM concepts and technologies, including role-based access control (RBAC), single sign-on (SSO), and multi-factor authentication (MFA).

• Experience with configuration of IAM solutions such as Active Directory, LDAP, and cloud-based IAM services.

• Experience with configuration of security information and event management (SIEM) systems, such as Splunk, ArcSight, or ELK stack.

• Proficiency in network protocols and secure network design in AWS or similar cloud environments.

• Familiarity with SNOW tool

• Proficient in implementing/using security tools for penetration testing, vulnerability assessments, and security audits.

• Knowledge or desire to learn Container Security, orchestration, continuous monitoring, auditing, etc.

What We Can Offer You:

• We’ve been named a Best Place to Work by the Washington Post.

• Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

• We offer competitive benefits and learning and development opportunities.

• We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.

• For over 60 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.

Company Overview:

CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.

Pay Range : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here (https://careers.caci.com/global/en/employee-benefits)

Since this position can be worked in more than one location, the range shown is the national average for the position.

The proposed salary range for this position is:

$74,600-$156,700