This position is the lead for managing the flow of data from tools/sensors into Splunk and then from Splunk to RSA Archer as well as between Archer instances. Reports to the Operations Engineering Support Manager.
Maintain and enhance the CDM data exchange mechanisms, using the Security Content Automation Protocol (SCAP)-compliant Asset Summary Reporting (ASR) format
Ensure interoperability between tool sensors and integration layer to include configuring and monitoring the Splunk Search Heads and Forwarders.
Responsible for O&M of multiple sensor database types
Coordinates with data owners to expose data and then setup mechanisms to ensure data flows correctly
Track resource utilization and through-put; recommend technical and process enhancements to improve effectiveness and efficiency
More About the Role:
Prepare status reports at least weekly and monthly and complete other reporting requirements as required
Provide QA for team member’s work
Responsible for developing, coordinating and maintaining the relevant portions of the Service Operations Handbook and holding team members accountable for following published SOPs.
Track and report on team’s performance via formal performance metrics
You’ll Bring These Qualifications:
Demonstrated knowledge of ITIL processes and experience leading a Cyber Operations Team using those processes
Clear and proven communicator and leader. Must be able to work well in an environment where they are facilitating a large group of government and other contractor personnel to achieve a common goal.
Detail oriented – must be able to recognize critical elements of successful operations and then hold themselves and their teams accountable for meeting those critical elements.
Flexibility – The environment is very dynamic. The Engineering Manager will be expected to keep up with the changing environment while ensuring a high level of operational effectiveness
Team Player – This role is part of a much larger team. The engineering manager will be expected to grow and develop their subordinate team members’ moral and wellbeing as well as support the overall Operations Team and Team CACI’s mission.
These Qualifications Would be Nice to Have:
BA/BS and 5+ Years of relevant experience
Ability to obtain a DoD Security Clearance
Ability to obtain DHS Entrance on Duty (EOD)
Working knowledge Cyber Security tools like the McAfee and Symantec Suites, Tenable Nesses, ForeScout, RSA Archer
Agile developmental experience
Relevant DHS or .Gov Cyber Security focused experience
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.