Sr. CyberSecurity Engineer - SCIF-Encryption - NIST stds - Windows-Linux-VMWare - Security Clearance Required

Sr. CyberSecurity Engineer - SCIF-Encryption - NIST stds - Windows-Linux-VMWare

Job Category : Information Technology

Time Type : Full time

Minimum Clearance Required to Start : Secret

Employee Type : Regular

Percentage of Travel Required : None

Type of Travel : None

CACI’s EITaaS Program is a Department of the Air Force initiative, which includes the Air Force and Space Force. EITaaS will transform the Dept.

of the Air Force IT services from an in-house, base-centric delivery model to an advanced enterprise service delivery model.

CACI will provide an enhanced IT management system, IT storefront, enterprise help desk, local field services, and life cycle support for end-user devices.

CACI’s innovative approach to enterprise technology infuses contemporary technologies with industry best practices to deliver commercial-style services that will improve customer experience and productivity for the Dept.

of the Air Force’s global workforce. CACI and its partners will equip Airmen and Guardians with state-of-the-art services and automated capabilities that enable access to the tools they need to perform their mission efficiently and effectively when they need it, where they need it.

What You’ll Get to Do :

Get your hands dirty and mind challenged

Provide analysis, design, development, and integration of hardware, software, human-machine interfaces, and all system level requirements and functional objectives to provide an integrated Enterprise IT solution while considering the limitations imposed by practicality, regulation, safety, and cost.

Possess and apply expertise across key tasks and high impact assignments. Plans and lead major assignments. Evaluate performance results and recommends major changes affecting short-term project growth and success.

Function as an expert across multiple project assignments. May supervise, mentor or task lead others.

Ensure the highest level of CyberSecurity while balancing user needs. Initiate (does not wait for others) to identify key areas of improvement relating to anything Systems related.

Maintain data files and monitor system configuration to ensure data and security integrity.

Flexibility and adaptability are ways of life here on the EITaaS team, so if you are comfortable breaking out of the mold and have a passion for learning new technologies, while applying your existing experience, then this position may be exactly what you are looking for.

Although this is a high-pace environment, be assured you’d be joining a high-tech people-oriented team and overall community that’s just as flexible as we’re hoping you to be.

More About the Role :

• Work location is in the Chantilly / Dulles, Virginia area (west of DC). Some work from home is possible after an initial getting acquainted period and as work needs dictate.
• Lots of hands-on with BOTH Hardware and Virtual environments.
• You understand NIST 800-53 & other NIST standards, to apply them to a secure environment including documentation to prove it.
• You understand how to develop and maintain a SCIF environment relating to servers, network, policies, etc.
• Good Morning , is that Encrypted and is that Encrypted this way are very common phases in your vocabulary.
• Proactive is one of the words driving you in your role.
• A highly technical Knows and Does All The Things person, with motivating skills within Windows and Linux ecosystems. You might be intelligent in one or more things, but you’re able to rapidly learn and adapt to new challenges and technologies that you will encounter here.
• You’re Not just dashboard admin in other words, you need to understand why things work the way they do .
• Function as a member of a small engineering / programming team tasked with developing, deploying and maintaining a multi-tenant, multi-platform, infrastructure.
• The ability to communicate with both technical and non-technical colleagues to share knowledge and insight.
• Strong, upbeat, fun personalities will become part of the high-tech team that is already there to support you as you help to support them.
• We are focusing on candidates experienced with automated process development, engineering and operations. CyberSecurity, MFA, Active Directory, and ADFS integration are a strong plus.

If you are an expert in all these areas or variations, perfect.

• Security / CyberSecurity is at the core of every analysis, solution, idea well just everything!
• Knowledge of data / server / networking security needs within SCIF environment.
• Helpful , Always has suggestions / solutions are words that describe you now and in your role.
• You will participate in the internal Engineering Review process.
• You will participate in technical cross-training within the team.
• Opportunities for significant growth in skills and position with competitive compensation.
• Understanding of Database & Networking with an eagerness to learn more.
• Perform integrations with network devices, such as VPN, firewall, routing.
• Ability to innovate and stay up to date on cutting edge tools and technologies, creating new ways to protect data and communicate or secure information utilizing custom or open-source designs.
• This is a true senior level technical position! Why are we listing a lot of things, because we want to make sure this is an interesting job for you as well as one that you can handle.

