CACi
Overview
IT Audit Specialist to join the BEAGLE Agile Solution Factory Team supporting CBP in Northern Virginia. The role involves security IT audit and agile software development practices, with a focus on cybersecurity, financial audit practices, and enterprise information assurance requirements in a DHS/CACI environment. The Security IT Audit Specialist will design, develop, lead, and implement secure application and infrastructure capabilities for a range of legacy and modern systems, collaborating with software developers, QA engineers, stakeholders, and end users within Agile processes. The position requires working knowledge of FISCAM, RMF, and network security and survivability to ensure timely, secure, compliant, and cost-effective delivery. Responsibilities
Serve as an Internal Audit Sustainment Team member responsible for audit readiness, sustainment, and security of custom-coded and COTS applications and databases. Deliver cybersecurity technical control implementation, configuration, and architectural solutions for customer-defined systems/software projects. Implement the Technical Audit Sustainment Program strategy and assist developers with FISCAM compliance. Enable assurance for information security during all phases of agile system development and deployment. Secure SAP and custom-designed financial support systems; assess lifecycle requirements and network security impacts. Enhance cybersecurity testing (vulnerability/hardening) and optimize the development environment certification. Coordinate with SAP security administrators on Separation of Duties, Access Controls, and audit support functionality. Interface with the CBP Independent Public Accountant (IPA) auditing the system, responding to RFIs, and delivering PBC data. Develop Corrective Action Plans (CAPs) in response to Notifications For Record (NFRs) from the IPA. Evaluate SAP GRC implementation, working with SAP Security Administrators. Architect and engineer security goals, controls, and architecture; maintain posture and compliance with FISCAM and RMF. Continuously evaluate and implement best practices and tools to enhance defense-in-depth; monitor software usage and approved security-enabled tools. Contribute to achieving team objectives and performance metrics; support internal controls per OMB Circular A-123. Apply information security in accordance with National/DHS/CBP directives and utilize provisioning and monitoring tools for process improvement. Apply advanced IA principles, solve unusually complex problems creatively, and assess Governance, Risk, and Compliance tools (e.g., SAP GRC, Greenlight) for compliance enhancements. Implement FISCAM, RMF, and NIST security solutions; develop compliance solutions under OMB Circular No. A-123; work independently to resolve problems. Exhibit excellent written and verbal communication skills and strong collaboration within a team; maintain a responsible, self-starting work ethic. Ability to work a hybrid schedule with on-site requirement in Ashburn, VA. Qualifications
Required: U.S. Citizen with ability to pass CBP background investigation (3-year felony check, 1-year illegal drug use check, 1-year misconduct check). College degree (B.S., M.S.) in Computer Information Systems, Finance, or related discipline. Certifications: minimum Security+ CE or equivalent; CISSP, CISM, or CISA preferred. Seven plus (7+) years of IT financial audit or FISCAM compliance experience. Must be available to work onsite in Ashburn, VA one day per week. Desired: Experience as SAP Security Administrator; experience on an IPA audit team. Knowledge of GRC tools to enhance compliance (e.g., Greenlight, SAP GRC). Experience as an Information System Security Officer (ISSO) for a system. What You Can Expect
Pay range details are provided by the employer and may vary based on location, experience, and qualifications. The role offers competitive compensation, benefits, and professional development opportunities. The right candidate will join a culture of integrity, trust, and continuous growth, contributing to critical national missions. Pay Range : The proposed salary range for this position is $103,800 - $218,100. CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic. #J-18808-Ljbffr
IT Audit Specialist to join the BEAGLE Agile Solution Factory Team supporting CBP in Northern Virginia. The role involves security IT audit and agile software development practices, with a focus on cybersecurity, financial audit practices, and enterprise information assurance requirements in a DHS/CACI environment. The Security IT Audit Specialist will design, develop, lead, and implement secure application and infrastructure capabilities for a range of legacy and modern systems, collaborating with software developers, QA engineers, stakeholders, and end users within Agile processes. The position requires working knowledge of FISCAM, RMF, and network security and survivability to ensure timely, secure, compliant, and cost-effective delivery. Responsibilities
Serve as an Internal Audit Sustainment Team member responsible for audit readiness, sustainment, and security of custom-coded and COTS applications and databases. Deliver cybersecurity technical control implementation, configuration, and architectural solutions for customer-defined systems/software projects. Implement the Technical Audit Sustainment Program strategy and assist developers with FISCAM compliance. Enable assurance for information security during all phases of agile system development and deployment. Secure SAP and custom-designed financial support systems; assess lifecycle requirements and network security impacts. Enhance cybersecurity testing (vulnerability/hardening) and optimize the development environment certification. Coordinate with SAP security administrators on Separation of Duties, Access Controls, and audit support functionality. Interface with the CBP Independent Public Accountant (IPA) auditing the system, responding to RFIs, and delivering PBC data. Develop Corrective Action Plans (CAPs) in response to Notifications For Record (NFRs) from the IPA. Evaluate SAP GRC implementation, working with SAP Security Administrators. Architect and engineer security goals, controls, and architecture; maintain posture and compliance with FISCAM and RMF. Continuously evaluate and implement best practices and tools to enhance defense-in-depth; monitor software usage and approved security-enabled tools. Contribute to achieving team objectives and performance metrics; support internal controls per OMB Circular A-123. Apply information security in accordance with National/DHS/CBP directives and utilize provisioning and monitoring tools for process improvement. Apply advanced IA principles, solve unusually complex problems creatively, and assess Governance, Risk, and Compliance tools (e.g., SAP GRC, Greenlight) for compliance enhancements. Implement FISCAM, RMF, and NIST security solutions; develop compliance solutions under OMB Circular No. A-123; work independently to resolve problems. Exhibit excellent written and verbal communication skills and strong collaboration within a team; maintain a responsible, self-starting work ethic. Ability to work a hybrid schedule with on-site requirement in Ashburn, VA. Qualifications
Required: U.S. Citizen with ability to pass CBP background investigation (3-year felony check, 1-year illegal drug use check, 1-year misconduct check). College degree (B.S., M.S.) in Computer Information Systems, Finance, or related discipline. Certifications: minimum Security+ CE or equivalent; CISSP, CISM, or CISA preferred. Seven plus (7+) years of IT financial audit or FISCAM compliance experience. Must be available to work onsite in Ashburn, VA one day per week. Desired: Experience as SAP Security Administrator; experience on an IPA audit team. Knowledge of GRC tools to enhance compliance (e.g., Greenlight, SAP GRC). Experience as an Information System Security Officer (ISSO) for a system. What You Can Expect
Pay range details are provided by the employer and may vary based on location, experience, and qualifications. The role offers competitive compensation, benefits, and professional development opportunities. The right candidate will join a culture of integrity, trust, and continuous growth, contributing to critical national missions. Pay Range : The proposed salary range for this position is $103,800 - $218,100. CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic. #J-18808-Ljbffr