Cyber Security Specialist (ISSO) jobs in United States
cer-icon
Apply on Employer Site
company-logo

CACI International Inc · 1 day ago

Cyber Security Specialist (ISSO)

positionAshburn, VA
timeFull-time
remoteHybrid
seniorityMid, Senior Level
money$104K/yr - $218K/yr
date7+ years exp

CACI International Inc is a company dedicated to ensuring the safety of the nation through innovative solutions. They are seeking a Cyber Security Specialist who will be responsible for implementing cybersecurity policies and ensuring the security of applications and enterprise networks. The role involves collaborating with various teams to deliver secure and reliable solutions while supporting the mission and growth objectives of the organization.

Information TechnologyService IndustrySoftware
check
Comp. & BenefitsbadNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Serve as a Cybersecurity Team member responsible for the Information Assurance and Security of application, database, and enterprise network services. Responsible for activities associated with delivery of Cybersecurity policy implementation and network solutions associated with customer-defined systems and software projects; basic responsibilities include:
Implement Cybersecurity Program strategy
Apply information security in accordance with National/DHS/CBP directives security policy including, but not limited to, NIST SP 800-30, NIST 800-37, NIST 800-53a, NIST SP 800-61, NIST 800-171, DHS 4300A, CBP Handbook 1400-05D
Assess entire system lifecycle requirements and network security impacts
Support creation of, and ensure approval for, Department of Homeland Security (DHS) Risk Management Framework (RMF) Assess and Authorize (A&A) Process for development and sustainment projects
Support program and customer management, and government Authorizing Official (AO) for all information security status, policies, and procedures
Document DHS RMF Security Implementation Plan artifacts. Coordinate and assist development team with application artifact documentation
Assist government personnel in preparing and presenting Information Assurance Compliance System (IACS) packages to the Control Assessor (SCA) Assess and analyze the current threat environment
Enhance – Implement Cybersecurity vulnerability/A&A hardening testing
Optimize – Cybersecurity development environment certification
Architect & Engineer security – develop security goals, capabilities, controls, and architecture
Design & Implement security – vulnerability management, build security into development
Integrate & Test Security – test patches and settings, document A&A artifacts
Validate & Verify security – validate patch status and software control status
Implement security – apply patches and security settings, performance incident handling and remediation
Maintain security posture – audit security settings, track security training, monitor threats, track reaccreditation
Enable assurance for information security during all phases of agile software development and deployment
Continuously evaluate and recommend innovative proven best business practices and tools to enhance defense-in-depth
Identify, assess, and recommend zero-day cyber threat remediation
Address Cybersecurity issues to help maintain Continuity of Operations Plans (COOP)
Perform information security vulnerability testing and mitigate any nonconformance
Supports reviews and audits of continuous system monitoring and contingency planning. Updates associated documentation as needed
Create and manage Plan of Action & Milestones (POA&M)
Implement and validate Security Technical Implementation Guide (STIG) requirements for all development and implementation projects
Understand and assist developers with static code analysis processes
Report and help investigate security-related incidents and security violations as requested by the Computer Security Incident Response Center (CSIRC)
Monitor and inspect for approved software usage and implementation of approved antivirus and other security related software
Develop and maintain security training programs are developed and maintained

Qualification

Cybersecurity practicesNIST SP 800 seriesSecurity+ CE certificationCISSPCASP certificationInformation AssuranceContinuous integration toolsComputer Network DefenseScripting languagesCollaboration skillsCommunication skillsProblem-solving skillsTeam-oriented

Required

Must be a U.S. Citizen with the ability to pass CBP background investigation, criteria will include: 3-year check for felony convictions, 1-year check for illegal drug use, 1-year check for misconduct such as theft or fraud
College degree (B.S., M.S.) in Information Assurance, Computer Science, Information Management Systems or a related discipline
Must be available to work onsite in Ashburn, VA at least one day per week
Demonstrated knowledge DHS 4300A, 'Sensitive Systems Handbook', and CBP Handbook 1400-05D, 'Information Systems Security Policies and Procedures Handbook'
Demonstrated knowledge of NIST Information Technology Security Special Publications (SP) 800 series, with emphasis on NIST SP 800-37, 'Guide for Applying the Risk Management Framework to Federal Information Systems' and NIST SP 800-53A, 'Guide for Assessing the Security Controls in Federal Information Systems'
Professional Experience: 7+ years related technical experience
Working knowledge of and ability to assist others in the use of information security provisioning and monitoring tools to support process improvement
Working knowledge of Federal Information Security Management Act (FISMA) reporting requirements and processes
Ability to apply advanced principles, theories, and concepts, and contribute to the development of innovative IA principles and ideas
Experience working on unusually complicated problems and providing solutions that are highly creative and ingenious, exhibiting ingenuity, creativity, and resourcefulness
Experience with continuous integration tools and environments
Experience with scripting languages like Perl, VBScript, Ruby, etc
Experience with Computer Network Defense (CND) processes, procedures, and tools
Acting independently to expose and resolve problems
Demonstrated experience with HP Fortify Software Security Center
Demonstrated experience with Assured Compliance Assessment Solution (ACAS)/Tenable Nessus Vulnerability Scanner
Demonstrated experience with DISA Security Technical Implementation Guide (STIG) implementation and Security Content Automation Protocol (SCAP) tool usage
Demonstrated familiarity and experience with Firewalls, Intrusion Prevention Systems, WebGateways, and/or enterprise Antivirus software technologies
Demonstrated experience using IACS
Demonstrated ability to identify and manage risk
Understanding all elements of the DHS and CBP Cybersecurity policies and requirement
Excellent written and verbal communication skills
Strong collaboration skills and desire to work within a team
Highly responsible, team-oriented individual with very strong communication skills and work ethic; self-starter

Preferred

CISSP or CASP preferred

Benefits

Healthcare
Wellness
Financial
Retirement
Family support
Continuing education
Time off benefits

Company

CACI International Inc

twittertwittertwitter
Glassdoor4.0
company-logo
At CACI International Inc (NYSE: CACI), our 25,000 talented and dynamic employees are ever vigilant in delivering distinctive expertise and technology to meet our customers’ greatest challenges in national security.
dateFounded in 1962
location
Arlington, Virginia, USA
people-size10001+ employees
web-link
https://www.caci.com

Funding

Current Stage
Public Company
Total Funding
$1B
2025-05-21Post Ipo Debt· $1B
2003-01-10IPO

Leadership Team

leader-logo
John Mengucci
President & CEO
linkedin
leader-logo
Darryl W Burke
Senior Vice President / Air Force Client Executive
linkedin

Recent News

Washington Technology
Two dozen corporate leadership moves to note as 2026 begins
2026-01-11
Investing.com
8 Best US Aerospace & Defense Stocks for 2026: UBS Picks
2026-01-09
MarketScreener
CACI International awarded $212 million task order for U.S. Space Force
2026-01-03
Company data provided by crunchbase