SOC Support Specialist (Security Specialist)

CACI - Chantilly, VA

Job Description

What You’ll Get to Do:
CACI is currently looking for outstanding IT candidates to join our TSA IT Management, Performance Analysis, and Collaborative Technologies (IMPACT) team in the National Capital Region (NCR) and throughout the United States. CACI will provide a variety of IT services through IMPACT including cyber security, identity and access management, risk management, cloud integration and engineering, field support services, service desk, application deployment and optimization, and operations center support services. CACI will support TSA in both classified and unclassified IT operational environments increasing availability and security for a variety of applications and systems. IMPACT services will integrate with the broader DHS mission and enhance existing Department-wide IT capabilities.

More About the Role:
The successful candidate must be well-versed in security monitoring and response operations, cyber security tools, intrusion detection, and secured networks.

Responsible for Security monitoring across TSA Infrastructure.
Responsible for executing the cyber security monitoring and response methodology in accordance with TSA infrastructure program requirements
Responsible for implementing and applying technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access.
Provide security support of Network Security Systems
Intrusion Detection
Proxy Server Web Content Filter
VPN Concentrator
Anti-Virus/Malware Management
Host Intrusion Detection
Endpoint Encryption
Security Event Logging
Coordinate response to detected anomalies or incidents through by maintaining network device and information security incident, damage and threat assessment programs.
Investigate network device and information security incidents to determine root cause and remediation efforts
Support Vulnerability Scanning Assessments by identifying vulnerabilities or anomalies, providing mitigation, and associated reports.
Support measurement and SLRs defined by the TSA Infrastructure Cyber Security Monitoring Response program
Provide intrusion support to high technology investigations in the form of network assessments.
Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities
Brief senior level internal and external customers on technical adherence to security controls as part of the Cyber Security Monitoring and Response program
Coordinate with Cyber SOC to provide Cyber Security Monitoring and Response reports

You’ll Bring These Qualifications:
Must be a “hands-on” engineer with a well-developed understanding of Security Hardening guides, Vulnerability Assessment tools and methods, Security Content and Automation Protocol (SCAP), Security Monitoring and Response tools and procedures
Well-developed understanding of Defensive (and Offensive) Cybersecurity technologies, e.g. Next Generation Firewall (NGFW), Intrusion Prevention System (IPS), Content Filtering devices and proxies (Web and Email), Data Loss Prevention (DLP), Security Intrusion and Event Monitoring (SIEM), etc.
Understands the structure and functionality of COTS applications (e.g., Security Automation & Orchestration platforms, Splunk, etc.)
Understands Python programming language
Ability to obtain a DHS Entrance on Duty (EOD)
Typically has a University Degree (BA/BS) or equivalent experience and minimum 3 years related work experience.
Detail oriented
Flexible – The environment is highly dynamic. You will be expected to keep up with the changing environment while ensuring a high level of operational effectiveness
Team Player – This role is part of a much larger team
There is no clearance requirement to begin employment. However, as a requirement of continued employment in this position you will be required to obtain a DHS/EOD clearance.

These Qualifications Would be Nice to Have:
Relevant DHS focused experience

What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.

Job Location


CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.