CACI International Inc · 6 hours ago
Navy Qualified Validator/Cybersecurity Analyst
Remote (Any State)
Full-time
Remote
Mid, Senior Level
$68K/yr - $144K/yr
5+ years exp
Maximize your interview chancesInformation TechnologyService Industry
No H1B
Security Clearance Required
Insider Connection @CACI International Inc
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Conduct security assessments of system security plans to help ensure that plans provide security controls for information systems that meet stated security requirements.
Conduct comprehensive assessments of the management, operational, and technical security controls employed within or inherited by an information system to determine the overall effectiveness of the controls.
Ensure compliance of security configurations for IT systems and aid in providing clear and concise processes and procedures for the implementation and enforcement of system security configurations.
Support the risk management process by helping to determine and assign risk impact ratings in accordance with Information Assurance standards guidelines and methodologies and by aiding in the development and maintenance of Plans of Action and Milestones (POA&Ms) for IT systems identified in the Risk Management Framework (RMF) process and annual security assessments of IT systems.
Provide assessments of the severity of weaknesses or deficiencies discovered in the information system and its environment of operation and recommend corrective actions to address identified vulnerabilities and prepare the security assessment reports containing the results and findings from system security assessments.
Demonstrated knowledge and experience of IA / INFOSEC concepts and requirements: Firewall Policy, Ports & Protocols, Cybersecurity, Cybersafe.
Knowledge of the DOD A&A process and standards: DIACAP, RMF.
System/network vulnerability analysis.
Risk assessment and risk mitigation analysis.
Security Test and Evaluation (ST&E).
Contingency planning.
Knowledge and experience of the Defense Information Systems Agency published Security Technical Information Guidance (STIG) requirements and implementation/compliance process.
Knowledge of virtualization, networking, Windows and Linux Operating Systems, and storage and backup.
Possess strong oral and technical writing skills.
Possess extensive knowledge of the US Government Information Assurance Security Processes.
Knowledge of Information Assurance policies and procedures, and processes are also desired.
Practical experience in Cybersecurity, Engineering, T&E or A&A.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Minimum five (5) years of related work experience.
Secret clearance.
Experience independently performing the NQV Level III activities defined in the Navy’s RMF.
Process Guide and successfully completing all required validator tasks for one or more Security Authorization Packages through the SCA within the past year (or equivalent direct DoD RMF A&A experience as approved by the IA TA).
In-depth familiarity and understanding of Navy IT sites, systems and infrastructure (Including NCS and PIT); applies Navy RMF guidance to Navy A&A efforts (or equivalent direct DoD RMF A&A experience as approved by the IA TA).
Experience in allocating assigned security controls into assessment objectives and procedures, developing and executing Security Assessment Plans by selecting and tailoring appropriate assessment methods, depth and coverage, and applying sequencing to reduce duplication of effort and provide cost effective assessment solutions.
The Validator shall possess a thorough understanding of Navy’s A&A process, and an advanced understanding of applicable Navy systems including, but not limited to, networks and IT infrastructure such as the Navy Marine Corps Internet (NMCI), Outside the Contiguous United States (OCONUS) Navy Enterprise Network (ONE-NET), IT-21/Afloat networks, and Joint systems, and Platform IT such as Navy Control Systems and Weapons platforms.
Demonstrated knowledge and experience of IA / INFOSEC concepts and requirements: Firewall Policy, Ports & Protocols, Cybersecurity, Cybersafe.
Knowledge of the DOD A&A process and standards: DIACAP, RMF.
System/network vulnerability analysis.
Risk assessment and risk mitigation analysis.
Security Test and Evaluation (ST&E).
Contingency planning.
Knowledge and experience of the Defense Information Systems Agency published Security Technical Information Guidance (STIG) requirements and implementation/compliance process.
Knowledge of virtualization, networking, Windows and Linux Operating Systems, and storage and backup.
Possess strong oral and technical writing skills.
Possess extensive knowledge of the US Government Information Assurance Security Processes.
Knowledge of Information Assurance policies and procedures, and processes are also desired.
Practical experience in Cybersecurity, Engineering, T&E or A&A.
DoD 8570.01-M IAM/IAT Level III Certification or CISSP.
Preferred
(BA/BS) degree in Information Systems or related field from an accredited college/university.
Benefits
Healthcare
Wellness
Financial
Retirement
Family support
Continuing education
Time off benefits
Company
CACI International Inc
At CACI International Inc (NYSE: CACI), our 24,000 talented and dynamic employees are ever vigilant in delivering distinctive expertise and differentiated technology to meet our customers’ greatest challenges in national security.
10001+ employees
Funding
Current Stage
Public CompanyTotal Funding
unknown2003-01-10IPO
Leadership Team
John Mengucci
President & CEO
Darryl W Burke
Senior Vice President & Air Force Client Executive
Recent News
Washington Technology
2024-11-21
Company data provided by crunchbase
