The Opportunity:
CACI is seeking an experienced Cyber Risk and IT Compliance professional to join our IT Assurance and Compliance Team within the Office of Enterprise Services. As an Information Assurance and Compliance Analyst, you will play a key role in supporting the organization’s compliance posture by assessing internal controls, validating adherence to regulatory and policy requirements, coordinating audits, and driving remediation activities with technical teams across multiple compliance frameworks (including SOX, ISO 27001, and NIST 800 171). The analyst partners closely with cybersecurity, infrastructure, applications, and leadership teams to ensure that technology processes meet both internal and external standards.
Responsibilities:
Coordinate, facilitate, and support IT SOX compliance activities as the primary focus of the role, including walkthroughs, evidence collection, ITGC testing support, remediation tracking, and audit readiness.
Support internal and external IT SOX audits, ISO 27001 internal assessments, and special audits, as well as third‑party compliance assessments for IT‑relevant services (e.g., NIST SP 800‑
171, CMMC) as needed.Monitor remediation and corrective action plans across Corporate and program enclaves, ensuring timely and complete resolution of SOX findings and broader compliance issues.
Develop, maintain, and improve compliance documentation and guidance, including system security plans, policies, procedures, and control libraries.
Communicate and collaborate with IT teams to strengthen SOX control performance, improve security compliance, and support a consistent, well‑governed control environment.
Build and maintain strong working relationships across IT, cybersecurity, infrastructure, and business stakeholders at all organizational levels.
Assist with IT compliance and assurance special projects as required, including process maturity initiatives and control automation efforts.
Research and stay current on evolving IT regulatory requirements—particularly SOX and SEC requirements—while gaining exposure to cybersecurity frameworks (NIST 800‑X), DFARS, and CMMC regulations.
Maintain a continuous learning mindset as technologies, regulations, and compliance frameworks evolve.
Qualifications:
Required:Develop, maintain, and improve compliance documentation and guidance, including system security plans, policies, procedures, and control libraries.
Communicate and collaborate with IT teams to strengthen SOX control performance, improve security compliance, and support a consistent, well
Bachelor’s degree in Auditing, Management Information Systems, Information Assurance, Cybersecurity or related area.
2+ years of Information Technology Auditing or Consulting work experience.
Experience leading, coaching and training others as a team leader, or formal supervisor experience.
Experience with Sarbanes Oxley (SOX), COSO, CoBIT, DFARS 252.204-7012, ISO 27001, and NIST SP800-171.
Experience leveraging auditing principles and methods to evaluate policies, processes, and systems to identify risks and control gaps.
Experience documenting, understanding, and evaluating IT governance and risk management concepts and IT general controls and practices, such as IT infrastructure, cybersecurity, change management, and application control processes.
Ability to identify risks and propose feasible and effective solutions, and document and communicate findings and recommendations to management.
Clear articulation and exceptional written and verbal communication skills.
Strong people skills and ability to work collaboratively and cooperatively with external auditors/assessors and employees irrespective of their status in the organization.
Strong organizational and project management skills, including ability to multi-task with shifting deadlines.
Ability to work independently, with minimal direction in a complex environment.
Desired:
CIA, CISA, CRISC, ISO 27001 and other certifications
Experience in a regulated industry such as Government Contracting
Experience supporting IT SOX programs end to end (walkthroughs, testing coordination, evidence requests, deficiency analysis, remediation validation).
Experience using ServiceNow IRM or compliance management
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
An environment of trust.
CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.
Pay Range:
There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.
The proposed salary range for this position is:
$67,800 - $142,200Skills Required
- Bachelor's degree in Auditing, Management Information Systems, Information Assurance, Cybersecurity or related area.
- 2+ years of Information Technology Auditing or Consulting work experience.
- Experience with Sarbanes Oxley (SOX), ISO 27001, and NIST SP800-171.
- Experience documenting IT governance and risk management concepts.
- Clear articulation and exceptional written and verbal communication skills.
CACI International Inc Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about CACI International Inc and has not been reviewed or approved by CACI International Inc.
-
Healthcare Strength — Pay is supported by a broad set of health-plan options across multiple national carriers, with telemedicine and tax-advantaged accounts included. Dental and vision choices are also described as multi-option, which strengthens overall coverage breadth.
-
Leave & Time Off Breadth — Flexible Time Off is available for many salaried-exempt roles, while hourly roles accrue PTO, creating multiple time-off pathways by employment class. Paid disability coverage, fixed holidays, and paid leave programs (including parental leave and other leave types) further round out time-off and leave coverage.
-
Retirement Support — Retirement support includes a 401(k) match structure described as 50% up to 8% of pay (effective 4%) and an Employee Stock Purchase Plan with a discount. Tuition reimbursement and certification support also add to the overall rewards package that complements core retirement benefits.
CACI International Inc Insights
What We Do
CACI’s approximately 23,000 talented employees are vigilant in providing the unique expertise and distinctive technology that address our customers’ greatest enterprise and mission challenges. Our culture of good character, innovation, and excellence drives our success and earns us recognition as a Fortune World's Most Admired Company. As a member of the Fortune 1000 Largest Companies, the Russell 1000 Index, and the S&P MidCap 400 Index, we consistently deliver strong shareholder value. Visit us at www.caci.com.
.png){kind=logo}
