Information Assurance/Security Specialist, Journeyman
Req #: 203854
Location: Tampa, FL US
Job Category: Information Technology
Security Clearance: TS/SCI
Clearance Status: Must Be Current
CACI has an excellent opportunity for a Information Assurance/Security Specialist, Journeyman. This role:
Manages extensive security evaluations of major information systems and networks and the remediation of security control weaknesses, prepares evaluation reports and presents recommendations. Conducts trade off analyses of products for clients to determine optimal informant security solutions. Maintains a high level of familiarity with the major Federal Government Information Security policy guidance and directives. Works independently in an expert role at customer site or provides team leadership to a group of information security professionals.
On a 24x7 basis, conduct real-time analysis of theater IA-CND data from appropriate situational awareness and management tools.
Maintain IA-CND sensor grid situational awareness from Tier 0 to Tier 2; report and respond to sensor grid outages and/or anomalies; direct network surveillance resources.
Perform information gathering from appropriate tools and databases.
Track and report performance and capability metrics.
Provide event categorization by analyzing the incoming data flow from security devices and searching data for indications of anomalous events.
Lead/conduct theater collaboration for IA-CND planning and operations including, but not limited to email, chat, ticketing and collaboration session communications.
Conduct theater IA-CND trouble ticket management.
Track and report performance/capability metrics.
Review IA-CND Current Operations trends to identify anomalies for further investigation.
Review current intelligence for relevant threats and develop appropriate actions/response.
Distribute current IA-CND intelligence information to the USCENTCOM Components.
Integrate IA-CND current operations activities with IA-CND Intelligence activities to support intelligence-operations synchronization.
Track IAVM/CTO/WARNORD compliance.
Integrate IA-CND current operations activities with other USCENTCOM AOR NETOPS Centers.
Review security threats and determine/implement effective countermeasures IAW established policies/regulations/directives.
Analyze network or system changes/reconfigurations for security impacts (performs risk analysis/assessment).
Document security measure policies.
Monitors security systems, and analyzes potential threats and vulnerabilities to client systems.
Develops new computer and network security systems, including both hardware and software.
Coordinates technical incident response and remediation activities for client environments.
Provides security analysis and consultation services for product, system and network architecture designs.
Analyzes network traffic and alerts to assess, prioritize and differentiate between potential intrusion attempts and false alarms.
Provides consulting services on a wide variety of information assurance topics.
Prepares remedial options and supervises correction of information security shortfalls.
Launches and tracks investigations to resolution.
Composes and sends alert notifications.
Analyzes security findings and data.
Publishes reports and keeps metrics for client systems.
Identifies trends and root causes of system failures or vulnerabilities.
Maintains vendor and trusted partner relationships.
Develops tools for operational use and analyzes current threats to information security and systems.
Ensures that the Information Systems Security department's policies, procedures, and practices as well as other systems user groups are in compliance.
Ensures that the physical environment of the computers and their terminals are properly secured.
Issues user ID's and passwords to new users and monitors system access and use to identify any security violations.
Performs off-site audits to check on "Disaster Recovery" program effectiveness.
Conducts user training to ensure systems security and improve main frame efficiency.
Conducts structured walk-throughs to ensure integrity of system applications.
You’ll Bring These Qualifications:
SECURITY CLEARANCE REQUIREMENT:
Candidate must currently have an active DoD TS/SCI clearance.
Position requires industry recognized network security certification.
Applicant must possess Certified Ethical Hacker (CEH) prior to start date
Candidate must have strong TCP/IP networking skills.
Candidate must have a solid familiarity with application and network security.
Must be able to provide technical subject matter expertise for a wide range of security technologies including, but not limited to SEIM, IDS/IPS, HIDS, malware analysis and protection, content filtering, perimeter access controls, logical access controls, identity and access management, and data loss prevention.
Candidate should have an understanding of vulnerabilities, exploits, and practical working knowledge of DoD IAVM program.
Candidate should possess solid understanding of malware and associated risks attributed to system infections.
Experience with USCENTCOM and ARCSIGHT software is a plus.
Bachelor’s degree in Electrical Engineering, Information Science, Information Systems, Computer Science, Physics, Math, or related field. Six years’ experience in information systems. Candidates with 10+ years’ experience will be considered in lieu of education.