Information Security Engineer (Cloud)

Employer
CACI
Location
Fort Bragg, NC, United States of America
Posted
Nov 23, 2022
Closes
Nov 25, 2022
Ref
274381
Function
IT
Hours
Full Time
Information Security Engineer (Cloud)
Job Profile:
Systems Engineering T4

JR Type:
Conditional
Job Category:
Engineering
Minimum Clearance Required to Start:
TS/SCI
Percentage of Travel Required:
Up to 10%
Type of Travel:
Continental US
Program/Opportunity Name:
Program | JSOC SITEC 2
Referral Bonus Plan:
$3,000

Job Description:

What You'll Get to Do:
  • Experience in working with Cloud automation technologies. (i.e. Infrastructure as a Service (IaaS) built out with Terraform)
  • Experience with AKS, EKS, Kubernetes, or ECL hardware based-cluster solutions and how they can manage (i.e. Rancher) and monitor (i.e. StackRox/Kyverno)
  • Knowledge of logs generated and what data is provided within each CSP


More About the Role:
  • AWS Specific - experience utilizing AWS Cloud Trail, CloudWatch, VPC Flow Logs, S3 Access logs, Syslogs
  • Integration of logs to a SIEM (i.e. Splunk, ElastiSearch) for monitoring identified tasks from control enhancements per system of record requirements
  • Ability to address control enhancements based on how the cloud environment is deployed via the POA&M process
  • Experience utilizing monitoring, vulnerability, or security tools (i.e. GuardDuty, Trusted Advisor, Security Hub, Sentinel, Qualys, Tanium)
  • Experience with securing and hardening operation systems, applications, and containers with cloud native services or third party application/services (i.e. ansible, STIG Viewer, open source scanners)
  • Cloud concept: Understand how DevSecOps works with the pipeline workflows to get applications and services deployed within an environment.


You'll Bring These Qualifications:

Required:

Minimum IAM Level 1 Certificate for view-access of cloud environment
  • 1+ years of experience with Information Assurance SME
  • 1+ years as IA SME as a Cybersecurity Analyst within cloud environments
  • 1+ years of experience with eMASS and/or XACTA
  • Experience with implementing controls from NIST 800-53, FedRAMP, ICD 503, RMF, DoD Information Levels, and responding to the design and implantation of IT solutions to achieve an Authorization to Operate (ATO)
  • Experience with developing security compliant solutions in accordance with DoD IA standards; ACAS standards ESS monitoring cloud solutions to meet endpoint or vulnerability monitoring
  • Experience in assessing the effectiveness of security controls and response
  • Ability to verify that application software/network/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations
  • Top Secret / SCI


These Qualifications Would be Nice to Have:

Desired:
  • Preferred IAM Level 2 Certificate for control actions within cloud environment
  • ACAS or ESS certification
  • CSP foundation or security-based certification


What We Can Offer You:

- We've been named a Best Place to Work by the Washington Post.

- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

- We offer competitive benefits and learning and development opportunities.

- We are mission-oriented and ever vigilant in aligning our solutions with the nation's highest priorities.

- For over 60 years, the principles of CACI's unique, character-based culture have been the driving force behind our success.

Company Overview:

CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.

As a federal contractor, CACI is subject to any federal vaccine mandates or other customer vaccination requirements. All new hires are required to report their vaccination status.

Similar jobs