IT Audit Specialist
CACI
Job Description
Job Title: IT Audit Specialist
Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: None
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Local*
The Opportunity
CACI is currently looking for a Security IT Audit Specialist with agile methodology experience to join our BEAGLE (Border Enforcement Applications for Government Leading-Edge Information Technology) Agile Solution Factory (ASF) Team supporting Customs and Border Protection (CBP) client located in Northern Virginia! Join this passionate team of industry-leading individuals supporting the best practices in Agile Software Development for the Department of Homeland Security (DHS).
The Security IT Audit Specialist with both strong application and network security delivery skills will need to have a deep technical understanding of Cybersecurity and financial audit practices. They will work as an integral part of a highly productive team of seasoned technical professionals who thrive on supporting our customer's mission and growth objectives– responsible for designing, developing, leading, and implementing secure application and infrastructure capabilities for a variety of legacy and modernized systems and applications.
They will work in close collaboration with software developers/engineers, quality assurance engineers, stakeholders, and end users within Agile Engineering processes. They must have a working knowledge of enterprise class information assurance requirements, FISCAM, and network security and survivability.
They will also be responsible for supporting development of a spectrum of engineering artifacts that adequately, but succinctly capture system security requirements, application and network security design, and network security architecture. This position is responsible for ensuring that all assigned work activities are performed in a timely, secure, compliant and cost-effective manner while maintaining the highest quality of performance.
Responsibilities
Support implementation of the Technical Audit Sustainment Program strategy
Assist developers with understanding and meeting FISCAM compliance
Enable assurance for information security during all phases of agile system development and deployment
Help ensure information security is incorporated throughout Agile development and deployment
Support security controls for SAP and custom financial support systems
Assess system lifecycle requirements and identify potential security impacts
Assist with vulnerability scanning, security hardening, and remediation efforts
Support certification and security configuration of development environments
Collaborate with SAP Security Administrators to support separation of duties, access controls, and audit functionality
Assist with responding to auditor Requests for Information (RFIs) and assembling Provided by Client (PBC) documentation
Contribute to development of Corrective Action Plans (CAPs) in response to audit findings or Notifications for Record (NFRs)
Support evaluation of SAP GRC and other GRC tools in coordination with security administrators
Help maintain system security posture, including audit tracking, security documentation, and reaccreditation activities
Monitor approved software usage and support compliance with approved security tools and configurations
Assist CBP in maintaining compliance with OMB Circular A-123 internal control requirements
Apply information security practices in accordance with DHS and CBP security policies
You’re good at
Supporting and using security provisioning, monitoring, and compliance tools
Applying established cybersecurity principles, standards, and frameworks
Analyzing moderately complex security and compliance issues and recommending practical solutions
Supporting implementation of FISCAM, RMF, and NIST security controls
Assisting with compliance efforts tied to OMB Circular A-123
Working effectively with cross-functional Agile teams
Communicating clearly in writing and verbally with both technical and non-technical audiences
Being detail-oriented, dependable, and collaborative while continuing to grow your technical skill set
Working in a hybrid environment with an on-site presence in Ashburn, VA
Qualifications
Required:
Must be a U.S. Citizen with the ability to pass CBP background investigation, criteria will include:
3-year check for felony convictions
1-year check for illegal drug use
1-year check for misconduct such as theft or fraud
College degree (B.S., M.S.) in Computer Information Systems, Finance or a related discipline
Certifications: minimum Security+ CE or equivalent, CISSP, CISM or CISA preferred
Professional Experience: Five plus (5+) years related to technical experience with IT Financial Audit or FISCAM compliance
Must be available to work onsite in Ashburn, VA one day per week.
Desired:
Experience as SAP Security Administrator
Experience on an audit team for an IPA
Knowledge for GRC tools to enhance compliance such as Greenlight and SAP GRC
Experience as an Information System Security Officer (ISSO) for a system
What You Can Expect
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
An environment of trust.
CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.
Pay Range
There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.
The proposed salary range for this position is: $86,600 - $181,800
CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.
