General Dynamics - IT is hiring: Cybersecurity Automation Engineer in Fort Bragg

Overview

Advance your career while impacting our national security in cyber as a Senior Principal Cybersecurity Automation Engineer at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.

Responsibilities

• Engineer and manage all SOAR using Splunk Phantom.
• Integrate security use cases into Phantom.
• Develop reusable, testable, and efficient Python-based Playbooks.
• Configure and program to enable seamless integration of Phantom with other systems.
• Extend the platform by developing Security Apps.
• Train and mentor security development teams on the capabilities of Phantom.
• Use available tools and the Phantom platform to enable automation and orchestration.
• Collaborate with the customer to identify security integration and implementation strategies, developing their expertise in Phantom.
• Define requirements for creative integrations and playbooks.
• Partner with security operations teams, threat intelligence groups, and incident responders.
• Codify workflows into automated playbooks.
• Implement and develop Phantom\'s flexible app model, using numerous tools and APIs.
• Utilize Python scripts, PowerShell, and Linux commands for integrations.
• Drive efficient communication with integrated collaboration tools.
• Use Phantom event and case management for rapid triage of events.
• Notify CND managers, incident responders, and team members of suspected CND incidents and provide detailed event histories, statuses, and potential impacts.
• Coordinate with higher authorities on actual or attempted intrusions, viruses, and other events.
• Implement and enforce CND policies and procedures adhering to applicable laws and regulations.
• Provide incident reports, summaries, and situational awareness information to higher headquarters.
• Manage incidents from inception to after-action reporting.

Required Qualifications

• 8+ years of relevant experience
• 8570 Certification: Minimum certification IAT level II (e.g., CCNA Security, CySA+, GICSP, GSEC, Security+ CE, SSCP); Level III preferred (e.g., CISSP, GCIH, GCFA, GCIA, GNFA, Linux+, CCNA R&S, Splunk Power User)
• Experience with Splunk Phantom, Linux, and PowerShell

Preferred Qualifications

• Experience installing and configuring Phantom.
• Experience in integrating security use cases into Phantom.
• Expertise in developing Python scripts, PowerShell, and using Linux commands.

Critical Soft Skills

• Ability to multi-task and adapt to changing priorities in highly stressful situations.
• Highly resilient and motivated to investigate unfamiliar problems in a high OPTEMPO environment.
• Critical thinking skills for applying and correlating data from multiple sources to solve complex problems.
• Strong ability to articulate operational impacts of cybersecurity incidents/events to leadership.
• Effective communication skills and the ability to build strong relationships with other teams.

Location

• On Customer Site

Security Clearance

• TS/SCI Required

Citizenship Required

• US Citizenship

GDIT is your place. At GDIT, the mission is our purpose, and our people are at the center of everything we do.

Growth: AI-powered career tool that identifies career steps and learning opportunities

Support: An internal mobility team focused on helping you achieve your career goals

Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off

Community: Award-winning culture of innovation and a military-friendly workplace

Salary: The likely salary range for this position is $127,500 - $172,500. This is not a guarantee of compensation; salary will be set based on experience, location, and contractual requirements.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans