CACI is seeking a cleared Cyber Security Analyst in Einsiedlerhof AS, Germany to support the sustainment of the accredited cybersecurity posture of the Warrior Prep Center (WPC) domain enclaves for the AFAMS (Air Force Agency for Modeling and Simulation) mission. If you are looking to invent your future CACI would like to speak with you.
What You’ll Get to Do:
You will oversee and have knowledge of the operation and maintenance for Assured Compliance Assessment Solution (ACAS) systems and scan/report production processes.
Provide technical inputs for Cyber Vulnerability Management (CVM) and Risk Management Framework (RMF) Plans of Action and Milestones (POA&Ms) regarding remediation timelines or vulnerability mitigation to sufficient detail.
Identify meet enterprise goals
Develop and test new correlation content and use cases using SIEM filters, rules, data monitors, active lists, and session lists. Develop and test new monitoring tools using SIEM active channels, dashboards, reports, and trends. Monitor and maintain the overall system health of the SIEM.
Identify opportunities to add value to our managed security services.
Develop and coordinate the implementation of security countermeasures with the appropriate organizations.
Develop and recommend security policies, standards, and configurations.
Design and implement system logic to detect security threats.
Provide system architecture design and planning for new SIEM/Log Management deployments in both hosted and cloud environments.
Write new correlation rules & fine-tune existing rules in McAfee ESM.
Provide security engineering to implement security controls and ensure these controls do not degrade performance and availability requirements needed to execute and sustain M&S/LVC exercises/events.
Report security findings and issues associated with the SIEM/Log Management suite to the appropriate Cybersecurity POCs. Review system alarms from the SIEM (e.g., documents) for accuracy and perform hands-on testing of system security features.
Conduct facility visits to observe the actual processes related to each IA control (technical, personnel, operational, or management in nature).
Utilize tools such as Retina and Nessus scanners, DISA System Readiness Review (SRR) and Gold Disks, and database and web server security test tools
More About the Role:
AFAMS is the premier agency responsible for implementation, integration, and development of Modeling and Simulation (M&S) and training and analysis standards that support the US Air Force (USAF), Department of Defense (DoD), and mission partners requiring these capabilities to support the Warfighter in full-spectrum operations.
You’ll Bring These Qualifications:
An Active Secret Clearance.
MA/MS degree with at least 10 year's of relevant experience. If a candidate has no MA/MS degree an additional 6 year's experience can be substituted for a total of 16 year's experience.
DOD 8570.1 IAT Level II Certification required.
Operating system certification required i.e. Microsoft Certified Solutions Expert and/or Red Hat Certified System Administrator.
Understanding of DoD policies and procedures, including FIPS 199, FIPS 200, NIST 800-53, 44 DHS 4300A SSH and other applicable policies.
Comprehensive knowledge of Physical Security principles, methods, and techniques. Experience with ACAS, HBSS or Tenable Nessus vulnerability scanners necessary.
These Qualifications Would be Nice to Have:
McAfee SIEM suites,
McAfee Endpoint Security,
Microsoft Windows environment,
VDI zero client architecture.
What We Can Offer You:
- We’ve been named a Best Place to Work by the Washington Post.
- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
- We offer competitive benefits and learning and development opportunities.
- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
- For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.