Apply Now    

Application Security Engineer

Req #: 204712
Location: San Antonio, TX US
Job Category: Information Technology
Security Clearance: Secret
Clearance Status: Must Be Current

Job Description

Do you strive to make an impact? Love cutting edge technologies and new challenges? If Yes, please read more about an exciting new program at CACI!


The Air Force Integrated Personnel and Pay System (AFIPPS) will seamlessly add payroll and leave management capabilities to the Military Personnel Data System, creating a single, web-based Enterprise Resource Planning software solution streamlining existing Air Force personnel and pay processes into a single self-service system for the three AF military components: Regular Air Force, AF Reserve, and Air National Guard. The system will configure the appropriate Oracle e-Business Suite Commercial-Off-The-Shelf software application modules to satisfy AF business processes and integrate the product with MilPDS, which is based on Oracle’s EBS Human Capital Management application. The delivered solution will result in table-level integration of human resource and pay data supporting a single instance of Oracle EBS, making life easier for the end user by reducing redundancy, eliminating superfluous manual process, and ensuring timely pay for all. The AFIPPS solution will subsume and supplant the existing pay and benefits computation and disbursement processes of the Defense Joint Military Pay System and the functions of LeaveWeb. It will have AF-wide applicability, encompassing military airmen in all AF components and levels of duty status exclusive of retirement pay.

Provide support with the development, configuration, testing, deployment, and integration of Oracle E-Business Suite (EBS) and OIAM Application Security for the AFIPPS program. Provides input for systems development and database administration from a security point of view. Performs business and technical designer functions, including making contributions to business and technical architecture components of the enterprise solution. Apply subject matter expertise to identify, develop, and implement techniques to improve engagement productivity, increase efficiencies, mitigate risks, resolve issues, and optimize cost savings.

What You’ll Get to Do:

  • Implement Oracle EBS, OIAM, OBIEE, GRC security solution development, deployment/cutover, and implementation - covering all security aspects of the Enterprise implementation lifecycle.
  • Build the application security architecture as designed.
  • Build appropriate roles, permission lists and row level security for all functional areas within each environment
  • Work with project work streams to build, implement and maintain security structures for the Application Oracle EBS, OIAM, OBIEE, and GRC applications
  • Routinely audit security in all AFIPPS’s environments, ensuring that all users are appropriately provisioned for their work function
  • Support the troubleshooting of security issues for AFIPPS applications
  • Support Agile SCRUM teams during design and development
  • Participate in Functional and Technical requirement gathering
  • Support Contract Data Requirements List (CDRL) documentation
  • Maintain and migrate security across multiple databases in support of database refresh activities
  • Analyze and resolve security and access problems in the AFIPPS environments
  • Write and maintain documentation related to security design, implementation and best practices
  • Interpret requirements, performs highly complex analyses and presents options and recommendations to obtain desired results
  • Support Requirements Management Framework (RMF) processes to include; NIST, FIAR, and FISCAM control set analysis and updates
  • Participate in collaboration meetings with functional and technical staff and stakeholders
  • Support authentication and authorization interfaces with DoD systems; to include using PKI, CAC and multi-factor authentication
  • Support mobile device design and implementation
  • Support all tasks and milestones associated with security design, configuration and testing are completed according to project management guidelines

You’ll Bring These Qualifications:

  • Bachelor's degree in Computer Science, Cyber Security, Information Systems or other technically relevant degree from an accredited university or equivalent years of related experience
  • 7+ Years of IT experience, with at least 5 years of experience implementing application user based security controls within Oracle E-Business Suite
  • Ability to obtain a CompTIA Security+ Certification
  • Well versed in the design, implementation, test and deployment of Oracle EBS security controls across the HCM and Global Payroll products version 12.2 or higher
  • Demonstrated Experience with Oracle EBS Security concepts across Oracle modules
  • Demonstrated Experience with Oracle EBS business processes, user provisioning and security maintenance
  • Demonstrated understanding of IT controls and related standards within a Federal DoD environment

These Qualifications Would be Nice to Have:

  • Understanding of segregation of duties frameworks
  • Strong writing and verbal communication skills
  • Strong analytical and problem-solving skill
  • Demonstrated understanding of the support activities and requirements documented in DoDI 8520.02 regarding Public Key Infrastructure (PKI) and Public Key Enabling that are required to achieve standardized PKI supported capabilities for biometrics, digital signatures, encryption, identification and authentication. 
  • Knowledge of various software development lifecycle methodologies and experience working within an Agile SDLC preferably for a Federal Government customer
  • Demonstrated experience working within a DISA hosted environment
  • Demonstrated experience ensure that applications are compliant with DISA’s Application Security Development Security Technical Implementation Guide (STIG).
  • Experience executing and reviewing source code scans using tools such as HP Fortify to identify potential vulnerabilities for remediation
  • Experience with industry standard digital signature tools and integration of those tools with Oracle E-Business Suite.
  • Experience using Oracle Identity Management for identity and access management
  • Knowledge of various software development lifecycle methodologies and experience working within an Agile SDLC preferably for a Federal Government customer
  • Knowledge of Industry and Federal Government Security standards such as X.509, FIPS 140.2, SAML 2.0, WS Security, and applicable NIST related security standards
  • Familiarity with the DoD and AF certification and accreditation policies, specially DoDI8510.01, Risk Management Framework (RMF) for DoD Information Technology and AFI 17-101
  • Familiarity with agile software development

What We Can Offer You:

- We’ve been named a Best Place to Work by the Washington Post.

- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

- We offer competitive benefits and learning and development opportunities.

- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.

- For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.



Job Location



CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.

Apply Now    
Link for schema