Job Title: Cyber Security Specialist (ISSO) Job Category: Information Technology Time Type: Full time Minimum Clearance Required to Start: None Employee Type: Regular Percentage of Travel Required: Up to 10% Type of Travel: Local * * * **The Opportunity:** The Cybersecurity Specialist with both strong cybersecurity and network security delivery skills will need to have a deep technical understanding of Cybersecurity practices, delivering secure and reliable hardware and software solutions in short sprints. They will work as an integral part of a highly productive team of seasoned technical professionals who thrive on supporting our customer's mission and growth objectives– responsible for designing, developing, leading, and implementing secure application and infrastructure capabilities for a variety of legacy and modernized systems and applications. They will work in close collaboration with software developers/engineers, quality assurance engineers, stakeholders, and end users within Agile Engineering processes. They must have a working knowledge of enterprise class information assurance requirements and network security and survivability. They will also be responsible for supporting/leading development of a spectrum of engineering artifacts that adequately, but succinctly capture system security requirements, application and network security design, and network security architecture. This position is responsible for ensuring that all assigned work activities are performed in a timely, secure, compliant and cost-effective manner while maintaining the highest quality of performance. **Responsibilities:** Serve as a Cybersecurity Team member responsible for the Information Assurance and Security of application, database, and enterprise network services. Responsible for activities associated with delivery of Cybersecurity policy implementation and network solutions associated with customer-defined systems and software projects; basic responsibilities include: · Lead implementation and continuous maturation of the Cybersecurity Program strategy across development, sustainment, and operational environments, ensuring alignment with organizational and federal security objectives. · Provide subject matter leadership in applying information security requirements in accordance with federal and agency directives including National, DHS, and CBP cybersecurity including, but not limited to, NIST SP 800-30, NIST 800-37, NIST 800-53a, NIST SP 800-61, NIST 800-171, DHS 4300A, CBP Handbook 1400-05D · Guide programs through the full system lifecycle by proactively identifying and mitigating security risks, ensuring security architecture and controls are integrated from concept through operations. · Drive creation of, and ensure approval for, Department of Homeland Security (DHS) Risk Management Framework (RMF) Assess and Authorize (A&A) Process for development and sustainment projects · Facilitate program and customer management, and government Authorizing Official (AO) for all information security status, policies, and procedures · Document DHS RMF Security Implementation Plan artifacts. Coordinate and assist development team with application artifact documentation · Coach government personnel in preparing and presenting Information Assurance Compliance System (IACS) packages to the Control Assessor (SCA) Assess and analyze the current threat environment · Orchestrate Cybersecurity vulnerability/A&A hardening testing · Optimize – Cybersecurity development environment certification · Architect and influence enterprise security design by defining security goals, control implementation strategies, and secure architectural patterns. · Design & Implement security – vulnerability management, build security into development · Integrate & Test Security – test patches and settings, document A&A artifacts · Validate & Verify security – validate patch status and software control status · Implement security – apply patches and security settings, performance incident handling and remediation · Maintain enterprise security posture through continuous monitoring, audit readiness, reaccreditation planning, and proactive risk mitigation. · Champion security integration throughout Agile development and deployment processes to ensure continuous assurance of delivered capabilities. · Continuously evaluate emerging cybersecurity technologies, tools, and industry best practices to strengthen defense-in-depth strategies · Lead continuity and resilience initiatives by addressing cybersecurity risks impacting Continuity of Operations Plans (COOP). · Perform information security vulnerability testing and mitigate any nonconformance · Supports reviews and audits of continuous system monitoring and contingency planning. Updates associated documentation as needed · Develop, manage, and drive closure of Plans of Action and Milestones (POA&Ms), ensuring risk remediation is tracked, prioritized, and completed. · Implement and validate Security Technical Implementation Guide (STIG) requirements for all development and implementation projects · Provide guidance to development teams on secure coding practices and use of static code analysis tools to reduce application vulnerabilities. · Report and help investigate security-related incidents and security violations as requested by the Computer Security Incident Response Center (CSIRC) · Ensure enterprise environments maintain compliance with approved software usage policies and security software deployment standards. Lead development and sustainment of cybersecurity awareness and training initiatives to promote secure operational practices across program teams. **Qualifications:** · Must be a U.S. Citizen with the ability to pass CBP background investigation, criteria will include: o 3-year check for felony convictions o 1-year check for illegal drug use o 1-year check for misconduct such as theft or fraud · College degree (B.S., M.S.) in Information Assurance, Computer Science, Information Management Systems or a related discipline · Must be available to work onsite in Ashburn, VA _at least_ one day per week. · Certifications: **minimum Security+ CE or equivalent,** CISSP or CASP preferred · Demonstrated knowledge DHS 4300A, “Sensitive Systems Handbook”, and CBP Handbook 1400-05D, “Information Systems Security Policies and Procedures Handbook” · Demonstrated knowledge of NIST Information Technology Security Special Publications (SP) 800 series, with emphasis on NIST SP 800-37, “Guide for Applying the Risk Management Framework to Federal Information Systems” and NIST SP 800-53A, “Guide for Assessing the Security Controls in Federal Information Systems” · Professional Experience: 10+ years related technical experience · Working knowledge of and ability to assist others in the use of information security provisioning and monitoring tools to support process improvement · Working knowledge of Federal Information Security Management Act (FISMA) reporting requirements and processes · Ability to apply advanced principles, theories, and concepts, and contribute to the development of innovative IA principles and ideas · Experience working on unusually complicated problems and providing solutions that are highly creative and ingenious, exhibiting ingenuity, creativity, and resourcefulness · Experience with continuous integration tools and environments · Experience with scripting languages like Perl, VBScript, Ruby, etc. · Experience with Computer Network Defense (CND) processes, procedures, and tools · Acting independently to expose and resolve problems · Demonstrated experience with HP Fortify Software Security Center · Demonstrated experience with Assured Compliance Assessment Solution (ACAS)/Tenable Nessus Vulnerability Scanner · Demonstrated experience with DISA Security Technical Implementation Guide (STIG) implementation and Security Content Automation Protocol (SCAP) tool usage · Demonstrated familiarity and experience with Firewalls, Intrusion Prevention Systems, WebGateways, and/or enterprise Antivirus software technologies · Demonstrated experience using IACS · Demonstrated ability to identify and manage risk · Understanding all elements of the DHS and CBP Cybersecurity policies and requirements · Excellent written and verbal communication skills · Strong collaboration skills and desire to work within a team · Highly responsible, team-oriented individual with very strong communication skills and work ethic; self-starter - **_________________________________________________________________________** **What You Can Expect:** **A culture of integrity.** At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation. **An environment of trust.** CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality. **A focus on continuous growth.** Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy. **Your potential is limitless.** So is ours. **_________________________________________________________________________** **Pay Range** : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. The proposed salary range for this position is: $120,800 - $265,800 _CACI is_ _an Equal Opportunity Employer._ _All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any_ _other protected characteristic._