Cyber Security Compliance Engineer

About The Position

Requirements

• Bachelor's Degree and 5+ years’ experience with Cyber Security or compliance
• Ability to obtain a security clearance
• Ability to work with internal and external stakeholders at all business levels
• Strong presentation, written, and oral communication skills

Nice To Haves

• CYSA+, CISSP, CEH, Security+
• Secret or Top-Secret clearance
• Previous experience with the design or implementation of cybersecurity governance, risk, and compliance activities
• Established and productive individual contributor
• Works independently with little general supervision
• Experience with DFARS, CMMC, NIST 800-series, ISO, SSDF, and other RMFs

Responsibilities

• Work with a broad range of internal teams to assess the security risk and compliance levels of their system(s)
• Research trends in cybersecurity threats and NIST 800 standards in support of the CMMC standard
• Creation of mitigation strategies and follow up with stakeholders to ensure risk levels are documented at the appropriate levels and follow through with report writing as appropriate
• Work to create and a secure and compliant environment for CACI’s users by conducting assessments to determine risk and compliance levels of various systems and helping to develop mitigation strategies.
• Possess a strong knowledge of technologies to actively monitor systems to actively monitors systems for attacks and intrusions
• Use data aggregation and analysis techniques and tools to provide valuable insight into the security posture of CACI’s infrastructure
• Work within CACI and third-parties to ensure that all technologies are designed with security in mind follow industry best practices and are compliant with applicable guidelines.
• Ability to work in a team-centric environment
• Analyze security reports and reviews and documents process documentation, and assess test results and remediation plans
• Ability to work with internal and external stakeholders at all business levels
• Strong presentation, written, and oral communication skills required
• Performs duties in support of in-house and external customers.
• Designs, develops, and recommends solutions ensuring proprietary/confidential data and systems are protected in accordance with mandated standards.
• Participates with the client in the strategic design process to translate security and business requirements into technical designs.
• Configures and validates secure systems, tests security products/systems to detect computer and information security weakness.
• Generates security architecture documentation.
• Provides critical written and verbal analyses of previously generated security architecture documentation and vulnerability and risk assessments.
• Designs and implements plans of action and milestones to remediate findings from vulnerability and risk assessments.
• Provides information assurance for digital information, ensuring its confidentiality, integrity, and availability.
• Responsibilities include the granting of authorization to operate IT systems at acceptable levels of risk, monitoring and testing of IT systems for vulnerabilities and indicia of compromise, incident response and remediation, the development of appropriate policy, relevant user security awareness and training, and compliance with applicable government and other external standards.

Benefits

• Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
• We offer competitive compensation, benefits and learning and development opportunities.
• Our broad and competitive mix of benefits options is designed to support and protect employees and their families.
• At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.