Security Tools Engineer

Security Tools Engineer

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: TS/SCI

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Local

* * *

The Opportunity:

CACI is seeking a Top Secret/SCI cleared Security Tools Engineer to join our Security Engineering team. The ideal candidate will have significant expertise managing both back-end and front-end support for a wide variety of security tools to include SIEM, SOAR, EDR, Identity Security, Network Security, Zero Trust, Enterprise Browser Security, Cloud Security, Email Security, and DLP as well as a strong background in information security and vulnerability assessment.

The ideal candidate will have extensive knowledge and hands-on experience supporting, integrating, optimizing, and deploying a broad portfolio of security technologies. This candidate will support a DHS facility located in Stennis, MS.

The Security Tools Engineer should feel comfortable working at a customer site and remotely while optimizing the network security infrastructure and collaborating with cross-functional teams to enhance DHS’ overall security posture. In this role, you will be responsible for building, maintaining, and expanding the security tooling ecosystem that enables our detection, response, identity, cloud and systems teams to operate efficiently and securely. This role will play a critical part in tool maintenance, architecture, integration, automation, and compliance across the enterprise security stack.

Responsibilities:

• Serve as a point of contact providing technical guidance and supporting multiple enterprise security tools to include Splunk, CrowdStrike, CyberArk, Swimlane, Tenable, etc.
• Serve as a local network detection point of contact for the DHS Stennis, MS. location providing technical guidance and supporting tool deployment, implementations, and maintenance.
• Analyze network traffic and security events to identify and respond to potential threats
• Develop and manage scanning policies and schedules for vulnerability assessments
• Troubleshoot complex issues and provide technical support to end-users and IT support teams
• Document and map the architecture of current scanning and monitoring tools and environment
• Assist with designing, implementing, and maintaining Splunk deployments for security monitoring and threat detection
• Create and manage policies in conjunction with security standards for access control and network security and continuously identify improvements and long-term strategies
• Collaborate with cross-functional teams to enhance overall security posture through automation
• Stay current with emerging security technologies and industry trends to recommend improvements or additions.

Qualifications:

Required: 

• Ability to attain DHS EOD
• Active Top Secret (TS) clearance with SCI
• ITIL V4 Foundations certification (or obtain in first 6 months)
• BA/BS or equivalent +10 years of experience (AA/AS +12yrs)
• Significant experience in cybersecurity, with strong hands-on experience tool deployment and maintenance.
• Proficient in scripting languages (Python, PowerShell) for automation and integration
• 4 or more years of hands-on experience in enterprise IT support
• Experience working with and guiding technicians with varying skill levels and supporting end users remotely
• Experience with security tools and technologies, like SIEM, IDS/IPS, and firewalls
• Strong analytical and problem-solving skills, particularly in optimizing security workflows
• Professional, customer-oriented, and even-keeled under pressure
• Effective communicator at all levels, both written and verbal

Desired:

• Relevant Security certifications
• Significant experience with DevOps practice and tools
• Knowledge of cloud security and containerization technologies
• Cybersecurity relevant certification Security +, CEH, GPEN, OSEP, Information Systems Security Engineering Professional (ISSEP)

-

________________________________________________________________________________________

What You Can Expect:

 

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

 

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy. 

 

Your potential is limitless. So is ours.

Learn more about CACI here.

________________________________________________________________________________________

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.

The proposed salary range for this position is:

$81,300 - $170,700