• AONS-FTBLV-Task 13- Cyber Security Analyst

    CACI InternationalFort Belvoir, VA 22060

    Job #1465580075

  • Job Description

    What You'll Get to Do:

    CACI is currently looking for outstanding Cyber Security Analyst to join our Architecture, Operations, Networks, and Space (AONS) team supporting the Army Chief Information Officer (CIO)/G-6 in the National Capitol Region. CACI provides analytical and technical services to the Army CIO/G-6 enhancing their User Activity Monitoring efforts.

    In this position, you will be implementing and applying technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access. Using could-based network device and tools you will be able to identify and report security incidents to proper authorities.

    You will be required to provide Technical and Programmatic support for Army User Activity Monitoring (UAM) Teams. Coordinate with the Planning Lead for the day-to-day planning and execution of all contract deliverables. Attends formal meetings as required (e.g. Technical and Programmatic). Adhering to Policies, Standards and Requirements for Army UAM Program. Keep the team up-to-date on issues and concerns related to specific tasks. Provides briefing material as required to support the program.

    More About the Role:

    • Assist the Government in strengthening the Army's S/UAM collection and analytical capabilities by reviewing existing operational capabilities and recommending modifications, enhancements, and new techniques, along with processes, procedures, or technology changes to improve its operational effectiveness.

    • Continually review the Army's S/UAM program to improve its audit collecting and analysis capabilities and reduce false positives in support of the objective to identify potential insider threats.

    • Stay abreast of changes to existing and newly released Government insider threat, S/UAM, and related policies, directives, instructions, standards and regulations.

    • Provide the Government a Policy Compliance Report that documents the policy change and proposes system enhancements to bring the Army's S/UAM capability and operation into compliance with the new or changed policy.

    • Provide the Government a bi-monthly S/UAM Policy Assessment Report that rates currently deployed S/UAM policies' effectiveness and efficiency to identify insider threats and propose new or refinements to existing policies.

    • Collaborate with Army and external Government S/UAM and insider threat analysts to gain insight into their operations with the objective of improving the Army's S/UAM capability.

    • Employ system analysis use case methodology to justify proposed changes or creation of new policies. The Contractor shall participate in the Government's S/UAM configuration management process and provide artifacts as defined in the program's CONOPS.

    • Develop and implement approved changes to existing or the generation of new audit policies in accordance with Government direction and document S/UAM policy changes as described in the program's CONOPS.

    • Provide the Government a quarterly Analysis Assessment Report that rates the systems' analysis and data visualization, and case management effectiveness and efficiency and propose system changes or enhancements.

    • Assist the Government in the development and implementation of approved analysis and data visualization enhancements.

    • Participate in meetings and assist in justifying program improvements to senior Government officials.

    • Manages CND, UAM, or Cybersecurity program through signature development, statistical analysis of data, developed data visualization enhancements, or written cyber security incident reports.

    • Oversees the development of UAM signatures.

    • Leads team in cyber threat hunting, cyber threat analysis, computer forensic investigations

    • Leads the assessment of behavioral/organizational psychology, or risk management.

    • Understands insider threat principles, theory and best practices.

    • Understands threat signature development, trigger development, statistical analysis of data, and data visualization development

    • Demonstrates experience with UAM tool(s) to include triage/screening, analytic/investigative research, data correlation, administration, and policy/triggers.

    • Demonstrates experience with the SIEM tool(s) to include data administration, authoring queries and developing dashboards and visualizations.

    You'll Bring These Qualifications:

    • 3 - 5 Years of experience with current and emerging system and network security tools and applications used for System and User Activity Monitoring (S/UAM).

    • Experienced with data visualization techniques, tactics, or procedures to enhance data analysis

    • Experience with writing cybersecurity incident assessment reports

    • Possess an active TS/SCI Security Clearance with CI Poly

    • BA/BS degree in Cybersecurity or related field plus 12 years' minimum relevant work experience, or MA/MS degree with minimum of 5 years' relevant work experience

    • Possesses at a minimum a Security + CE certification

    • Detail oriented team player

    • Flexible - The environment is highly dynamic. Candidate will be expected adapt to a dynamic environment with constant changing priorities based on Client priorities while ensuring a high level of operational effectiveness and professionalism

    • Excellent written and oral communication skills

    • Effective and efficient time management of self and team duties

    What We Can Offer You:- We've been named a Best Place to Work by the Washington Post.- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.- We offer competitive benefits and learning and development opportunities.- We are mission-oriented and ever vigilant in aligning our solutions with the nation's highest priorities.- For over 55 years, the principles of CACI's unique, character-based culture have been the driving force behind our success.

    Job Location


    CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.