Sign Up Sign Up Log In Sign Up
This job has expired and you can't apply for it anymore. Start a new search.

Cyber Analyst (Night Shift) (P)

Job Description

CACI is currently looking for outstanding IT candidates to join our TSA IT Management, Performance Analysis, and Collaborative Technologies (IMPACT) team in the National Capital Region (NCR) and throughout the United States. CACI will provide a variety of IT services through IMPACT including cyber security, identity and access management, risk management, cloud integration and engineering, field support services, service desk, application deployment and optimization, and operations center support services.   CACI will support TSA in both classified and unclassified IT operational environments increasing availability and security for a variety of applications and systems. IMPACT services will integrate with the broader DHS mission and enhance existing Department-wide IT capabilities.

What You’ll Get to Do:

The successful candidate must be well-versed in security monitoring and response operations, cyber security tools, intrusion detection, and secured networks.  Manages security systems and analyzes potential threats and vulnerabilities to client systems. Oversees technical incident response and remediation activities for client environments. Analyzes and reviews security findings and data. Publishes reports and keeps metrics for client systems. Identifies trends and root causes of system failures or vulnerabilities. Maintains vendor and trusted partner relationships.  Develops tools for operational use and analyzes current threats to information security and systems. Candidate will be part of the Enterprise Operations Center that is operational 24/7 365 days a year.

More About the Role:

  • Responsible for security monitoring across TSA Infrastructure
  • Responsible for executing the cyber security monitoring and response methodology in accordance with TSA infrastructure program requirements
  • Responsible for implementing and applying technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access
  • Provide security support of Network Security Systems
    • Firewalls
    • Intrusion Detection
    • Proxy Server Web Content Filter
    • VPN Concentrator
    • Anti-Virus/Malware Management
    • Host Intrusion Detection
    • Endpoint Encryption
    • Security Event Logging
  • Coordinate response to detected anomalies or incidents through by maintaining network device and information security incident, damage and threat assessment programs
  • Investigate network device and information security incidents to determine root cause and remediation efforts
  • Support Vulnerability Scanning Assessments by identifying vulnerabilities or anomalies, providing mitigation, and associated reports
  • Support measurement and SLRs defined by the TSA Infrastructure Cyber Security Monitoring Response program
  • Provide intrusion support to high technology investigations in the form of network assessments
  • Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities
  • Brief senior level internal and external customers on technical adherence to security controls as part of the Cyber Security Monitoring and Response program
  • Coordinate with Cyber SOC to provide Cyber Security Monitoring and Response reports

You’ll Bring These Qualifications:

  • Must be a “hands-on” engineer with a well-developed understanding of Security Hardening guides, Vulnerability Assessment tools and methods, Security Content and Automation Protocol (SCAP), Security Monitoring and Response tools and procedures
  • Well-developed understanding of Defensive (and Offensive) Cybersecurity technologies, e.g. Next Generation Firewall (NGFW), Intrusion Prevention System (IPS), Content Filtering devices and proxies (Web and Email), Data Loss Prevention (DLP), Security Intrusion and Event Monitoring (SIEM), etc.
  • Understands the structure and functionality of COTS applications (e.g., Security Automation & Orchestration platforms, Splunk, etc.)
  • Understands Python programming language
  • Ability to obtain a DHS Entrance on Duty (EOD)
  • Detail oriented
  • Flexible – The environment is highly dynamic. You will be expected to keep up with the changing environment while ensuring a high level of operational effectiveness
  • Team Player – This role is part of a much larger team
  • Typically has a University Degree (BA/BS) or equivalent experience
  • Minimum of 7 years related work experience
  • There is no clearance requirement to begin employment. However, as a requirement of continued employment in this position you will be required to obtain a DHS/EOD clearance.

These Qualifications Would be Nice to Have:

  • Relevant DHS focused experience

What We Can Offer You:

  • We’ve been named a Best Place to Work by the Washington Post.
  • Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
  • We offer competitive benefits and learning and development opportunities.
  • We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
  • For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.


Job Location



CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.

Company Name:
Security Clearance:
Chantilly, Virginia
United States
Not Specified
Job Number:

Send me email alerts for similar jobs