What You’ll Get to Do: CACI has an exciting and immediate opportunity for Cybersecurity Operations Controllers to support the USAF Network Operations Security Center (NOSC). This position works at the customer on-site Tier 3 support location at Shaw Air Force Base in South Carolina.
More About the Role:
In this role you will:
Conduct network security monitoring and intrusion detection analysis using selected security tools to include but is not limited to IDS/IPS, firewall, proxy, router, Microsoft Windows, Fidelis, and HBSS logs.
Research Net Defense (NetD) to determine the necessity for deeper analysis and conduct an initial assessment of type and extent of intruder activates; enter event data into mission support systems and produce Suspicious Event Reports (SER) for suspicious traffic meeting established thresholds.
Track trends of authorized and unauthorized activity.
Correlate unusual and suspicious network activity and validate unusual network activity unique to a geographical region and sensor location.
Provide an overall site-analysis profile to serve as a benchmark to identify unusual or suspicious activity
Update incoming crews on the latest suspicious traffic identified during previous shift
Provide focused network defense, tailored analysis, and monitoring operations of specified sensor locations during contingency operations and in support of named network defense/cybersecurity operations and exercises
Assist in completion of network defense/cybersecurity statistical and trend data and operational event reporting when requested
Maintain current knowledge on new vulnerabilities and exploits. Develop methods to detect and prevent intrusive activities utilizing knowledge. Help develop countermeasures to isolate, contain and prevent intrusive activities and secure networks (to include IDS/IPS signature development and correlation rule sets)
Track, document, and report all security related events.
Coordinate and track Information Assurance Vulnerabilities Alerts (IAVA). Review and report compliance and develop Plans, Objectives, Actions and Milestones (POA&Ms) if unable to complete task.
You will also be required to:
Provide support in the application of network security devices
Install and maintain network devices such as routers, switches, bridges, and hubs
Implement wide area and local area network architectures
Perform installation and administration of hardware, software, and services in a client-server environment
Optimize operations on a network and systems level
Configure Dynamic Host Control Protocol (DHCP), Windows Internet Naming Service (WINS), Dynamic and Integrated Domain Name Service (DNS), and Active Directory (AD) services
Apply proper security measures to safeguard government IT infrastructure
Implement Public Key Infrastructure (PKI) technology for network and systems access
Assist deployed IT support staff with the use and migration of PKI-enabled systems
Research, document, and track to resolution all outages, trouble calls, virus outbreaks, and network intrusions
Analyze and report on the overall health of local and deployed networks
Recommend appropriate changes/resolutions in response to observed trends in Enterprise Level Cisco and Microsoft fault isolation and correction
Configure and maintain DNS and BIND domain name services on UNIX and Microsoft platforms
Implement Certificate Authority (CA), Online Certificate Status Protocol (OCSP), and LEAP server PKI technologies
Serve as senior manager/consultant and provide for overall management, direction and control of resources and activities for a specific functional area(s)
Support tactical and strategic planning associated with delivery of services and capabilities
Research, evaluate and provide information regarding emerging military and commercial enterprise IT/Cybersecurity technologies, and provide recommended strategies
Provide oral and written briefs, presentations, and professional reports to Government senior leaders and decision makers
Serve as consultant on enterprise IT/Cybersecurity equipment, systems, software, and support services
Provide remote engineering and technical support to assist local and deployed IT support personnel
Provide technical assistance on assigned projects
Supplement government IT and Cybersecurity personnel to support the day-to-day management, operation, maintenance and administration of enterprise IT systems and services
Perform preventive, remedial, and corrective maintenance
Install, configure, optimize, update, patch and maintain server, client and network operating systems and integrate and apply authorized third-party drivers, applications, and software
Monitor network/systems hardware, software, and services for indications of warnings, faults, errors, anomalies, alarm conditions and/or outages
Provide local and remote fault isolation, diagnostics, troubleshooting and restoration services
Assist with configuration and cybersecurity program inspections and audits
Assist the government’s Accountable Property Officers/Equipment Control Officers with communications and IT asset management and related activities
Develop, update, and maintain facility, network, and systems documentation
Use Microsoft Project Server to document, update, and track and report the status of assigned projects
Develop and review technical documents and checklists to explain abstract IT and cybersecurity technologies and concepts
Develop and review detailed or complex technical documents such as techniques, tactics, and procedures (TTPs), concepts of operations (CONOPS), special instructions and engineering plans, for supported enterprise IT and cybersecurity technology, services, applications, and processes
Host and/or participate in technical meetings as necessary
Develop and provide meeting agendas and minutes, as requested by the government.
Support continuity and on-the job training to contractor and government technical support personnel (CONUS and OCONUS)
You’ll Bring These Qualifications:
DoD Secret Security Clearance (or the ability to obtain a Secret clearance prior to starting)
Associates in related field and 3 or more years’ experience; OR 5 or more years’ of relevant experience.
Firewall, ACAS and HBSS experience.
Possess the following skill sets: extensive knowledge of network firewalls, computer and server log analysis, computer network servers (DNS, proxy, e-mail, domain controller, file server, Active Directory) and analysis of server logs.
Excellent customer service skills
Excellent verbal and written communication skills
IAT II Baseline Certification (Security+ CE or CCNA-Sec)
Minimum Professional Certifications:
These Qualifications Would be Nice to Have:
Experience working in DoD, Air Force, and local base environments
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.