Senior Security Technical Implementation Guide (STIG) Analyst Job Category: Information Technology Time Type: Full time Minimum Clearance Required to Start: Secret Employee Type: Regular Percentage of Travel Required: Up to 10% Type of Travel: Continental US * * * **The Opportunity:** The STIG Analyst will play a critical role in the EITaaS (Enterprise IT as a Service) program by identifying, tracking, reporting, and mitigating STIG findings for the Department of the Air Force. This position is responsible for documenting detailed action plans, creating custom STIG reports for Air Force bases, and providing specific remediation guidance for both Enterprise-managed and base-managed STIGs. The role focuses on unclassified systems and aims to enhance the overall security posture of Air Force IT infrastructure. **Responsibilities:** + **STIG Report Review:** + Conduct monthly reviews of Tenable and SteelCloud STIG reports. + Analyze STIG data to remediation actions and identify responsible parties to conduct those actions. + Review updates to DISA STIGs when new ones are published. + **Action Plan Documentation:** + Document comprehensive action plans for identified STIGs. + Prioritize STIGs based on severity, potential impact, and exploitability. + **Custom Report Creation:** + Develop and maintain custom STIG reports tailored for individual Air Force bases. + Clearly communicate which STIGs will be remediated by the Enterprise and the expected timelines. + **Remediation Guidance:** + Provide specific, actionable feedback to Air Force bases and leadership on how to remediate STIGs they are responsible for. + Ensure recommendations are practical, aligned with Air Force policies, and feasible within the base’s resource constraints. + **Collaboration and Communication:** + Work closely with base IT teams, Enterprise security teams, and other stakeholders to ensure effective STIG management. + Participate in regular meetings and briefings to discuss STIG trends, remediation progress, and emerging threats. + Engage with the Cyber Security Dashboard team to identify improvements to automated messaging regarding STIGs. + **Continuous Improvement:** + Stay current with the latest STIG trends, threat intelligence, and best practices in STIG management. + Recommend process improvements and tool enhancements to streamline STIG assessment and remediation efforts. **Qualifications:** _Required:_ + 10+ Years of relevant experience (Bachelor’s Degree in applicable field may be substituted for 5 years of experience). + Security+ certification (or equivalent) + Minimum of 3 years of experience in STIG management or a related cybersecurity role. + Experience with Tenable or similar STIG scanning tools. + Familiarity with Air Force IT systems and security protocols is a plus. + Working Knowledge of Excel and pivot tables. + Experience with STIG Viewer and CLK files. + Strong analytical and problem-solving skills. + Excellent written and verbal communication skills. + Ability to work independently and as part of a team. + Detail-oriented with strong organizational skills. _Desired:_ + Experience in creating and managing custom STIG reports. + Knowledge of Air Force or DoD security standards and regulations. + Proven track record of successful STIG remediation projects. - **________________________________________________________________________________________** **What You Can Expect:** **A culture of integrity.** At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation. **An environment of trust.** CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality. **A focus on continuous growth.** Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy. **Your potential is limitless.** So is ours. Learn more about CACI here. (https://careers.caci.com/global/en/life-at-caci) **________________________________________________________________________________________** **Pay Range** : There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here (https://careers.caci.com/global/en/employee-benefits) . Since this position can be worked in more than one location, the range shown is the national average for the position. The proposed salary range for this position is: $75,200-$158,100 _CACI is_ _an Equal Opportunity Employer._ _All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any_ _other protected characteristic._