Cyber Intelligence Specialist (CTIC)

About The Position

Requirements

• Education: Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, or related technical discipline (OR equivalent combination of education, certifications, and experience).
• Experience: 5+ years of experience in cybersecurity, IT, or information assurance, with expertise in: Cyber Threat Intelligence Tools/Data Feeds : Skilled in integrating news feeds, threat briefs, vulnerability alerts, and technical incident reports. Processes: Threat mitigation methods and CND implementation practices.
• Technical skills: Experience with Red Hat Linux and Windows Server Administration (2+ years).
• Proficiency with SIEM platforms (e.g., Splunk, Elastic Search) and compliance tools such as SCAP and DISA STIGs (4+ years).
• Scripting expertise in PowerShell, Python, or BASH.
• Familiarity with TLS/SSL certificate implementation and management.
• Security clearance level: Active TS/SCI required.
• US citizenship required
• Certifications/Role requirements: Baseline Certification: DoW 8570.01-M IAT Level II (e.g., CompTIA Security+ CE) prior to start. Additional computing environment certification (e.g., CEH, CCNA-Security) required within six months of hire.
• When 8140 requirements are implemented on program/contract, employees will need to conform to 8140 certification standards.

Nice To Haves

• Experience with VMware ESXi, NetApp SAN storage, or Apache Kafka.

Responsibilities

• Analyze cyber adversary capabilities by assessing the intentions of adversary groups to conduct Computer Network Exploitation (CNE) and Computer Network Attack (CNA) against ARNG assets.
• Evaluate cyber intelligence reports from sources such as DISA, Army, RCC-NG, US-CERT, ARCYBER, NETCOM, and CYBERCOM (up to TS/SCI levels).
• Identify emerging threats to hardware and software, recommend risk mitigations, countermeasures, and detection strategies as part of an overarching Computer Network Defense (CND) strategy.
• Develop and disseminate actionable cyber intelligence based on adversary Tactics, Techniques, and Procedures (TTPs).
• Collaborate on the development of enterprise playbooks for automation and orchestration.
• Integrate cyber threat intelligence with enterprise vulnerability and asset management data to provide situational awareness to ARNG leadership, RCC-NG teams, SOC analysts, incident responders, and decision-makers.
• Proactively identify scalable cybersecurity solutions to enhance existing processes.
• Collaborate across multidisciplinary teams to troubleshoot, innovate, and strengthen overall defenses.

Benefits

• Comprehensive benefits and wellness packages
• 401K with company match
• Competitive pay and paid time off
• Full-flex work week to own your priorities at work and at home.
• Variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.
• GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
• Short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available.