"Alerted.org

Information Assurance III - Audit Support Services

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: TS/SCI

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Local

* * *

The Opportunity:

Reporting directly to the Chief for Cyber Readiness, you will provide audit support that manages NGA’s preparation for, execution of, and response to external cyber audits such as Command Cyber Operational Readiness Inspection (CCORI), Command Cyber Readiness Inspection (CCRI), Cybersecurity Service Provider (CSSP), Federal Information Security Management Act (FISMA), and Federal Information Systems Controls Audit Manual (FISCAM) audits. This includes, but is not limited to, aggregating documents and artifacts, securing the facilities and infrastructure necessary to house auditors and meetings, developing presentations, briefs, and other products as needed to brief stakeholders on audit readiness status, coordinating audit activities across the NGA enterprise, and conducting routine internal audit assessments to ensure a continuous level of audit readiness. Candidates performing audit support services shall have or obtain within six months of start a certification that is compliant with DoD 8140.01 and DoD 8570.01-M 1040 IAT Level II and CSSP Auditor.

Responsibilities:

+ Ensure the Cybersecurity Operation Cell (CSOC) is prepared to successfully pass inspections and audits at all times; this includes but is not limited to identifying the audit criteria for CCRI/CCORI, FISMA, FISCAM, and CSSP audits.

+ Review regulations, directives, guidance, grading criteria, regulations, and other documents and products as required to identify applicable cybersecurity standards and inspection criteria;

+ Perform self-assessments of CSOC services to identify deficiencies, gaps, or other issues and provide remediation recommendations to the Chief of Cyber Readiness.

+ Coordinate and collaborate with other Contracts, Government entities, and activities to identify and remediate any findings outside the direct control of TCS staff.

+ As required, provide status briefings and reports to the Government on the status of findings and remediation status.

+ Regularly attend meetings held both internally and community-wide

+ Develop, update, and maintain dashboards, charts, documents, reports, and other products as required to accurately depict NGA’s audit readiness.

+ Provide input to the Weekly CSOC Status Report.

+ Coordinate and collaborate with any internal or external stakeholders (government and contractor) as needed or directed by the government in support of this service.

Qualifications:

_Required:_

+ Considerable experience preparing organizations for CCRI/CCORI, CSSP, and FISMA audits

+ Strong understanding of the NIST Cybersecurity Framework

+ Working knowledge of DOD Cybersecurity Services Evaluator Scoring Metrics (ESM) V.10

+ Working knowledge of DoDIN Inspection Coordination Guides

+ Working knowledge of DoDIN Inspection Pre-Deployment Checklists

+ Working knowledge of the areas of CCORI to include, but not limited to, DCO-IDM effectiveness, Traditional Security STIG checks, Contributing Factors, and CND Directive scoring

+ A minimum of 6 years of demonstrated experience supporting an IC or DoD agency in an auditor role.

+ Strong understanding of cybersecurity compliance policy, governance, programs, processes, and metrics.

+ Excellent verbal and writing skills with the ability to write clear and concise assessment reports

+ Demonstrated experience providing briefings to an executive audience.

+ IAT Level II certified

+ Willingness to obtain CSSP Auditor certification within 6 months of joining the team

_Desired:_

+ ISACA CISA Certified

+ IAT Level III Certified

-

________________________________________________________________________________________

What You Can Expect:

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.

**Your potential is limitless.** So is ours.

Learn more about CACI here. (https://careers.caci.com/global/en/life-at-caci)

________________________________________________________________________________________

**Pay Range** : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here (https://careers.caci.com/global/en/employee-benefits) .

The proposed salary range for this position is:

$103,800 - $218,100

_CACI is_ _an Equal Opportunity Employer._ _All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any_ _other protected characteristic._