CACI is seeking an Information Security Specialist to support the U.S Coast Guard Surface Forces Logistics Center team establishing cyber security services for all shipboard systems throughout the Fleet. You will help prevent security incursions to shipboard information systems from limiting Cutter and Boat crews interdicting illicit drugs entering US ports, defending terrorist incursions to our ports and coastal waters, or maintaining coastal aids to navigation to keep our vital shipping lanes open.
What You'll Get to Do:
Under general supervision perform the roles and responsibilities of the Security Controls Assessor Agent (SCA-A). As the SCA-A, you will:
Perform risk assessment analysis to support PIT/PITS security assessment and authorization
Review PIT/PITS designation request packages and provide recommendations regarding risk assessment per security objective (i.e., H/M/L on confidentiality, integrity, availability objectives)
Review network information and topology for assigned PIT/PITS designation requests and provide insights into risk for the particular PIT/PITS
Develop and review draft plans to assess PIT/PITS security controls; provide assessment plan improvement recommendations for SCA approval
Use assessment procedures defined in security assessment plan to assess PIT/PITS security controls
Document issues and findings from PIT/PITS security controls assessments; provide recommendations for SCA approval
Conduct initial remediation actions on security controls based on the findings and recommendations of the SCA approved SAR
Reassess remediated control(s) and provide recommendations for SCA approval.
Assess a selected subset of the technical, management, and operational security controls employed within and inherited by the PIT/PITS in accordance with USCG-SFLC defined monitoring strategy
Review new cybersecurity policy/regulations, analyze and provide recommendations on security controls to address gaps
Provide subject matter expertise on security frameworks and requirements, using this knowledge to advise, support policy development, and conduct risk analysis
Qualifications You'll Bring:
Must possess an active Secret Clearance
6-10 years of information assurance or cybersecurity experience including assessment and authorization (A&A) packages
Experience assessing Security Controls for IT
Working knowledge of DoDI 8510.01 RMF for DoD IT
Experienced with using IACS or eMASS, DoDI 8570 compliant IAT-II
Knowledge of DoD Cyber policies and NIST and of DoD STIGs and SRGs
Expertise in the areas of vulnerability and risk management
DoDI 8570 compliant IAM-II desired
Working knowledge of NIST SP 800-82r2 Guide to Industrial Control Systems (ICS) Security desired
Knowledge and experience of current and emerging information assurance security practices
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.