Cyber Security Analyst

Cyber Security Analyst

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: Top Secret

Employee Type: Regular

Percentage of Travel Required: None

Type of Travel: None

* * *

The Opportunity:
CACI is hiring a Cyber Security Analyst to join our team in Chantilly, VA! This role is a hybrid mix of onsite support and remote work.

Responsibilities:

• Develop and enforce cybersecurity policies that adhere to the federal regulations (e.g. FISMA, NIST, DOD) and industry best practices to ensure protection of information systems. Stay current with emerging cybersecurity trends and advise leadership on adapting policies to address new threats.
• Ensure the successful implementation and functionality of security requirements alongside appropriate information technology (IT) policies and procedures that align with the organization's mission and goals.
• Evaluate and approve development efforts to guarantee that baseline security safeguards are properly installed. Prepare and maintain documentation, including standard operating procedures regarding the security of IT operations.
• Lead the Risk Management Framework (RMF) process for assigned programs and enclaves. Maintain and report the system's Authorization and Accreditation (A&A) status, and assist in identifying the security control baseline and any applicable overlays.
• Participate in the Risk Governance process by providing insights on security risks and mitigations during the Security Assessment and Authorization process.
• Provide system-related input on cybersecurity requirements for inclusion in statements of work and appropriate procurement documents, while identifying mission criticality. Analyze and report any changes in the system's security posture to the relevant authorities.
• Manage and document incident response, business continuity, disaster recovery, and vulnerability and threat reporting plans. Conduct system auditing, security policy development, and continuous monitoring utilizing NIST publications in accordance with Authority to Operate (ATO) requirements. Supervise or manage protective and corrective measures when a cybersecurity incident or vulnerability is identified.
• Plan and execute cybersecurity testing to assess security controls and document their compliance status during sustainment. Conduct incident response plan (IRP) exercises in accordance with Department of Defense (DoD) guidelines.
• Conduct annual security reviews, test security controls annually, and evaluate the contingency plan each year in accordance with the Federal Information Security Management Act (FISMA) requirements. Continuously evaluate and enhance the organization's security posture by applying lessons learned, threat intelligence and best practices.
• Register and maintain the system in the Enterprise Mission Assurance Support Service (eMASS). Utilize the Collaboration Board within eMASS during the RMF and authorization process.
• Manage and conduct vulnerability-level risk assessments on the Plan of Actions and Milestones (POA&M), ensuring that vulnerabilities are accurately tracked, mitigated, and resolved. Assist in mitigating and closing open vulnerabilities through the system's change control process.
• Make data entries into the eMASS record and POA&M consistent with the results of implementation efforts.

Qualifications:

Required:

• A DoD Top Secret Clearance is required
• Bachelor's degree with a concentration in a related discipline (e.g., information security, cybersecurity, information technology)
• Must be familiar with DOD Risk Management Framework (RMF) policies, standards, and procedures and have relevant experience with associated tools (e.g., eMASS, ACAS, STIGs, SCAP, Nessus, BURP).
• CISSP, CISM, or other DOD 8570.01-M IAM Level 3 certification as required by DOD Directive 8140.01
• Excellent verbal and written communication skills are required.

What You Can Expect:

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you'll be part of a high-performing group dedicated to our customer's missions and driven by a higher purpose - to ensure the safety of our nation.

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You'll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground - in your career and in our legacy.

Your potential is limitless. So is ours.

Learn more about CACI here.

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.

The proposed salary range for this position is:
$78,700 - $165,300

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.