The Cyber Security/Information Assurance employee will be based in San Antonio, TX at 35th IS, Lackland AFB, TX. The desired candidate will have experience assessing risk in networks (performing audit, test, assessment, or similar functions); identifying unpatched vulnerabilities, misconfigurations, and defects in other security controls specified in NIST SP 800-53A; implementing the functions identified in the NIST Cybersecurity Framework and the NIST Risk Management Framework (NIST SP 800-37) to identify and communicate system and program risk to decision makers. Additionally, the desired candidate will have experience in preparing, processing, assessing, validating and maintaining RMF assessment and accreditation (A&A) packages using Xacta; and the understanding of auditing information systems and networks utilizing cyber tools such as ArcSight, Host-Based Security System (HBSS), and Assured Compliance Assessment Solution (ACAS)).
What You’ll Get to Do:
Support the cyber security mission of 35th IS information systems (IS) and networks.
Evaluate cybersecurity compliance of all 35 IS systems against current NIST and DoD Cybersecurity policies as outlined in AFI 17-101, ICD 503, NIST SP 800-37 and 800-53.
Analyze and advise on the risk and remediation of security issues based on reports from security assessments, vulnerability assessment scanners, patch management tools, and emerging threat information.
Assist the Information System Security Officer (ISSO) and Cybersecurity Liaisons (CSL) in managing the A&A packages throughout the system lifecycle, by conducting all periodic reviews, tracking remediation efforts through the Plan of Actions and Milestones (POA&M), and uploading and managing Body of Evidence (BoE) documents, scans, and other artifacts in Xacta.
Assist the ISSOs and CSLs in applying for Certificate-to-Field (CtF) for software.
Support the integration and testing of system level security requirements which may include researching, verifying and documenting cybersecurity controls in order for the systems to be accredited.
Perform system security scans and vulnerability scans using ACAS, and maintain records of such scans, as required by A&A guidelines.
Provide routine system-level monitoring, audit reviews, and compliance reporting utilizing Splunk and ACAS for the identification of security relevant external or internal impacts, threats, and policy violations.
Develop and maintain A&A documentation including Standard Operating Procedures (SOP), Security Control Concept of Operations (SCCONOPS), Continuous Monitoring Strategy, Disaster Recovery Plan (DRP), Incident Response Plan (IRP), Configuration Management Plan (CMP), Auditing policies, account management policies, test plans and other documents to support certification of compliance to applicable standards.
Participate in the change management process, including conducting security impact analyses, making recommendations based on relevant security and privacy trends and technology.
You’ll Bring These Qualifications:
An active DoD TS/SCI security clearance.
Bachelor’s degree (in IS Technology, Computer Science or related field) or 4-7 years equivalent experience.
DOD Directive 8570 IAT I or II certification (Security+ or equivalent).
HBSS (McAfee e-Orchestrator) experience
What We Can Offer You:
- We’ve been named a Best Place to Work by the Washington Post.
- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
- We offer competitive benefits and learning and development opportunities.
- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
- For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
US-Lackland Air Force Base-TX-SAN ANTONIO