AWS Cybersecurity Engineer

Employer
CACI
Location
National Harbor, MD, United States of America
Posted
Nov 23, 2022
Closes
Dec 23, 2022
Ref
264194
Function
IT
Hours
Full Time
AWS Cybersecurity Engineer
Job Profile:
Cyber Engineering T4

JR Type:
Evergreen
Job Category:
Engineering
Minimum Clearance Required to Start:
None
Percentage of Travel Required:
None
Type of Travel:
None
Program/Opportunity Name:
Program | DHS DeskTop
Referral Bonus Plan:

Job Description:

CACI is seeking an AWS Cybersecurity Engineer to join our cloud operations team on a contract supporting Department of Homeland Security. The AWS Cybersecurity Engineer will need to have a deep technical understanding of Cybersecurity practices in securing Amazon Web Services (AWS) environments and implementing security tools in the cloud.

They will work as an integral part of a highly productive team of seasoned technical professionals who thrive on supporting our customer's mission and growth objectives. They will work in close collaboration with software developers, engineers, and stakeholders. They will also be responsible for supporting development of engineering artifacts that captures system security requirements, application security design and architecture.

Serve as a senior Cybersecurity Team member responsible for the Information Assurance and Security of application in AWS cloud environment.

Responsibilities include:
  • Hands-on securing of our cloud applications in AWS
    • Assess entire system lifecycle requirements and security impacts
    • Enhance - Implement Cybersecurity vulnerability and hardening testing
    • Optimize - Cybersecurity development environment certification
    • Architect & Engineer security - develop security goals, capabilities, controls, and architecture
    • Design & Implement security - vulnerability management, build security into development
    • Integrate & Test Security - test patches and settings, document A&A artifacts
    • Validate & Verify security - validate patch status and software control status
    • Implement security - apply patches and security settings, performance incident handling and remediation
    • Maintain security posture - audit security settings, track security training, monitor threats, track reaccreditation
    • Enable assurance for information security during all phases of agile software development and deployment
    • Continuously evaluate and recommend innovative proven best business practices and tools to enhance defense-in-depth
    • Identify, assess, and recommend zero-day cyber threat remediation
    • Support creation of, and ensure approval for, Department of Homeland Security (DHS) Risk Management Framework (RMF) Assess and Authorize (A&A) Process for development and sustainment projects
    • Apply information security in accordance with NIST SP 800-30, NIST 800-37, NIST 800-53a, NIST SP 800-61, NIST 800-171,DHS 4300A
    • Document DHS RMF Security Implementation Plan artifacts. Coordinate and assist development team with application artifact documentation
    • Create and manage Plan of Action & Milestones (POA&M)
    • Implement and validate Security Technical Implementation Guide (STIG) requirements for all development and implementation projects
  • Maintain accountability to endure integrity and confidentiality of the process
  • Review and make recommendations on program-level documentation (e.g., requirements specification, system architecture, design documents, test plans, security plans, etc.)
  • Develop and document security evaluation test plan and procedures
  • Assist in researching, evaluating, and developing relevant Information Security policies and guidance
  • Actively participate in or lead technical exchange meetings and application review boards, documenting actions items/results of these events
  • Brief management, as needed, on the status of action items and/or results of activities
  • Conduct hands-on security testing, analyze test results, document risk, and recommend countermeasures - Coordinate with other program elements conducting security testing
  • Assess/calculate risk based on threats, vulnerabilities, and shortfalls uncovered in testing
  • Identify mitigating countermeasures to identified threats, vulnerabilities, and shortfalls.


Required Qualifications:

  • Ability to obtain DoD Security Clearance
  • Ability to obtain Department of Homeland Security (DHS) Entry On Duty (EOD) - Active EOD preferred
  • BA/BS + 10 years of applicable experience or 16 years without degree
  • AWS certification (relevant experience in AWS can be substituted)
  • Demonstrated hands-on experience securing and providing risk mitigations for systems and applications in the AWS cloud environment
  • Demonstrated expertise in SELC, Information Security processes, audits, tools, implementation, FISMA, NIST, IT security
  • Previous experience using tools such as Nessus, Splunk, CrowdStrike or similar tools
  • Ability to work independently and as part of a team
  • Able to communicate clearly and professionally with senior customers to field and troubleshooting questions and issues
  • Demonstrated experience coordinating and performing cyber assessments, analyzing and documenting test results, and documenting risk


Preferred Qualifications:
  • Previous DHS experience
  • At least one of the following certifications is highly desired:
    • Certified Authorization Professional (CAP)
    • ISC Certified Cloud Security Professional (CCSP)
    • Certified Information Systems Security Professional (CISSP)
    • ISACA Certified Information Security Manager (CISM)
    • Relevant hands-on technical certification (e.g., Microsoft MCSE)


What We Can Offer You:

  • We've been named a Best Place to Work by the Washington Post.
  • Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
  • We offer competitive benefits and learning and development opportunities.
  • We are mission-oriented and ever vigilant in aligning our solutions with the nation's highest priorities.
  • For over 55 years, the principles of CACI's unique, character-based culture have been the driving force behind our success.


What We Can Offer You:

- We've been named a Best Place to Work by the Washington Post.

- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

- We offer competitive benefits and learning and development opportunities.

- We are mission-oriented and ever vigilant in aligning our solutions with the nation's highest priorities.

- For over 55 years, the principles of CACI's unique, character-based culture have been the driving force behind our success.

DHSHP

Company Overview:

CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.

As a federal contractor, CACI is subject to any federal vaccine mandates or other customer vaccination requirements. All new hires are required to report their vaccination status.

Similar jobs