Own your opportunity to work with the largest government agency in the nation. Make an impact by advancing the Department of Defense’s mission to keep our country safe and secure.
Job DescriptionWe are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that’s important.
GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being rested to deliver your best every day.
We think. We act. We deliver. There is no challenge we can’t turn into opportunity. And our work depends on a CYBER SECURITY Manager joining our team to support Navy Enterprise Tactical Training Network (NETTN) activities. They shall provide cybersecurity operations in support of this effort. Support shall include vulnerability management, risk management framework assessment and authorization, network security, cybersecurity incident response, Host Base Security System support, information system auditing, patching support, cross domain solution support, cybersecurity configuration management and cybersecurity annual inspections.
RESPONSIBILITIES INCLUDE:
Determines enterprise information assurance and security standard for authentication and authorization.Develops and implements information assurance/security standards and procedures.Serves as the project manager to lead the implementation of a digital identity and multi-factor authentication effort for multiple web applicationsCoordinates, develops, and evaluates security programs for an organization.Recommends information assurance/security solutions to support customers’ requirements.Establishes and satisfies information assurance and security requirements based upon the analysis of user, policy, regulatory, and resource demands.Performs analysis, design, and development of security features for system architectures.Review and assesses current application authentication topologies and develops a recommended path forward to implement a centralized federated authentication solutionLeads the development of the design documentation associated with the to-be federated authentication topologyAssists with the development and implementation of a Zero-Trust architecture roadmapShall ensure that its cyberspace workforce (CSWF) personnel are identified, categorized, certified, qualified and/or otherwise competent for their assigned tasking IAW all applicable DoD directives, instructions, manuals and policies and updates thereto, including the most current version of SECNAV M-5239.2 and deliver a report identifying all of its certified CSWF personnel IAW CDRL A008 Cybersecurity Workforce (CSWF) Reportshall institute a scan– remediate–rescan and validation methodology covering all networked and stand-alone systems utilizing the DISA Assured Compliance Assessment Solution or other current DoD mandated toolDevelop documented Vulnerability Management procedures establishing a methodology for scan–remediate–rescan and quarterly STIG validation and maintain the procedures in IMSShall ensure all networks and systems are covered by automated or manual authenticated scans and remediate or mitigate any vulnerabilitiesScan assets on a weekly basis, at a minimum, to ensure remediation efforts are successfully implemented and perform asset discovery scans at minimum on a monthly basisShall develop documented patch management procedures establishing a methodology for patching and confirming patch managementPerform duties as assignedMinimum Requirements:
Seven (7) years of information technology experience with DoD effortsFive (5) years of managerial experience with DoD effortsExperience managing dispersed workforce in support of securing an integrated network as well as a dispersed group of networksBachelor’s degree in Computer Science, Information Systems, Software Engineering, Business, or other related discipline with 8 years of increasingly responsible and relevant experience in defining security requirements. Without a degree at least 12 years of relevant experience is requiredKnowledge of computer, communications systems, and networks that are used to support Navy and Joint training eventsFamiliarity with ISO 9000:2015 Quality Management System6+ years of hands-on cybersecurity experience, including the NIST Risk Management Framework (800-63-3), architecture, digital identity, federated authentication, and penetration testing, firewalls, encryption, security monitoring, event and anomaly analysis and intrusion detection/prevention.3+ years of hands-on experience with the development federated authentication solutions and digital identity management3+ years of hands-on experience with leading a team of Cyber Security professional3+ years’ experience in the design and implementation of SAML and Open Connect authentication methodologies Hands-On experience with the implementation of Zero-Trust principles applicable to business (web) applicationsExperience in Microsoft and Linux including Red Hat web server platformsRequired certifications in accordance with DODI-8140/8570Desired Qualifications:
Cybersecurity certifications (e.g., CISSP, CISA, CISM, CCSP, GCIH, GCIA, GSEC, OSCP, CHFI, CEH)Experience with Anti-Virus, Intrusion Detection/Protection Systems, Firewalls, Active Directory, Vulnerability Assessment tools and other security tools found in large network environments.Experience with technologies, including ADFS, Ping Federate, SAML and Open Connect Authentication, Azure or AWS cloud application experienceITIL v3 or v4 certificationActive Top Secret DOD ClearanceLocation: Hampton Roads, VAGDIT CAREERS
Opportunity Owned
Not sure this job’s the one for you? Check out our other openings at gdit.com/careers.
Do you have a friend or colleague this posting describes? Let them know about the opportunity by clicking “Share.”
GDIT IS YOUR PLACE:
● Full-flex work week to own your priorities at work
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
● Rest and recharge with paid vacation and holidays