Information Security Engineer (Cloud)

Fort Bragg, NC, United States of America
Nov 23, 2022
Nov 25, 2022
Full Time
Information Security Engineer (Cloud)
Job Profile:
Systems Engineering T4

JR Type:
Job Category:
Minimum Clearance Required to Start:
Percentage of Travel Required:
Up to 10%
Type of Travel:
Continental US
Program/Opportunity Name:
Program | JSOC SITEC 2
Referral Bonus Plan:

Job Description:

What You'll Get to Do:
  • Experience in working with Cloud automation technologies. (i.e. Infrastructure as a Service (IaaS) built out with Terraform)
  • Experience with AKS, EKS, Kubernetes, or ECL hardware based-cluster solutions and how they can manage (i.e. Rancher) and monitor (i.e. StackRox/Kyverno)
  • Knowledge of logs generated and what data is provided within each CSP

More About the Role:
  • AWS Specific - experience utilizing AWS Cloud Trail, CloudWatch, VPC Flow Logs, S3 Access logs, Syslogs
  • Integration of logs to a SIEM (i.e. Splunk, ElastiSearch) for monitoring identified tasks from control enhancements per system of record requirements
  • Ability to address control enhancements based on how the cloud environment is deployed via the POA&M process
  • Experience utilizing monitoring, vulnerability, or security tools (i.e. GuardDuty, Trusted Advisor, Security Hub, Sentinel, Qualys, Tanium)
  • Experience with securing and hardening operation systems, applications, and containers with cloud native services or third party application/services (i.e. ansible, STIG Viewer, open source scanners)
  • Cloud concept: Understand how DevSecOps works with the pipeline workflows to get applications and services deployed within an environment.

You'll Bring These Qualifications:


Minimum IAM Level 1 Certificate for view-access of cloud environment
  • 1+ years of experience with Information Assurance SME
  • 1+ years as IA SME as a Cybersecurity Analyst within cloud environments
  • 1+ years of experience with eMASS and/or XACTA
  • Experience with implementing controls from NIST 800-53, FedRAMP, ICD 503, RMF, DoD Information Levels, and responding to the design and implantation of IT solutions to achieve an Authorization to Operate (ATO)
  • Experience with developing security compliant solutions in accordance with DoD IA standards; ACAS standards ESS monitoring cloud solutions to meet endpoint or vulnerability monitoring
  • Experience in assessing the effectiveness of security controls and response
  • Ability to verify that application software/network/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations
  • Top Secret / SCI

These Qualifications Would be Nice to Have:

  • Preferred IAM Level 2 Certificate for control actions within cloud environment
  • ACAS or ESS certification
  • CSP foundation or security-based certification

What We Can Offer You:

- We've been named a Best Place to Work by the Washington Post.

- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

- We offer competitive benefits and learning and development opportunities.

- We are mission-oriented and ever vigilant in aligning our solutions with the nation's highest priorities.

- For over 60 years, the principles of CACI's unique, character-based culture have been the driving force behind our success.

Company Overview:

CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.

As a federal contractor, CACI is subject to any federal vaccine mandates or other customer vaccination requirements. All new hires are required to report their vaccination status.

Similar jobs