Apply Now    

Network Operations Security Specialist T3

Req #: 237473
Location: National Harbor, MD US
Job Category: Information Technology
Minimum Clearance Required: None

Job Description

Team CACI has an exciting and challenging opportunity available for a Network Operations Security Specialist supporting a DHS customer’s wide-area (WAN), local-area (LAN) and campus-area (CAN) networks across multiple security domains. We are a seeking an experienced and motivated Network Operations Security Specialist to join our team to provide responsible for examining malicious software, suspicious network activities, and non-authorized presence in the network to analyze the nature of the threat, and secure and monitor firewall configurations. The Network Security Specialist needs to understand the specimen's attack capabilities, its propagation characteristics, and define signatures for detecting malware presence. By understanding the network principles and security, this expert can build a robust network that provides the proper functionality and correct level of security. Demonstrates an in depth understanding of enterprise-wide, multi-platform operating systems security, network security, cyber security, analysis, application security, database security, regulatory compliance, incident and risk management. Identifies, understands, manages, and interprets information security risks and threats as it affects the business and aligns the information security strategy to achieve organizational mission. Designs the organization's information security governance framework to facilitate the implementation of the organization's information security strategy. Set expectations, determines appropriate security measures to be used across the department /agency, and maintains governance over the standards and methodologies. Independently manages, plans, evaluates and advocates for information security solutions, plans, and functions, and is responsible for the management of complex projects, program and initiatives with high threat and large scope (e.g. organization-wide or inter-governmental). Leads, enables and is accountable for the implementation and integration of solutions to ensure information security within the organization. Understands mechanisms for securing new technologies, understands the impact of new and emerging technologies on the information security environment as well as tools and methods for mitigating risks. The contractor will work cooperatively, collaboratively and transparently with all associated organizations to support Network Deployments. This role necessarily deals with highly confidential and sensitive information, and the role is expected to confirm to best handling practices.

What You’ll Get to Do:

Ensure the overall health and strong security posture of complex network architectures. The Network Operations Security Specialist will be actively involved with all phases of security design, implementation, proactive monitoring, troubleshooting and analysis of firewalls, IDSs, VPNs, security controls and policies. Develops system specifications, architecture designs, integration and test plans, and all relevant documentation. Develops security assessment and mitigation strategies. Maintain compliance with DOD Information Assurance requirements as well as ensuring service performance indicators are met or exceeded.

More About the Role:

  • Work with both corporate and customer leadership to research, analyze, and implement enterprise-wide network security solutions/capabilities/enhancements to support customer business/mission goals and objectives.
  • Technical analysis of network activity; the specialist monitors and evaluates network event data, signature-based IDS events and full packet capture (PCAP) data.
  • Triage IDS alerts; collect related data from various network analysis systems, review available open and closed source information on related threats & vulnerabilities, prepare initial summary reports
  • Analyze network flow data for anomalies and to correlate reporting with enterprise-wide network activity
  • Document key event details and analytic findings in an incident management system
  • Provide oversight and assessment of incident response and triage actions across a large enterprise
  • Identify & extract network indicators from incident reporting and published technical advisories/bulletins
  • Assess cyber indicators/observables and collaborate in the development of IDS signatures and detection mechanisms
  • Provide technical assessments of cyber threats and vulnerabilities
  • Fuse open-source threat & vulnerability information with data collected from sensors across the enterprise
  • Ensure that all alerts are monitored, interpreted, analyzed, and investigated
  • Utilize external reporting tools for threat intelligence
  • Monitor all security-relevant logs and alerts for signs of compromise, attack, or system misuse and policy violations
  • Innovate new methods to use existing tools and data sources, and identify and obtain new data sources, to detect cyber intrusions
  • Provide programmatic oversight to support operational procedures, policy, emergency response, international information share, administrative oversight, and Government-industry organizational requirements and effective readiness posture
  • Coordinate on-going mission support for Watch Operations in accordance with customer guidelines. Work with Government management to ensure an effective and efficient cyber incident management system for a Federal government customer
  • Provide oversight of the project and deliverables in direct support of the customer’s operational information systems, including analysis, integration, and training
  • Plans, organizes, and directs the Network Operations Team to ensure the stable operation of network infrastructure.
  • Responsible to provide security support for Cloud routers and other network equipment in Equinix, AWS and Azure to include but not limited to CSR, ASR, Security Groups, VPCs and VPGs.
  • Responsible for maintaining, supporting, and optimizing key functional areas, particularly network infrastructure, server infrastructure, network security, telecommunications systems and service desk.
  • Responsible for managing and setting priorities for the monitoring and maintenance of network systems, including LANs, WANs, Internet, intranet, wireless.
  • Provides support to end users, operations personnel, and strategic program management.
  • Ensures the effective monitoring and response to hardware, software, and network problems.
  • Coordinates and manages the routine testing and analysis of all elements of the network facilities.
  • The Network Operations Team Lead shall also schedule and direct activities to resolve Security hardware and software problems in a timely and accurate fashion.
  • Ability to problem-solve, and think creatively
  • Experience handling, securing, and communicating highly confidential and sensitive information
  • Closely collaborating with cross-functional teams

You’ll Bring These Qualifications:

  • US Citizenship required
  • An active Entrance on Duty (EOD) is required to begin employment and must be maintained as a requirement of continued employment.
  • Experience on COTS tools including but not limited to Puppet, Solar Winds, New Relic APM/Synthetics/Insight, Riverbed (Steelheads, SteelCentral, Profiler, Mobile, NetCollector, AppInternals) Cisco Prime, SCOM, Oracle OEM, ARX, Cisco UCS, Cisco ISE, InfoBlox, Ansible, Git/Github/Jenkins and Service Now.
  • Experience and familiarity with IT management products and services
  • Experience with networking, server, application and development technologies
  • Domain expertise with IT operations, security or compliance is desirable
  • Strong written and verbal communication skills
  • Team Player – This role is part of a much larger team

These Qualifications Would be Nice to Have:

  • Relevant DHS focused experience
  • Bachelor’s degree, with preference in the computer related field, or equivalent combination of education/ 5+ years of experience
  • Cisco Certified Network Professional (CCNP) in Routing and Switching or Cisco Certified Network Administrator (CCNA).
  • Other certifications are a plus

What We Can Offer You:

- We’ve been named a Best Place to Work by the Washington Post.

- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

- We offer competitive benefits and learning and development opportunities.

- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.

- For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.


Job Location



CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.

Apply Now