Cyber Security Operations Specialist - CSOC (Tiers 1, 2, 3)

Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: TS/SCI
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Local

Are you passionate about working with leading-edge technologies, on high-performing teams, and have a desire to learn valuable skills and experiences that will propel your career?

CACI's Transport & Cybersecurity Services (TCS) program is actively hiring TS/SCI cleared Cyber Security Operations Specialists to join our CSOC Tiered Services team! We are seeking mission-focused individuals to provide various levels of CSOC services (Tier 1, Tier 2, and Tier 3). These positions can be based out of either Springfield, VA (or) St. Louis, MO.

What You’ll Get to Do:

Our team of Cyber Security Operations Specialists provides CSOC Tiered Services, which include 24x7x365 coordination, execution, and implementation of all actions required for the containment, eradication, and recovery measures for events and incidents.

More About the Roles:

CSOC Tier 1

Services include recording, investigating, and processing events received via walk-ups, phone calls, email, chat, web, cybersecurity tools, and enterprise tools.

• DoD 8570 IAT Level II required (current); must be able to successfully obtain/maintain CSSP Analyst certification within 120 days of start date.

CSOC Tier 2

Services include malware and implant analysis, and forensic artifact handling and analysis. While not in a period of incident response, you will conduct continuous exercises and dry runs to improve response outcomes in the event of a cyber incident.

• DoD 8570 IAT Level II required (current); must be able to successfully obtain/maintain CSSP Analyst certification within 120 days of start date.

CSOC Tier 3

Services include incident handling/incident response, malware analysis and signature development, and forensic artifact handling and analysis.

• DoD 8570 IAT Level III required (current); must be able to successfully obtain/maintain CSSP Incident Responder certification within 120 days of start date.

You’ll Bring These Qualifications:

• TS/SCI (current); with the ability to successfully pass/maintain a Government Polygraph (post-hire)
• BA/BS Degree and typically between Two (2) to Six (6) years of relative work experience. Additional experience may be considered instead of a degree.
• Ability to work One (1) or more of Five (5) work shifts
• TCP/IP; Protocol analyzers; Network protocols; Cyber Attack Lifecycle; Mitre Attack framework; Obfuscation techniques (i.e. base64; rot13; XOR; URL encoding; etc.); Utilizing SIEM for event analysis

This position is contingent on funding and may not be filled immediately. However, this position is representative of positions within CACI that are consistently available. Individuals who apply may also be considered for other positions at CACI.

Pay Range: The proposed salary range for this position is: $68,400-$143,700

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.