CACi
Vulnerability Test Developer
Job Category: Information TechnologyTime Type: Full timeMinimum Clearance Required to Start: NoneEmployee Type: RegularPercentage of Travel Required: NoneType of Travel: None* * *
CACI is seeking a
Vulnerability Test Developer
with hands-on expertise in
Twistlock (Prisma Cloud)
to join our Tier 3 engineering team supporting the Department of Homeland Security's (DHS) biometric HART system. This role plays a key part in the ongoing security posture of critical biometric services, focusing on vulnerability detection, automated validation, and secure DevSecOps practices in a containerized, cloud-based environment. Key Responsibilities: Analyze and triage vulnerabilities reported by
Twistlock
across container images, running workloads, and host environments.
Develop and execute
automated test scripts
to validate remediation of vulnerabilities detected in infrastructure and code.
Integrate
Twistlock scans and security gates
into CI/CD pipelines (GitLab, Jenkins) for real-time detection and feedback.
Coordinate with developers, system administrators, and cybersecurity teams to implement and verify fixes.
Patch or rebuild container images based on Twistlock findings and validate successful remediation.
Track vulnerability lifecycle and remediation activities using tools like
Jira .
Generate documentation and testing evidence to support
audit readiness
and compliance reporting.
Collaborate in the use of static/dynamic analysis tools (e.g., SonarQube) to enhance secure coding practices.
Required Qualifications: 6+ years of IT experience
with a focus on vulnerability remediation or security testing.
Demonstrated expertise with
Twistlock (Prisma Cloud)
including the Vulnerability and Compliance modules.
Proficient in scripting or programming (e.g., Python, Bash, Java, or Go) to support automated testing.
Experience working in containerized environments (e.g.,
Docker ,
OpenShift ) and patching vulnerable images.
Strong understanding of
CVE management , security scoring systems (e.g., CVSS), and patch validation.
Familiarity with test frameworks such as
JUnit, Pytest, or TestNG .
Knowledge of CI/CD tools (GitLab, Jenkins) and secure DevOps best practices.
U.S. Citizenship and ability to obtain a DHS EOD clearance (required prior to start).
Preferred Qualifications: AWS or AWS GovCloud experience (certifications a plus).
Experience with log and alert analysis tools (e.g.,
Splunk ) to identify anomalies.
Familiarity with
SonarQube ,
CyberArk , or other security tools.
Bachelors degree in Computer Science, Engineering, Cybersecurity, or a related field.
Technologies Youll Work With: AWS GovCloud, GitLab, Jenkins, Twistlock (Prisma Cloud), Docker, OpenShift, Ansible, PostgreSQL, Java, Golang, SonarQube, Splunk
-
________________________________________________________________________________________ What You Can Expect: A culture of integrity. At CACI, we place character and innovation at the center of everything we do. As a valued team member, youll be part of a high-performing group dedicated to our customers missions and driven by a higher purpose to ensure the safety of our nation. An environment of trust. CACI values the unique contributions that every employee brings to our company and our customers - every day. Youll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality. A focus on continuous growth. Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground in your career and in our legacy. Your potential is limitless.
So is ours. Learn more about CACI here. ________________________________________________________________________________________ Pay Range : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn morehere. Since this position can be worked in more than one location, the range shown is the national average for the position. The proposed salary range for this position is: $53,100-$106,300
CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic. #J-18808-Ljbffr
CACI is seeking a
Vulnerability Test Developer
with hands-on expertise in
Twistlock (Prisma Cloud)
to join our Tier 3 engineering team supporting the Department of Homeland Security's (DHS) biometric HART system. This role plays a key part in the ongoing security posture of critical biometric services, focusing on vulnerability detection, automated validation, and secure DevSecOps practices in a containerized, cloud-based environment. Key Responsibilities: Analyze and triage vulnerabilities reported by
Twistlock
across container images, running workloads, and host environments.
Develop and execute
automated test scripts
to validate remediation of vulnerabilities detected in infrastructure and code.
Integrate
Twistlock scans and security gates
into CI/CD pipelines (GitLab, Jenkins) for real-time detection and feedback.
Coordinate with developers, system administrators, and cybersecurity teams to implement and verify fixes.
Patch or rebuild container images based on Twistlock findings and validate successful remediation.
Track vulnerability lifecycle and remediation activities using tools like
Jira .
Generate documentation and testing evidence to support
audit readiness
and compliance reporting.
Collaborate in the use of static/dynamic analysis tools (e.g., SonarQube) to enhance secure coding practices.
Required Qualifications: 6+ years of IT experience
with a focus on vulnerability remediation or security testing.
Demonstrated expertise with
Twistlock (Prisma Cloud)
including the Vulnerability and Compliance modules.
Proficient in scripting or programming (e.g., Python, Bash, Java, or Go) to support automated testing.
Experience working in containerized environments (e.g.,
Docker ,
OpenShift ) and patching vulnerable images.
Strong understanding of
CVE management , security scoring systems (e.g., CVSS), and patch validation.
Familiarity with test frameworks such as
JUnit, Pytest, or TestNG .
Knowledge of CI/CD tools (GitLab, Jenkins) and secure DevOps best practices.
U.S. Citizenship and ability to obtain a DHS EOD clearance (required prior to start).
Preferred Qualifications: AWS or AWS GovCloud experience (certifications a plus).
Experience with log and alert analysis tools (e.g.,
Splunk ) to identify anomalies.
Familiarity with
SonarQube ,
CyberArk , or other security tools.
Bachelors degree in Computer Science, Engineering, Cybersecurity, or a related field.
Technologies Youll Work With: AWS GovCloud, GitLab, Jenkins, Twistlock (Prisma Cloud), Docker, OpenShift, Ansible, PostgreSQL, Java, Golang, SonarQube, Splunk
-
________________________________________________________________________________________ What You Can Expect: A culture of integrity. At CACI, we place character and innovation at the center of everything we do. As a valued team member, youll be part of a high-performing group dedicated to our customers missions and driven by a higher purpose to ensure the safety of our nation. An environment of trust. CACI values the unique contributions that every employee brings to our company and our customers - every day. Youll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality. A focus on continuous growth. Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground in your career and in our legacy. Your potential is limitless.
So is ours. Learn more about CACI here. ________________________________________________________________________________________ Pay Range : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn morehere. Since this position can be worked in more than one location, the range shown is the national average for the position. The proposed salary range for this position is: $53,100-$106,300
CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic. #J-18808-Ljbffr