Senior Information Security Consultant involved in compliance assessments and IT audits for various security standards. Based in Athens, Greece with a focus on Information Security Policies and Risk Assessment.
About the role
- Information Systems Security Officer managing RMF and security integration for CACI. Leading technical projects and mentoring junior engineers while ensuring compliance with cyber regulations.
Responsibilities
- Manage Risk Management Framework (RMF) process
- Work with system development team to identify needed RMF artifacts and load them into the government’s EMASS system.
- Develop security plans, policies, and designs.
- Configure and implement security solutions based upon the customer’s performance criteria and specifications
- Conduct systems pre-test and acceptance tests to validate the designed performance criteria
- Structure mock designs based upon RFP specifications in support of the Bids & Proposal teams
- Collaborate with government and /or subcontractors at customer site for security solution integration into existing infrastructure
- Develop and perform technical presentations for customers
- Mentor junior engineers and technicians
- Serve as technical lead on projects.
- Travel to other CACI Locations or Customer Sites as necessary
- Proactively ensure a safe work environment and adhere to CACI EH&S policies and procedures
- Perform other duties as required
Requirements
- A Bachelors degree is required.
- Knowledge of risk assessment tools, technologies, and methods including EMASS system
- Experience designing secure networks, systems, and application architectures
- Experience planning, researching, and developing security policies, standards, and procedures
- Ability to communicate network security issues to peers and customers
- Working knowledge of current Cyber technologies and experience with NIST 800 Series and DoD 8570 regulations and governing DISA STIGs and/or SRGs
- Understanding of Information Assurance Vulnerability Management (IAVM) and Information Assurance Vulnerability Assessments (IAVAs)
- Prior experience with RMF controls, risk assessments, and POA&M generation
- Strong working knowledge of Confidentiality, Integrity, and Availability (CIA) concepts, to include 2-factor authentication, Public Key encryption techniques, patch management, end-point security systems, intrusion detection, security event management and defense-in-depth.
- Well versed in DoD cyber security Assessment and Authorizations (A&A) DoD Implementation, Directives, NIST Special Publications and other government cyber security standards, policies, and directives
- Experience with Nessus, ACAS, SCAP
- Experience completing and review DISA Security Technical Implementation Guides (STIGs)
- Experience conducting risk analysis on products and system components through review of CVEs, plugins, IAVAs
- Experience onboarding assets to centrally managed Enterprise solutions.
- Application Security Architecture and Design experience
- Security Compliance Operations and Application Security Assessment experience
- DoD 8570.01 IAT level 2 or greater cyber security certification per DoD 8570.01 (such as Security+)
- Experience designing and implementing Commercial Solutions for Classified (CSfC) Multi-Site Connectivity Capability Package desired
- Systems integration experience
- Excellent interpersonal and presentation skills
- At least five years of continuous recent experience in the field of DoD information systems security and/or cybersecurity.
- Possess an active Information Assurance Management (IAM) Level III certification.
- Additional cyber and/or IT certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or CompTIA’s Advanced Security Practitioner (CASP)
- Possess an active DoD Secret clearance.
Benefits
- healthcare
- wellness
- financial
- retirement
- family support
- continuing education
- time off benefits
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Project Manager overseeing Enterprise Security Compliance initiatives at MTM. Managing compliance and security activities, ensuring project completion within budget and scope.
Cyber security leader driving advanced analytics and fraud prevention strategies at Sun Life. Establishing operational models and analytics capabilities for proactive risk mitigation and incident response.
Senior Manager of Cloud Network Engineering & Security leading enterprise - wide network evolution. Hands - on technical leadership focusing on cloud networking in AWS and Azure from Dallas headquarters.
Light Maintenance Security Officer handling routine maintenance tasks and event setups for Ohio Support Services. Assisting building engineers and ensuring facility operations meet standards.
IT Intern at AVIXA supporting cybersecurity, networking, and user support for a non - profit. Engaging in hands - on experience while working closely with the IT team during summer.
Security Specialist evaluating and mitigating risks for PNC's cybersecurity posture. Collaborating on security policies and procedures to enhance compliance and safeguard information.
Security Officer ensuring safety and security of staff, patients, and visitors at Kent Hospital in Warwick, RI. Involves monitoring premises and enforcing policies and procedures.
Technical Lead in Cybersecurity focusing on threat monitoring and vulnerability assessments for the company. Collaborate with analysts and stakeholders to enhance cybersecurity measures.
Technical Specialist in Cybersecurity managing endpoint protection, email filtering, and workload security. Collaborating with SOC teams and presenting findings effectively.