Apply on Employer Site

CACI International Inc · 1 month ago

Cybersecurity Engineer - Zero Trust

Chantilly, VA

Full-time

Onsite

Senior Level

$113K/yr - $238K/yr

CACI International Inc is a leading company in engineering, and they are seeking a Senior Cybersecurity Engineer specializing in Zero Trust security. The role involves designing and implementing data protection solutions, managing identity and access controls, and ensuring compliance with government regulations.

Information TechnologyService IndustrySoftware

Comp. & Benefits

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Design, engineer, and implement complex data protection solutions beyond data encryption

Provide expert guidance on Identity and Access Management (IAM) principles and standard methodologies

Lead the development and implementation of Zero Trust data protection strategies, including encryption, tokenization, and data masking techniques

Design and manage identity-centric access controls, defining granular permissions and enforcing least privilege access to government data

Implement and manage encryption methodologies for data at rest, in transit, and during processing

Deploy and oversee security monitoring tools and analytic platforms to identify anomalous behavior, potential threats, and vulnerabilities within government data systems

Qualification

Zero Trust securityMulti-factor authenticationPrivilege Access ManagementWindows Active DirectoryLinux scriptingSecrets management toolsNetwork segmentationSplunkCommunication skillsPresentation skills

Required

An active TS/SCI with Poly clearance

Deep-level understanding of Windows Active Directory and the ability to configure/edit Windows Active Directory and Domain Services

Expertise implementing system logging to include network device, Windows, and Linux logging

Ability to manage and use secrets management tools such as Ansible secrets vault, Hashicorp Vault or equivalent

Adept at configuring Linux servers for both local user authentication with varying levels of root privileges and also joining Linux servers to a domain and configuring the correct least privilege permissions needed for the environment

Ability to manage and design a multi-factor authentication (MFA) environment for both domain joined and stand-alone machines using Yubikey, RSA tokens, or equivalent

Expertise managing network segmentation and redirection utilizing iptables, nftables, Illumio, or equivalent solutions

Familiarity of Splunk and other Enterprise Vulnerability Scanning tools, including the ability to interpret and remediate findings

Preferred

Systems administration and IT certification in Linux, Microsoft, or other network related fields

Experience using VMWare and other virtualization technologies

Strong communication and presentation skills to convey complex technical concepts to both technical and non-technical customers

Benefits

Healthcare

Wellness

Financial

Retirement

Family support

Continuing education

Time off benefits

Company

CACI International Inc

Glassdoor4.0

At CACI International Inc (NYSE: CACI), our 25,000 talented and dynamic employees are ever vigilant in delivering distinctive expertise and technology to meet our customers’ greatest challenges in national security.

Founded in 1962