You’ll Bring These Qualifications :

• US Citizenship required.
• Ability to obtain a secret level clearance.
• University Degree (BS), or equivalent years of related experience, and additionally 10+ years of related IT engineering experience required.

Senior Level Experience with the following (10+ years) :

• Systems Administration in Windows Server environments (MS Security Engineer / Solution Architect equivalence) or within Linux environments (RHCE equivalence).
• Customer interactions, including presenting, answering questions, proactively resolving issues.
• VMWare Enterprise environments (implementing, managing, configuring).
• Securing systems by following STIGs, best practices, and government / compliance requirements (such as NIST 800-53, NIST 800-27, NIST 800-137, FISMA, FEDRAMP, CUI), and negotiating / working-with IA personnel to arrive at sensible and effective secure solutions.
• Understanding IT Security concepts and implementations. Grasping the wide-definition of CyberSecurity.

Mid-Level Experience with the following (5+ years) :

• Experience within a secure SCIF environment - handling and creating policies relating to securing servers, storage, network devices, etc.
• Experience with enhance data protection and compliance (such as OpenSSL, Keystores, Key Vaults, Cyphers).
• Experience with leading team efforts. Understanding needs of individuals not just tasks.

One Year of Experience with the following :

• Experience with hands-on Server Hardware (i.e, Dell Blade servers MX7000, MX750c), SANs (i.e., Dell PowerStore).
• Experience with log management, network firewalls, and testing. (Being able to track down the root cause of a service / application failure through the use of logs and CLI-based tools (Log-based Analysis, not just guessing)).
• Experience with researching, analyzing, documenting and presenting Analysis of Alternatives (AoA) for key product solutions.
• Experience creating and analyzing PowerShell, Ansible, Bash, JAVA based, YAML and / or Python scripts basically you need to know how to connect things for automation needs.
• Experience with Agile / Kanban, Git / GitHub.
• Experience integrating, securing, and understanding the following Microsoft platform services : Active Directory Domain Services (ADDS), Active Directory Certificate Services (ADCS), Active Directory Federated Services (ADFS), Windows AD-integrated PKI, Single Sign On (SSO), Smartcard implementation.
• Experience with network devices (switches, routers, firewalls) by large commercial vendors (such as : Dell, Cisco, PaloAlto).

Certification Requirement :

Security+ CE Certification (or other IAT Level II or III Certification) active at start or obtain within 30 days of hire.

Within normal CACI policies, CACI will provide access to most of the CBTs needed as well as reimburse for exams fees. (We can discuss how you get this more in detail when you interview or start).

These Qualifications Would be Nice to Have :

• Some experience with MECM / SCCM / ConfigMgr, Intune, etc.
• Some experience with ServiceNow, DevOps, etc.
• Some experience with BeyondTrust, CyberArk, etc.
• Some experience with any or all of these products or technologies : MS SQL, Red Hat Satellite, Tanium, IPSEC, etc.
• Technical degree in Computer Science, Computer Engineering, or a related subject area (or actively obtaining, within 1 year of graduation)

What We Can Offer You :

• We’ve been named a Best Place to Work by the Washington Post
• Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
• We offer competitive benefits and learning and development opportunities.
• We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
• For over 60 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.

This position is contingent on funding and may not be filled immediately. However, this position is representative of positions within CACI that are consistently available.

Individuals who apply may also be considered for other positions at CACI.

What You Can Expect :

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose to ensure the safety of our nation.

An environment of trust.

CACI takes pride in fostering a diverse and accessible culture where every individual feels supported to chart their own path.

You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground in your career and in our legacy.

Your potential is limitless. So is ours.

Learn more about CACI here.

Pay Range : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications.

Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities.

Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as;

healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here .

The proposed salary range for this position is :

$94,400 - $198,300

CACI is an Equal Opportunity / Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.