Cyber Data Analytics Engineer
Role details
Job location
Tech stack
Job description
A Cyber Data Analysis Engineer designs, builds, and maintains the enterprise environment for collecting, storing, and displaying data that supports cybersecurity efforts. In this role, you'll work with on-premise and cloud systems, as well as various software products, to collect log data from multiple government agencies in compliance with policies, ensuring it is stored for easy retrieval. You should be motivated, detail-oriented, teachable, willing to share knowledge, manage time well, and understand the importance of documentation. Strong listening, speaking, note-taking skills, and the ability to work with a team are essential., * Help customers send their log data through one or more enterprise networks to a specific destination.
- Design, build, and maintain log data collection pipelines consisting of products like Cribl, ArcSight, Kafka, various AWS products, Linux servers, and Microsoft servers.
- Design, build, and maintain log data management environments using products such as Elasticsearch or Sentinel.
- Research and identify the physical or cloud resources needed to optimize support for specific Linux systems or hosted products.
- Troubleshoot any data flow issues from the SIEM data collection point to the SIEM or designated long-term storage destination.
- Troubleshoot any data display or data storage issues within the SIEM environment.
- Perform root cause analysis for complex issues.
- Ensure product uptime.
- Maintain appropriate application, system, and product versions according to applicable agency enterprise policies.
- Develop or improve processes using tools like scripts, Ansible, or AWS products.
- Document tasks, processes, changes, and product statuses.
- Provide team training regarding tasks and products.
- Interact with internal and external customers during all project phases.
- Be aware of customer needs.
- Respond to customer inquiries in a timely manner.
- Demonstrate attention to detail.
- Some on-call including nights/weekends (very rare).
Requirements
Required:
- 2+ years Enterprise LAN networking experience
- 3+ years of Unix/Linux Server Administration or similar experience
- 2+ years of Windows Server Administration or similar experience
- 2+ years Hands-on AWS experience
- Good oral and written communications
- Good listening and comprehension
- Active Top Secret/SCI Clearance with experience working on US Government contracts.
- DOD 8570 IAT Level II and CSSP Infrastructure Support certifications (within 120 days of hire)
Desired: 1+ years of experience, in one or more of the following areas:
- WAN networking
- Elasticsearch
- Sentinel
- Kafka
- ArcSight
- Kubernetes
- Cribl
- Ansible
- Experience with one or more scripting languages: YAML, Python, Bash, and/or Ruby
- Experience using version control tools such as Git
Benefits & conditions
There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.
Since this position can be worked in more than one location, the range shown is the national average for the position.
The proposed salary range for this position is: $82,100-$172,400
