AONS-FTBLV-Task 13- Data Analysis-S/UAM Information Security Engineer
Req #: 210920
Location: Fort Belvoir, VA US
Job Category: Information Technology
Security Clearance: TS/SCI
Clearance Status: Must Be Current
CACI International Inc. has an immediate opening for an Data Analysis-S/UAM Information Security Engineer located in Ft. Belvoir, VA.
What You'll Get to Do:
Join CACI in supporting the U.S. Army Chief Information Office (CIO)/G-6 to lead the Army's network modernization to deliver timely, trusted, and shared information for the Army and its mission partners.
More About the Role:
As a team member supporting AONS CIO/G-6, you will provide technical services to include planning, program, budget, and analytical services to aid in resourcing critical Army command, control, communications, computers (C4) and IT needs. You will also provide recommendations for how the CIO/G-6 can synchronize technology and business management to enable better execution, risk control, and efficiencies for the Army.
You'll Bring These Qualifications:
The successful candidate will be responsible for the following:
Serve as an Army S/UAM analyst responsible for identifying anomalous user actions on Army networks.
Review and analyze received network alerts to determine validity as potential insider threats and security incidents. Employs S/UAM, analysis, and correlation tools in the conduct of event analysis.
Use the Army's S/UAM case management system to establish a new case, track progress, update status, modify existing open cases, and close out active cases.
Coordinates with other entities to receive data from a number of networks to support analysis efforts. Collaborates with the Insider Threat Hub, cyber defense, and information assurance (IA) staff members to leverage their expertise in execution of mission requirements.
Create recurring status reports and maintains a tracking mechanism for actions taken and follow established procedures for presenting analysis performance metrics to improve program effectiveness and efficiency.
Document analysis findings and recommendations and provide that data to Government leadership for review and approval.
Knowledge of DOD Directives for Special Access Programs, Army Regulation 380-381, DOD Manual 5205.07 (volumes. 1 thru 4), DOD Manuals 5105.21 (volumes 1 thru 3), and Intelligence Community Directive (ICD) 503 regulation.
Communicate effectively and concisely using a variety of styles and techniques appropriate to the audience level (GO/SES) to substantiate findings as required.
Participating member of insider threat working groups and attend insider threat briefing/meeting as required. Proactively gathering and compiling internal/external intelligence data generating weekly and monthly trend analysis reports for insider threat cases and activities and leverage additional system data to support analysis efforts.
Conduct a market analysis of new and existing S/UAM tools to advise the Government lead on appropriate Courses of Action and write, review and edit IARs and submit them to the Government for review and acceptance.
Assist Government in resolving IAR findings and correct returned IAR in accordance with the Government's direction.
Follow established procedures for presenting analysis performance metrics to improve program effectiveness and efficiency.
Continuously evaluate changes in actors, tactics, techniques and targets to enhance threat scenarios and use cases and make recommendations to ensure that the technology strategy maintains pace with the changing insider threat landscape.
Assist external agencies in reviewing and clarifying collected system user activity audit data.
Validate collected system event data against device log data or reports from other network deployed tools when possible and include this research in the case management tool and IARs.
Participate in meetings with senior Government official to substantiate findings as required.
Clearance: Must have TS/SCI
Education and Years of Experience:
BS/BA + minimum 10 years of related work experience or equivalent
These Qualifications Would be Nice to Have:
Excellent verbal and written communication skills
Army Headquarters or CIO/G-6 experience
Understanding how the Army operates
CND, S/UAM, or cybersecurity tool signature or policy development
Applying statistics to evaluate received data
Analysis tradecraft enhancements through process improvements
Developing data visualization techniques, tactics, or procedures to enhance data analysis
Experience writing cybersecurity incident assessment reports
Information Technology Professional
Data analytics and data visualization
Performance management experience
Project management expertise
Staff action management
What We Can Offer You:
We've been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation's highest priorities.
For over 55 years, the principles of CACI's unique, character-based culture have been the driving force behind our success.
US-Fort Belvoir-VA-VIRGINIA SUBURBAN
CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.
Caci International Inc.