Cybersecurity Analyst Senior
General Dynamics Information Technology, Bossier City, LA, United States
We are
GDIT.
We support and secure some of the most complex government, defense, and intelligence projects across the country. At
GDIT,
cyber security is not just a singular part of our mission—it connects every one of us because it’s embedded into every aspect of what we do.
GDIT’s Technology Shared Services (TSS)
is your place! You make it your own by bringing your ideas and unique perspective to our culture. By owning your opportunity at GDIT, you are helping us ensure today is safe and tomorrow is smarter.
At
GDIT,
people are our differentiators. As a
Cybersecurity Analyst Senior
supporting
the Dept. of Education , you will be trusted to design and develop new systems, applications, and solutions for
GDIT’s
external customer’s enterprise-wide cyber systems and networks.
MEANINGFUL WORK AND PERSONAL IMPACT As a
Cybersecurity Analyst Senior , the work you’ll do at
GDIT
will be impactful to the mission of the
Department of Education . You will play a crucial role via the following responsibilities:
Design and implement behavioral-based detections mapped to the MITRE ATT&CK framework.
Response and investigation of reported security vulnerabilities and incidents
Involvement in SDLC through design, development, testing, and implementation phases
Pivot from raw Indicators of Compromise (IoCs) to Indicators of Behavior (IoBs) based on current threat intelligence
Development of security policies, processes, standards, and road maps
Implementation of comprehensive security controls consistent with risk
Development of scripting and basic programming
Management of application deployment and security architecture
Involvement in subject area tools and technologies
Monitoring and reporting on call volumes, alarm responses, and incident reports to ensure appropriate levels of service are met
Support of annual updates of the incident response concept of operations document
Support of annual incident response tabletop exercises
Membership in a 24x7x365 team delivering real time proactive monitoring and maintenance of supported security tools and associated rules and signatures
Identification and response to incidents to prevent or limit damage to assets, and report incidents
Detection and analysis of incidents, coordinates activities with other stakeholders for containing, eradicating, and recovering from incidents
Execute structured hypothesis-driven threat hunting to identify undetected malicious activity that bypasses automated controls.
Development of advanced analytics and countermeasures to protect critical assets
Act as a Technical Mentor for Tier 1 and Tier 2 analysts, conducting "over-the-shoulder" coaching and post-incident de-briefs.
Support for the production and maintenance standard operational processes and procedures and playbooks for use by all shift personnel
Involvement in enterprise-wide management of security incidents and managed network space to detect, respond, and report all computer related incidents, including daily monitoring of information systems, vulnerability remediation, intrusion detection, log reviews, and malware tracking
Assessment, identification, and remediation of issues of the individuals and/or systems affected
Partner with the XSOAR Engineer to translate manual investigative logic into automated playbooks.
Staying up to date with current attack methods and characteristics in order to identify threats and advise on prevention, mitigation, and remediation
Performance of other tasks consistent with the goals and objectives of the department/contract
WHAT YOU’LL NEED TO SUCCEED Bring your cyber expertise and drive for innovation to GDIT.
Technical Training, Certification(s) or Degree
3 or more years years of related experience, including at least 1 or more years of experience writing threat reports and other management-level communications
An ability to obtain and maintain a Public Trust
Louisiana Residency; living within a commutable distance (approximately 60 mile radius) of the Bossier City facility
U.S. Citizenship
REQUIRED SKILLS
Experience with Incident Response Team (IR/IRT) troubleshooting, root cause analysis, and remediation verification
Knowledge of Identity Management - ICAM/IDAM and authorization, least privilege, and reducing unauthorized elevated access
Firewall understanding to include basic networking, sub-netting, IDS, NAT, and ACL's
Exposure to Penetration Test Response and Remediation
Network Security and SIEM tool experience (Splunk, et al.)
Working knowledge of Nessus
Understanding of continuous integration / continuous delivery (CI/CD) and DevSecOps
Experience writing threat reports and other management level communications
Ability to prepare and provide a daily security briefing to customers
Ability to support a flexible work schedule and handle on-call duties when required
Ability to learn the following technologies: ServiceNow (ticketing and reporting), Linux, Windows, Active Directory, Tenable, Palo Alto, ForeScout CounterAct, Microsoft Purview, and Microsoft Defender for Endpoint
GDIT IS YOUR PLACE At GDIT, the mission is our purpose, and our people are at the center of everything we do.
Growth:
AI-powered career tool that identifies career steps and learning opportunities
Support:
An internal mobility team focused on helping you achieve your career goals
Rewards:
Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
Flexibility:
Full-flex work week to own your priorities at work and at home
Community:
Award-winning culture of innovation and a military-friendly workplace
OWN YOUR OPPORTUNITY Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.
