CASY-MSCCN Jobs

Cybersecurity Security Analyst

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: TS/SCI

Employee Type: Regular-Long Term Assignment

Percentage of Travel Required: Up to 10%

Type of Travel: Local

Are you interested in continuing your career in Europe in a mission focused environment? CACI has established and upcoming positions throughout the European theater supporting multiple customers for the Department of Defense. We are looking for experienced, innovative and motivated IT Specialists to support enablement of AFRICOM, EUCOM and CJTF-HOA’s mission objectives.

What You’ll Get to Do:

CACI has an excellent opportunity for an experienced, self-directed, Cybersecurity Operations . This position is in support of a Department of Defense (DoD) organization, US EUCOM located OCONUS in Stuttgart, Germany. This position is required to stay OCONUS and located full time in RAF Molesworth England reporting to EUCOM in Stuttgart, GE

More About the Role:

The successful candidate must be able to communicate clearly and succinctly both written and orally, and present products and ideas in a business-like manner. The candidate will be required to work in dynamic fast paced environments that require team interaction and coordination of efforts. The candidate must be experienced in interfacing with both client managers and system users.

Required functions for Carbon Black App Control, formally known as Bit9:

• Manage and configure the Carbon Black App Control sever based on organizational requirements

• Implement rules to support business processes and automatic approvals

• Comprehension of Carbon Black App Control Rules and Event rules

• Understand common troubleshooting for the Carbon Black App Control Server and Windows agent

Required functions for Endpoint Security System (ESS), formally known as HBSS:

• Operate and maintain systems required to support endpoint level security tools.

• Maintain EUCOM endpoint security tools In Accordance With (IAW) JFHQ OPORD 16-0080 FRAGO 6 and any subsequent FRAGO or replacement order as appropriate.

• Administer HBSS SQL database.

• Deploy required ESS products to EUCOM endpoints at or above minimum required patch levels including mandated antivirus products, intrusion detection / prevention products, data loss prevention products, rogue detection products, and compliance detection / reporting products. Maintain current compliance metric of 95% coverage on a per product basis OR any updated requirement brought about through updated OPORDs, TASKORDs, or CTOs.

• Configure periodic reporting / rollup reporting to Continuous Monitoring and Risk Scoring (CMRS) or other required reporting location as required by OPORD / CCRI inspection criteria.

• Tune assigned point product policies to remove false positives and known non-malicious behaviors.

• Monitor, report, and investigate unknown and potentially malicious detected activity.

• Performance tune assigned point product policies to minimize resource use without compromising effective security posture.

• Maintain administrator training IAW CCRI specified requirements to properly manage the endpoint security suite.

You Bring These Qualifications:

• C urrently hold an adjudicated TS/SCI clearance ( no waiver )

• BA/BS + 8 years recent specialized or AA/AS +10 years recent specialized or a major cert + 12 years recent specialized or 14 years of recent specialized experience

• At least 3 years of HBSS/ESS experience

• Specifically - ESS (formally HBSS) and VMWare Carbon Black Application control experience with ESS or AWL certs (i.e. 201/301 CB certs)

• At least 3 years of Application White Listing (AWL)

• DoD 8570 IAM III and IAT II Baseline Certification

• Knowledge of DoD IT RMF, USCYBERCOM, and JFHQ-DoDIN

• Advanced Proficiency in Microsoft Office Suite products (Word, Excel, PowerPoint)

• Ability to obtain a UK VISA / Business Residence Permit and SUSLO Status

Nice to Have Qualifications:

• Microsoft Certified Solutions Associate (MCSA) Widows Server 2016/2019

• Microsoft Certified Solutions Associate (MCSA) SQL 2016 Database Admin

• Proficiency with Microsoft SCCM and/or other automatic reporting tools

• Experience with Splunk

• Proficiency with Carbon Black Application Control

• Adaptable to changing circumstances and operational needs

• Understanding of Department of Defense Military standards

• Experience with DoD IT security requirements

• Experience managing asset accuracy to Critical Success Factors (CSF)

Company Overview:

CACI is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.

Pay Range : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here (https://careers.caci.com/global/en/employee-benefits)

The proposed salary range for this position is:

$63,300 - 129,700 USD