General Dynamics Information Technology
Cybersecurity Analyst Principal
General Dynamics Information Technology, Bossier City, Louisiana, United States, 71111
Type of Requisition
Regular
Clearance Level Must Currently Possess None
Clearance Level Must Be Able to Obtain None
Public Trust/Other Required BI Full 6C (T4)
Job Family Cyber and IT Risk Management
Job Qualifications
Skills:
Cybersecurity, Information Security, Information Technology (IT)
Certifications:
None
Experience:
5+ years of related experience
US Citizenship Required:
Yes
Job Description Advance your career while impacting our national security in cyber as a
Cybersecurity Analyst Principal
at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.
MEANINGFUL WORK AND PERSONAL IMPACT As a
Cybersecurity Analyst Principal , the work you’ll do at GDIT will be impactful to the mission of the US Department of Education's Portfolio of Integrated Value-Oriented Technologies (PIVOT). You will play a crucial role via the following responsibilities:
Responsibilities
Oversee the daily operations of the SOC and plans shift activities
Works closely with Incident Management Team
Must be willing to lead major incident management process, supports Agency leadership during the activation of major/escalated incidents
Develop, author, and deliver process improvements for the SOC in order to maintain operational readiness for incident response
Monitor and report on call volumes, alarm responses, and incident reports to ensure appropriate levels of service are met
Partner with IT leadership and teams to support operational issues and prepare for potential incidents
Support annual updates of the incident response concept of operations document
Support annual incident response tabletop exercises
Lead, mentor, and coach SOC I and SOC II staff members
Work as part of a 24x7x365 team delivering real time proactive monitoring and maintenance of supported security tools and associated rules and signatures
Carry out triage on security events, coordinate incidents with Incident Management Team, IT operations, network engineering, and application teams and support the Incident Management process
Identify and respond to incidents, to prevent or limit damage to assets, and report incidents
Detect and analyze incidents, coordinate activities with other stakeholders for containing, eradicating, and recovering from incidents
Development of advanced analytics and countermeasures to protect critical assets
IDS monitoring and analysis, network traffic and log analysis, prioritization and differentiation between potential intrusion attempts, determination of false alarms, insider threat and APT detection, and malware analysis/forensics
Supports the production and maintenance standard operational processes and procedures and playbooks for use by all shift personnel
Provide enterprise-wide management of security incidents, managed network space, to detect, respond, and report all computer related incidents that includes daily monitoring of information systems, vulnerability remediation, intrusion detection, log reviews, and malware tracking
Assess, identify, and remediate of the individuals and/or systems affected
Coordinate all information security incidents complied with timeline specifics
Coordinate the development of reports from the SIEM, NIDS, and HIDS
Remain up to date with current attack methods and characteristics in order to identify threats and advise on prevention, mitigation and remediation
Perform other tasks consistent with the goals and objectives of the department/contract
Perform other duties as assigned by Senior Program Executive
Responsible to fully document assigned tickets to show all work performed in order to pass SLRs
Responsible to manage team to fully document assigned tickets to show all work performed in order to pass SLRs
WHAT YOU’LL NEED TO SUCCEED Bring your cyber expertise and drive for innovation to GDIT. The
Cybersecurity Analyst Principal
must have:
Education:
Technical Training, Certification(s) or Degree
Experience:
5+ years of related experience
Required Skills:
Required Skills
Experience composing threat reports and other management level communications
Leadership experience of teams of 5 or more
Vulnerability Management – Nessus Vulnerability Scanning
Configuration Management - STIG/SCAP compliance baselines for windows, mac, linux
Splunk SEIM / Log Aggregationexperience
Cloud Security - Familiarity with FedRAMP for IaaS, PaaS, SaaS
Experienced Incident Response Team (IR/IRT) troubleshooting, root cause analysis and remediation verification.
Knowledge of Identity Management, ICAM/IDAM and authorization, least privilege, reducing unauthorized elevated access.
Firewall Understanding including basic networking, sub-netting, IDS, NAT, ACL's
Penetration Test Response and Remediation
DevSecOps – software development lifecycle security –scanning across the lifecycle and baking in application security for developers and containers
Microsoft Defender for Endpoint experience
Preferred Skills
ServiceNow ticketing and reporting experience
Linux, Windows, and Active Directory experience
Experience with Tenable and Palo Alto network security solutions
Cloud and mobile device experience
ForeScout CounterAct, DLP solutions and Cylance AV
CISSP certification
Security Clearance Level:
Must be able to obtain a position of Public Trust with the US Department of Education
US Citizenship Required
Location:
Hybrid at GDIT's Integrated Technology Center in Bossier City, LA
GDIT IS YOUR PLACE At GDIT, the mission is our purpose, and our people are at the center of everything we do.
Growth:
AI-powered career tool that identifies career steps and learning opportunities
Support:
An internal mobility team focused on helping you achieve your career goals
Rewards:
Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
Flexibility:
Full-flex work week to own your priorities at work and at home
Community:
Award-winning culture of innovation and a military-friendly workplace
OWN YOUR OPPORTUNITY Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.