#J-18808-Ljbffr
GDIT.
We support and secure some of the most complex government, defense, and intelligence projects across the country. At
GDIT,
cyber security is not just a singular part of our mission—it connects every one of us because it’s embedded into every aspect of what we do.
GDIT’s Technology Shared Services (TSS)
is your place! You make it your own by bringing your ideas and unique perspective to our culture. By owning your opportunity at GDIT, you are helping us ensure today is safe and tomorrow is smarter.
At
GDIT,
people are our differentiators. As a
Cybersecurity Analyst Senior
supporting
the Dept. of Education , you will be trusted to design and develop new systems, applications, and solutions for
GDIT’s
external customer’s enterprise-wide cyber systems and networks.
MEANINGFUL WORK AND PERSONAL IMPACT As a
Cybersecurity Analyst Senior , the work you’ll do at
GDIT
will be impactful to the mission of the
Department of Education . You will play a crucial role via the following responsibilities:
Design and implement behavioral-based detections mapped to the MITRE ATT&CK framework.
Response and investigation of reported security vulnerabilities and incidents
Involvement in SDLC through design, development, testing, and implementation phases
Pivot from raw Indicators of Compromise (IoCs) to Indicators of Behavior (IoBs) based on current threat intelligence
Development of security policies, processes, standards, and road maps
Implementation of comprehensive security controls consistent with risk
Development of scripting and basic programming
Management of application deployment and security architecture
Involvement in subject area tools and technologies
Monitoring and reporting on call volumes, alarm responses, and incident reports to ensure appropriate levels of service are met
Support of annual updates of the incident response concept of operations document
Support of annual incident response tabletop exercises
Membership in a 24x7x365 team delivering real time proactive monitoring and maintenance of supported security tools and associated rules and signatures
Identification and response to incidents to prevent or limit damage to assets, and report incidents
Detection and analysis of incidents, coordinates activities with other stakeholders for containing, eradicating, and recovering from incidents
Execute structured hypothesis-driven threat hunting to identify undetected malicious activity that bypasses automated controls.
Development of advanced analytics and countermeasures to protect critical assets
Act as a Technical Mentor for Tier 1 and Tier 2 analysts, conducting "over-the-shoulder" coaching and post-incident de-briefs.
Support for the production and maintenance standard operational processes and procedures and playbooks for use by all shift personnel
Involvement in enterprise-wide management of security incidents and managed network space to detect, respond, and report all computer related incidents, including daily monitoring of information systems, vulnerability remediation, intrusion detection, log reviews, and malware tracking
Assessment, identification, and remediation of issues of the individuals and/or systems affected
Partner with the XSOAR Engineer to translate manual investigative logic into automated playbooks.
Staying up to date with current attack methods and characteristics in order to identify threats and advise on prevention, mitigation, and remediation
Performance of other tasks consistent with the goals and objectives of the department/contract
WHAT YOU’LL NEED TO SUCCEED Bring your cyber expertise and drive for innovation to GDIT.
Technical Training, Certification(s) or Degree
3 or more years years of related experience, including at least 1 or more years of experience writing threat reports and other management-level communications
An ability to obtain and maintain a Public Trust
Louisiana Residency; living within a commutable distance (approximately 60 mile radius) of the Bossier City facility
U.S. Citizenship
REQUIRED SKILLS
Experience with Incident Response Team (IR/IRT) troubleshooting, root cause analysis, and remediation verification
Knowledge of Identity Management - ICAM/IDAM and authorization, least privilege, and reducing unauthorized elevated access
Firewall understanding to include basic networking, sub-netting, IDS, NAT, and ACL's
Exposure to Penetration Test Response and Remediation
Network Security and SIEM tool experience (Splunk, et al.)
Working knowledge of Nessus
Understanding of continuous integration / continuous delivery (CI/CD) and DevSecOps
Experience writing threat reports and other management level communications
Ability to prepare and provide a daily security briefing to customers
Ability to support a flexible work schedule and handle on-call duties when required
Ability to learn the following technologies: ServiceNow (ticketing and reporting), Linux, Windows, Active Directory, Tenable, Palo Alto, ForeScout CounterAct, Microsoft Purview, and Microsoft Defender for Endpoint
GDIT IS YOUR PLACE At GDIT, the mission is our purpose, and our people are at the center of everything we do.
Growth:
AI-powered career tool that identifies career steps and learning opportunities
Support:
An internal mobility team focused on helping you achieve your career goals
Rewards:
Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
Flexibility:
Full-flex work week to own your priorities at work and at home
Community:
Award-winning culture of innovation and a military-friendly workplace
OWN YOUR OPPORTUNITY Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.
#J-18808-Ljbffr