Own your opportunity to work with the largest government agency in the nation. Make an impact by advancing the Department of Defense’s mission to keep our country safe and secure.
Job DescriptionWe are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that’s important. GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day. We think. We act. We deliver. There is no challenge we can’t turn into opportunity.
At GDIT, people are our differentiator. We are seeking a Systems Operation Center Cybersecurity Analyst to provide timely and professional cyber support. To be successful in this position you need to be collaborative and willing to work within a team. While you will need to be a self-starter, completing tasks on your own, working together is critical in this role. You will be interfacing with users and senior staff. Therefore, you should be articulate in your communications. You will need to explain technical intricacies to end users in a way that is easily understood. You will need to maintain a high-level customer service focus, exhibiting expertise, courtesy, timeliness, and professionalism. Provide technical support and troubleshooting services for incoming queries and issues related to computer systems, software, and hardware and assist the Service Desk Manager as needed.
This is an IT Service Management contract in support of the operation, modernization, expansion, and further evolution of the ARNG’s global Information Technology (IT) services including networking, compute, storage, infrastructure, applications, hosting, and program management services. The GECOS program supports the ARNG enterprise IT infrastructure, its Wide Area Network (WAN), authentication and directory services, cybersecurity, application hosting, and associated services. GECOS uses ITIL best practices framework as the basis for IT Service Management (ITSM) model.
The work includes the following:
Performs forensic analysis of digital information and gathers and handles evidence. Identifies network computer intrusion evidence and perpetrators.
Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events.
Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, including access management for hardware, firmware, and software.
Ensures that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards.
Identifies security risks and exposures, determines the causes of security violations, and suggests procedures to halt future incidents and improve security.
Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware, and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks, or leaks.
Correlates data feeds and logs to analyze with known threats and incidents, build, implement, and refine event correlation rules, logic, content, and analysis techniques that will enable SOC personnel to correlate events and security incidents with specific sources, such as individuals, threat actors, IT systems, devices, and IP addresses.
Responsible for performing correlation activities and trend analysis to discover attack patterns and assess the risks and potential exposure of assets and develop and enhance correlation rules, logic, and analysis techniques for associating data. Provides guidance to junior-level staff, as necessary.
May coach and provide guidance to less-experienced professionals.
May serve as a team or task lead
The Cybersecurity Analyst will:
Ensure cybersecurity inspections, tests, assessments, and reviews are synchronized and coordinated with all stakeholders.
Assists in the implementation, management, and administration of the organization’s structure and workflow within eMASS.
Conduct reviews of cybersecurity information papers and plans with CYBERCOM, ARCYBER, Air National Guard Cyber, National Security Agency (NSA), Federal Bureau of Investigations (FBI), Department of Justice (DOJ), and Department of Homeland Security (DHS).
Assists in the enforcement of the DoD Cyberspace Workforce Framework (DCWF) and cybersecurity certification program to ensure training and certification requirements are enforced, managed, and reported.
Assists ARNG with the implementation of a documented and streamlined process for reviewing, processing, and approving systems access requests to eMASS in support of the RMF.
Assists in examining the security architecture and vulnerabilities of systems in cooperation with system owners and administrators through security scans, examinations of system configurations, reviews of system design documentation, and interviews.
Support the identification, dissemination and delivery of approved policy and process documentation in support of system(s) authorization efforts through DoD, Army and NIST guidance.
WHAT YOU’LL NEED:
Education/Equivalent Training Required:
Preferred bachelor’s degree in cybersecurity, information assurance, computer science or a related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience.
Years of relevant experience:
4+ years of overall demonstrated experience in cybersecurity, information assurance or computer science.
Unique/Additional Requirements:
Excellent problem solving, analytical, and decision-making capabilities, including understanding user requirements, troubleshooting technical issues, successfully resolving issues and challenges, and developing creative solutions for process improvement.
Dependability, in that the individual is consistently at work and on time, follows instructions, responds to management direction, and solicits feedback to improve.
Must have customer service experience as this position will require candidate to engage with senior military and government leadership.
Must be able to present your ideas clearly through briefings, meetings and interaction with leadership of different skill sets.
Must be able to provide training sessions as required.
Must be able to engage with stakeholders to ensure tasks are progressing and meeting timelines.
Familiar with DoD 2875 account request processes
Familiar with ACTCS training system
Excellent communication skills
Excellent documentation skills
Strong organizational and collaborative skills
Strong teamwork and engagement as a project team member.
Ability to assimilate information rapidly, motivated to self-study new requirements.
Maintain current industry knowledge of relevant concepts, practices, and procedures.
Ability to work under time constraints.
Adapt to changes in requirements and new projects.
Maintain and upgrade certifications.
Other duties may be assigned, directed, or requested.
Certification Requirements:
Must Possess the appropriate baseline certification(s) to achieve a minimum of DoD 8570.01-M Information Assurance Technical (IAT) Level II (i.e., CompTIA Security+ CE) prior to start. Will need to obtain an additional computing environment certification (i.e., one of the CSSP sections certifications (i.e., CEH, CCNA-Security, CND, etc.) within six-months of hire based on position designation. When 8140 requirements are implemented on program/contract, employee will need to conform to 8140 certification standards.
Clearance Requirements:
Must have a minimum of an active Secret clearance at time of interview and candidate must maintain active clearance.
Work Location:
Full time onsite support at the program facility (Fairview Park, Falls Church, VA).
Shift:
BOW-N: Alt-Sat/Sun/Mon/Tue 1900-0700
Travel:
Less than 10%.
GDIT is Your Place:
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
● Rest and recharge with paid vacation and holidays
#GDITPriority