#J-18808-Ljbffr
Job Category: Information Technology
Time Type: Full time
Minimum Clearance Required to Start: None
Employee Type: Regular
Percentage of Travel Required: Up to 10%
Type of Travel: Local*
The Opportunity
CACI is currently looking for a Security IT Audit Specialist with agile methodology experience to join our BEAGLE (Border Enforcement Applications for Government Leading-Edge Information Technology) Agile Solution Factory (ASF) Team supporting Customs and Border Protection (CBP) client located in Northern Virginia! Join this passionate team of industry-leading individuals supporting the best practices in Agile Software Development for the Department of Homeland Security (DHS).
The Security IT Audit Specialist with both strong application and network security delivery skills will need to have a deep technical understanding of Cybersecurity and financial audit practices. They will work as an integral part of a highly productive team of seasoned technical professionals who thrive on supporting our customer's mission and growth objectives– responsible for designing, developing, leading, and implementing secure application and infrastructure capabilities for a variety of legacy and modernized systems and applications.
They will work in close collaboration with software developers/engineers, quality assurance engineers, stakeholders, and end users within Agile Engineering processes. They must have a working knowledge of enterprise class information assurance requirements, FISCAM, and network security and survivability.
They will also be responsible for supporting development of a spectrum of engineering artifacts that adequately, but succinctly capture system security requirements, application and network security design, and network security architecture. This position is responsible for ensuring that all assigned work activities are performed in a timely, secure, compliant and cost-effective manner while maintaining the highest quality of performance.
Responsibilities
Support implementation of the Technical Audit Sustainment Program strategy
Assist developers with understanding and meeting FISCAM compliance
Enable assurance for information security during all phases of agile system development and deployment
Help ensure information security is incorporated throughout Agile development and deployment
Support security controls for SAP and custom financial support systems
Assess system lifecycle requirements and identify potential security impacts
Assist with vulnerability scanning, security hardening, and remediation efforts
Support certification and security configuration of development environments
Collaborate with SAP Security Administrators to support separation of duties, access controls, and audit functionality
Assist with responding to auditor Requests for Information (RFIs) and assembling Provided by Client (PBC) documentation
Contribute to development of Corrective Action Plans (CAPs) in response to audit findings or Notifications for Record (NFRs)
Support evaluation of SAP GRC and other GRC tools in coordination with security administrators
Help maintain system security posture, including audit tracking, security documentation, and reaccreditation activities
Monitor approved software usage and support compliance with approved security tools and configurations
Assist CBP in maintaining compliance with OMB Circular A-123 internal control requirements
Apply information security practices in accordance with DHS and CBP security policies
You’re good at
Supporting and using security provisioning, monitoring, and compliance tools
Applying established cybersecurity principles, standards, and frameworks
Analyzing moderately complex security and compliance issues and recommending practical solutions
Supporting implementation of FISCAM, RMF, and NIST security controls
Assisting with compliance efforts tied to OMB Circular A-123
Working effectively with cross-functional Agile teams
Communicating clearly in writing and verbally with both technical and non-technical audiences
Being detail-oriented, dependable, and collaborative while continuing to grow your technical skill set
Working in a hybrid environment with an on-site presence in Ashburn, VA
Qualifications
Required:
Must be a U.S. Citizen with the ability to pass CBP background investigation, criteria will include:
3-year check for felony convictions
1-year check for illegal drug use
1-year check for misconduct such as theft or fraud
College degree (B.S., M.S.) in Computer Information Systems, Finance or a related discipline
Certifications: minimum Security+ CE or equivalent, CISSP, CISM or CISA preferred
Professional Experience: Five plus (5+) years related to technical experience with IT Financial Audit or FISCAM compliance
Must be available to work onsite in Ashburn, VA one day per week.
Desired:
Experience as SAP Security Administrator
Experience on an audit team for an IPA
Knowledge for GRC tools to enhance compliance such as Greenlight and SAP GRC
Experience as an Information System Security Officer (ISSO) for a system
What You Can Expect
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
An environment of trust.
CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.
Pay Range
There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.
The proposed salary range for this position is: $86,600 - $181,800
CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.
#J-18808-Ljbffr