Office 365 Security & Compliance Engineer
Job DescriptionWhat You'll Get to Do:As a CACI/WGI (The Wexford Group International) you will play a key role in implementing O365 security and compliance controls in accordance with NIST 800-171 standards as part of our enterprise transition to Microsoft's GCC-High Cloud. You will deliver subject matter expertise and hands-on configuration of O365 tenant with an emphasis in security and compliance and architectural design. Strong knowledge of Azure Active Directory (AAD), Information Protection, Single-Sign-On (SSO), multi-factor authentication (MFA) and Office 365 Compliance Manager. Once applied, you will document system configurations, standards and procedures and work in close collaboration with other project members to ensure system improvements, optimization and development is compatible with system security and compliance standards. Strong knowledge and experience in the following areas: SharePoint Online, Exchange Online, Power Platform, Microsoft Teams, Azure Active Directory (Conditional Access Policies' implementation), Permissions management, Data Loss Prevention (DLP) policy implementation, and Advanced Threat Protection. You will be responsible for monitoring and addressing program portal(s) site for security and compliance concerns on a regular basis and provide routine reports addressing site security posture. Plan the cybersecurity architecture for an Office 365 GCC-H tenant with AAD, MFA, SharePoint Online and MS Teams to comply with NIST SP 800-171 controls. Provision and configure the cybersecurity components and features. Operate and sustain the cybersecurity components and features. Daily regulate and report on security and compliance posture. You are familiar with compliance control families pertinent to NIST SP 800-171 and Cybersecurity Maturity Model Certification (CMMC) requirements. You will create and configure a flexible, adaptable, resilient and secure architecture capable of storing Controlled Unclassified Information (CUI). You will contribute and collaborate with the Information Systems Security Officer (ISSO) on developing multiple program System Security Plans (SSPs).More About the Role: In this role you will support the creation of technical documentation capturing the technical system configurations, standards and procedures. You will work during normal business hours and be in daily coordination with developers, the Information System Security Officer (ISSO) and work under the direction of the Technical Project Lead. You will primarily work remotely with an occasional requirement to travel to the northern Virginia area for collaboration sessions and business meetings. You'll Bring These Qualifications: Bachelor's degree in engineering, computer science or related technical disciplinePowerShell Automation Skills are a MUST7+ years' cumulative experience in O365 AAD sync and Azure AD7+ years' cumulative experience integrating, securing, and making useful the following Microsoft platform services (both in Windows OS and in Azure Cloud): Active Directory Domain Services (ADDS), Active Directory Certificate Services (ADCS), Active Directory Federated Services (ADFS), Windows AD-integrated PKI, Single Sign On (SSO) implementation3+ years' cumulative experience integrating/understanding Multi-factor authentication (MFA, 2MFA)7+ years' experience with securing systems by following STIGs, best practices, and government/compliance requirements (such as NIST 800-53, NIST 800-171, FISMA, FEDRAMP), and negotiating/working-with IA personnel to arrive at sensible and effective solutions3-5 years' experience as an O365 Security and Compliance Administrator and Compliance Manager3-5 years of Cloud experience, preferably Azure GCC-High GovCloud experienceAbility to obtain a Top Secret security clearanceThis Qualification Would be Nice to Have:Experience successfully achieving NIST SP 800-171 or familiarity with CMMC compliance implementation in Office 365 tenant.Experience with Office 365 compliance validated through an external assessment by a 3PAO.Experience with Dynamics 365 security and compliance configuration.Active DoD Clearance preferred, but not required.Microsoft 365 Security Administration Certification,Microsoft 365 Mobility and Security Certification,Identity and Access Administrator Associate Certification,Azure Security Engineer Associate CertificationWhat We Can Offer You: CACI-WGI (The Wexford Group International) is a wholly-owned subsidiary of CACI with a reputation for uncompromising standards of quality in its people and its performance. Joining the CACI-WGI team is a mark of excellence for those employees who complete our rigorous Recruiting, Assessment, and Selection (RAS) process.CACI-WGI's mission places its personnel against the government's most critical emerging challenges. Work with us and you'll be working with a team making a difference across the globe.CACI-WGI offers competitive benefits as well as numerous learning and development opportunities.Job LocationUS-Reston-VA-VIRGINIA SUBURBANCACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.