The likely salary range for this position is $102,000 - $138,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Benefits Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc
Additional Details
Scheduled Weekly Hours: 40
Travel Required: Less than 10%
Telecommuting Options: Hybrid
Work Location: USA LA Bossier City
Additional Work Locations: (none listed)
#J-18808-Ljbffr
Clearance Level Must Currently Possess None
Clearance Level Must Be Able to Obtain None
Public Trust/Other Required BI Full 6C (T4)
Job Family Cyber and IT Risk Management
Job Qualifications
Skills:
Cybersecurity, Information Security, Information Technology (IT)
Certifications:
None
Experience:
5+ years of related experience
US Citizenship Required:
Yes
Job Description Advance your career while impacting our national security in cyber as a
Cybersecurity Analyst Principal
at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.
MEANINGFUL WORK AND PERSONAL IMPACT As a
Cybersecurity Analyst Principal , the work you’ll do at GDIT will be impactful to the mission of the US Department of Education's Portfolio of Integrated Value-Oriented Technologies (PIVOT). You will play a crucial role via the following responsibilities:
Responsibilities
Oversee the daily operations of the SOC and plans shift activities
Works closely with Incident Management Team
Must be willing to lead major incident management process, supports Agency leadership during the activation of major/escalated incidents
Develop, author, and deliver process improvements for the SOC in order to maintain operational readiness for incident response
Monitor and report on call volumes, alarm responses, and incident reports to ensure appropriate levels of service are met
Partner with IT leadership and teams to support operational issues and prepare for potential incidents
Support annual updates of the incident response concept of operations document
Support annual incident response tabletop exercises
Lead, mentor, and coach SOC I and SOC II staff members
Work as part of a 24x7x365 team delivering real time proactive monitoring and maintenance of supported security tools and associated rules and signatures
Carry out triage on security events, coordinate incidents with Incident Management Team, IT operations, network engineering, and application teams and support the Incident Management process
Identify and respond to incidents, to prevent or limit damage to assets, and report incidents
Detect and analyze incidents, coordinate activities with other stakeholders for containing, eradicating, and recovering from incidents
Development of advanced analytics and countermeasures to protect critical assets
IDS monitoring and analysis, network traffic and log analysis, prioritization and differentiation between potential intrusion attempts, determination of false alarms, insider threat and APT detection, and malware analysis/forensics
Supports the production and maintenance standard operational processes and procedures and playbooks for use by all shift personnel
Provide enterprise-wide management of security incidents, managed network space, to detect, respond, and report all computer related incidents that includes daily monitoring of information systems, vulnerability remediation, intrusion detection, log reviews, and malware tracking
Assess, identify, and remediate of the individuals and/or systems affected
Coordinate all information security incidents complied with timeline specifics
Coordinate the development of reports from the SIEM, NIDS, and HIDS
Remain up to date with current attack methods and characteristics in order to identify threats and advise on prevention, mitigation and remediation
Perform other tasks consistent with the goals and objectives of the department/contract
Perform other duties as assigned by Senior Program Executive
Responsible to fully document assigned tickets to show all work performed in order to pass SLRs
Responsible to manage team to fully document assigned tickets to show all work performed in order to pass SLRs
WHAT YOU’LL NEED TO SUCCEED Bring your cyber expertise and drive for innovation to GDIT. The
Cybersecurity Analyst Principal
must have:
Education:
Technical Training, Certification(s) or Degree
Experience:
5+ years of related experience
Required Skills:
Required Skills
Experience composing threat reports and other management level communications
Leadership experience of teams of 5 or more
Vulnerability Management – Nessus Vulnerability Scanning
Configuration Management - STIG/SCAP compliance baselines for windows, mac, linux
Splunk SEIM / Log Aggregationexperience
Cloud Security - Familiarity with FedRAMP for IaaS, PaaS, SaaS
Experienced Incident Response Team (IR/IRT) troubleshooting, root cause analysis and remediation verification.
Knowledge of Identity Management, ICAM/IDAM and authorization, least privilege, reducing unauthorized elevated access.
Firewall Understanding including basic networking, sub-netting, IDS, NAT, ACL's
Penetration Test Response and Remediation
DevSecOps – software development lifecycle security –scanning across the lifecycle and baking in application security for developers and containers
Microsoft Defender for Endpoint experience
Preferred Skills
ServiceNow ticketing and reporting experience
Linux, Windows, and Active Directory experience
Experience with Tenable and Palo Alto network security solutions
Cloud and mobile device experience
ForeScout CounterAct, DLP solutions and Cylance AV
CISSP certification
Security Clearance Level:
Must be able to obtain a position of Public Trust with the US Department of Education
US Citizenship Required
Location:
Hybrid at GDIT's Integrated Technology Center in Bossier City, LA
GDIT IS YOUR PLACE At GDIT, the mission is our purpose, and our people are at the center of everything we do.
Growth:
AI-powered career tool that identifies career steps and learning opportunities
Support:
An internal mobility team focused on helping you achieve your career goals
Rewards:
Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
Flexibility:
Full-flex work week to own your priorities at work and at home
Community:
Award-winning culture of innovation and a military-friendly workplace
OWN YOUR OPPORTUNITY Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.
The likely salary range for this position is $102,000 - $138,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Benefits Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc
Additional Details
Scheduled Weekly Hours: 40
Travel Required: Less than 10%
Telecommuting Options: Hybrid
Work Location: USA LA Bossier City
Additional Work Locations: (none listed)
#J-18808-Ljbffr