CACI International IncRemote
Cyber Security Compliance Engineer
United States
Full Time
2 hours ago
$75,000 - $158,000 USD
H1B Sponsor Likely
Key skills
Communication
About this role
CACI International Inc is seeking a Cyber Security Compliance Engineer to join their Corporate Enterprise Services Cyber Security Team. The role involves creating and maintaining a DFARS compliant operating environment by protecting network boundaries and ensuring the confidentiality, integrity, and availability of sensitive data.
Responsibilities:
- Work with a broad range of internal teams to assess the security risk and compliance levels of their system(s)
- Research trends in cybersecurity threats and NIST 800 standards in support of the CMMC standard
- Creation of mitigation strategies and follow up with stakeholders to ensure risk levels are documented at the appropriate levels and follow through with report writing as appropriate
- Work to create and a secure and compliant environment for CACI’s users by conducting assessments to determine risk and compliance levels of various systems and helping to develop mitigation strategies
- Possess a strong knowledge of technologies to actively monitor systems to actively monitors systems for attacks and intrusions
- Use data aggregation and analysis techniques and tools to provide valuable insight into the security posture of CACI’s infrastructure
- Work within CACI and third-parties to ensure that all technologies are designed with security in mind follow industry best practices and are compliant with applicable guidelines
- Ability to work in a team-centric environment
- Analyze security reports and reviews and documents process documentation, and assess test results and remediation plans
- Ability to work with internal and external stakeholders at all business levels
- Strong presentation, written, and oral communication skills required
- Performs duties in support of in-house and external customers
- Designs, develops, and recommends solutions ensuring proprietary/confidential data and systems are protected in accordance with mandated standards
- Participates with the client in the strategic design process to translate security and business requirements into technical designs
- Configures and validates secure systems, tests security products/systems to detect computer and information security weakness
- Generates security architecture documentation
- Provides critical written and verbal analyses of previously generated security architecture documentation and vulnerability and risk assessments
- Designs and implements plans of action and milestones to remediate findings from vulnerability and risk assessments
- Provides information assurance for digital information, ensuring its confidentiality, integrity, and availability
- Responsibilities include the granting of authorization to operate IT systems at acceptable levels of risk, monitoring and testing of IT systems for vulnerabilities and indicia of compromise, incident response and remediation, the development of appropriate policy, relevant user security awareness and training, and compliance with applicable government and other external standards
Requirements:
- Bachelor's Degree and 5+ years' experience with Cyber Security or compliance
- Ability to obtain a security clearance
- CYSA+
- CISSP
- CEH
- Security+
- Secret or Top-Secret clearance
- Previous experience with the design or implementation of cybersecurity governance, risk, and compliance activities
- Established and productive individual contributor
- Works independently with little general supervision
- Ability to work with internal and external stakeholders at all business levels
- Strong presentation, written, and oral communication skills
- Experience with DFARS, CMMC, NIST 800-series, ISO, SSDF, and other RMFs