CACI is a company that focuses on ensuring the safety of our nation through innovative solutions. They are seeking a Cyber Security Compliance Engineer to create and maintain a DFARS compliant operating environment by protecting network boundaries and providing security services for sensitive data.
Responsibilities:
- Work with a broad range of internal teams to assess the security risk and compliance levels of their system(s)
- Research trends in cybersecurity threats and NIST 800 standards in support of the CMMC standard
- Creation of mitigation strategies and follow up with stakeholders to ensure risk levels are documented at the appropriate levels and follow through with report writing as appropriate
- Work to create and a secure and compliant environment for CACI’s users by conducting assessments to determine risk and compliance levels of various systems and helping to develop mitigation strategies
- Possess a strong knowledge of technologies to actively monitor systems to actively monitors systems for attacks and intrusions
- Use data aggregation and analysis techniques and tools to provide valuable insight into the security posture of CACI’s infrastructure
- Work within CACI and third-parties to ensure that all technologies are designed with security in mind follow industry best practices and are compliant with applicable guidelines
- Ability to work in a team-centric environment
- Analyze security reports and reviews and documents process documentation, and assess test results and remediation plans
- Ability to work with internal and external stakeholders at all business levels
- Strong presentation, written, and oral communication skills
Requirements:
- Bachelor's Degree and 3+ years' experience with Cyber Security
- Ability to obtain a security clearance
- Ability to work in a team-centric environment
- Ability to work with internal and external stakeholders at all business levels
- Strong presentation, written, and oral communication skills
- CYSA+
- CISSP
- CEH
- Security+
- Secret or Top-Secret clearance
- Previous experience with the design or implementation of cybersecurity governance, risk, and compliance activities
- Established and productive individual contributor
- Works independently with little general supervision
- Experience with DFARS, CMMC, NIST 800-series, ISO, SSDF, and other RMFs