Information Security Specialist 1

CACI - North Charleston, SC (30+ days ago)3.9


Job Description

CACI is looking for an Information Security Specialist to work from our Charleston, SC office.

What You’ll Get to Do:
The Information Security Specialist will execute tasking in support of the Veterans Affairs (VA) Assessment & Authorization (A&A) process for the VBMS system. This role is focused on application and code security for a set of custom web applications and service endpoints.

You’ll Bring These Qualifications:
1-3 years related experience with Bachelor’s Degree in Computer Science, Information Technology, Information Assurance, or Information Security, or 4+ years related experience without degree. Some experience in a team environment is desired.
This job requires the ability to act independently. Additional, a qualified applicant will have a professional demeanor, good people skills, and the ability to excel in a multi-tasked and dynamic environment by prioritizing tasks and managing to a schedule.
A relevant information security certification (e.g. Security+, CEH, or equivalent) or technical certification (e.g. CCNA, RHCA, MCSA or equivalent) is preferred, but not required.
US Citizenship and eligibility for a VA Moderate clearance is required for this position.
An understanding of J2EE, Spring Framework with Spring Security, AngularJS, and Maven in large, distributed enterprise environments, with working knowledge of additional programming languages such as Python, Ruby, or Bash.
An understanding of manually and dynamically reviewing source code in order to identify, verify, and make recommendations for remediation of security weaknesses in code.
An understanding of the following security concepts: Quantitative Risk Assessment; Software Vulnerabilities and Weaknesses; Web Application security; Threat Modeling to include awareness and analysis of emergent threats; Network and transport security.
A basic understanding of Service-Oriented Architectures to include web services, web applications, data models and information flow.
Significant written and verbal communication, including risk assessments, compliance analysis reports, executive summaries of cyber threats, formal and informational briefings to CACI and VA Enterprise Program Management Office (EPMO) professional staff. This will require collaboration with VBMS System Administrators, Architects and Developers on a regular basis.

These Qualifications Would be Nice to Have:
An understanding of application security tools commonly used by the US Government and VA such as HPE Fortify, Portswigger Burpsuite, Smartbear SoapUI, and other open source security applications as needed.
A familiarity of NIST RMF to ensure the integrity and on-time delivery of all phases of the VA A&A process from Categorize through Monitor, with a focus on aspects that entail application security.
An understanding of COTS products such as Apache Web Server, Weblogic Application Server, Oracle Database, Java Runtime Environments, Docker, JWT, ESXI, and IBM Rational Tools. Experience with Agile and/or Scrum environments is a plus.
Experience analyzing and documenting compliance with established NIST security policies and federal regulations.
Experience supporting secure change management by performing quantitative risk assessments for proposed changes to production systems.

What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
Job Location

US-North Charleston-SC-CHARLESTON

CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.