Cyber Defense Forensics Lead

About The Position

Requirements

• Top Secret (With SCI eligibility) clearance.
• Minimum of seven (7) years of professional experience with a solid understanding of incident response, insider threat investigations, forensics, cyber threats and information security.
• Minimum of five (5) years of hands-on experience with experience in the last two (2) years that includes host-based and network based security monitoring, identifying and analyzing anomalous activities with familiarity in insider threat monitoring software, host-based forensic tools, intrusion detection systems, intrusion analysis functions, security information event management (SIEM) platforms, endpoint threat detection tools, security operations ticket management.
• Ability to create insider threat focused dashboards, reports and workflow diagrams.
• Experience collecting data and reporting results; handling and escalating security issues or emergency situations appropriately; providing incident response capabilities to isolate and mitigate threats to maintain confidentiality, integrity, and availability for protected data.
• Experience with ad hoc training to junior members in a collaborative environment.
• Bachelor’s degree in information technology, computer science, cybersecurity or a related field preferred.
• Previous or Current CBP Background Investigation desired.

Responsibilities

• Oversee advanced endpoint, network, and cloud forensics
• guide analysts through complex investigations
• develop forensic methodologies and playbooks
• ensure the preservation, analysis, and reporting of evidence that informs high visibility security decisions
• Work on cutting edge forensic cases
• shape lab capabilities
• collaborate with law enforcement partners
• lead a team that plays a decisive role in protecting CBP systems from sophisticated adversaries.

Benefits

• Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.
• To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
• To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available.
• We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.