CACI International Computer Network Defense Specialist in Ashburn, Virginia

Job Description

General Description

CACI’s Agile Solution Factory (ASF) is hiring a Computer Network Defense (CND) Specialist for product teams based in Ashburn, VA or Colorado Springs, CO! Join this passionate team of industry-leading individuals supporting the Best Practices in Agile Software Development for the Department of Defense.

ASF programs thrive in a culture of innovation and are constantly seeking individuals who can bring creative ideas to solve complex problems, both technical and procedural at the team and portfolio levels. The ability to be adaptable and to work constructively with a technically diverse and geographically separated team is crucial.

This position will provide incident handling and analysis to support M-F, dayshift CND operations. CND specialist will manage triage, reporting, and escalation for Incident Case Management, manage and monitor Security information and event management (SIEM), Intrusion Detection/Intrusion Prevention Systems (IDS/IPS), and assist Network and System management personnel with securing the Enterprise enclave.

Responsibilities:

  • Utilize BlackStratus LogStorm SIEM, WireShark, McAfee IDS/IPS, and other toolsets to identify, triage, and investigate anomalies.

  • Maintain and update (signature and system updates) SIEM and IDS/IPS systems

  • Create custom IDS/IPS signatures based on new threats and adversary Tactics, Techniques, and Procedures, as needed

  • Create technically detailed reports based on intrusions and events

  • Provide assistance in computer incident investigations

  • Coordinate with other teams to remediate detected incidents

  • Analyze and evaluate anomalous network and system activity

  • Recommend modifications to security tools to detect, prevent, and mitigate intrusions

  • Recommend mitigation activities and provide after action reports to remediate vulnerabilities and reduce the chance of further exploitation

Required Skills:

  • Must be a U.S. Citizen, with or eligible for a Government security clearance

  • College degree (B.S., M.S.) in Information Assurance, Computer Science, Information Management Systems or a related discipline

  • IAT Level II (Current CCSP, Security+ with evidence of continuing education, SSCP, or CCNA-Security)

  • Certified Ethical Hacker (CEH) certified

  • Experience analyzing reports generated from SIEM tools

  • Understanding of packet capture (PCAP) analysis and network flow data review

  • Experience analyzing various security log formats from various sources

  • Experience analyzing reports generated from SIEM tools

Desired Skills:

  • Experience with McAfee Webproxy, McAfee IDS/IPS, and BlackStratus LogStorm SIEm desired

  • Acts independently to expose and resolve problems

Job Location

US-Ashburn-VA-VIRGINIA SUBURBAN

CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.