Cyber Security Analyst

Advance your career while impacting our national security in cyber as an IT/Cyber Analyst at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government. Meaningful Work and Personal Impact As a Cyber Security Analyst, the work you’ll bring a systems perspective to mission support for multiple Force Protection System (FPS) Family of Systems (FOS) to the IBD-SS program supporting the Warfighter. This role requires not just technical expertise, but the ability to understand interdependence, lifecycle impacts, and holistic security integration across complex systems. We are seeking a highly skilled Cybersecurity Analyst to join our team who approaches cybersecurity as an integral part of a larger system of systems. The ideal candidate will have experience in vulnerability assessments, STIG/IAVM compliance and RMF 2.0 implementation, and support for system cybersecurity controls. You will collaborate with engineering teams, system administrators, and government stakeholders to ensure mission-critical systems meet all cybersecurity and accreditation requirements. How the Cyber Security Analyst will make an impact Review Security Technical Implementation Guide (STIG) compliance for testing and reporting for systems post-installation. Report on IAVM (Information Assurance Vulnerability Management) compliance to ensure appropriate mitigation strategies are in place. Review, test, and implement the appropriate IAVA/B patches for the system as required to maintain compliance and address vulnerabilities Conduct software and system attack surface analysis to identify security risks and areas for improvement across the system. Perform software vulnerability assessments to identify and mitigate security gaps throughout the system lifecycle. Engineer and coordinate solutions to ensure Authorization to Operate (ATO) compliance with updates and required changes for existing systems. Execute and analyze system baseline vulnerability scans using NESSUS or similar tools. Record, report, and remediate identified vulnerabilities, ensuring benefit to operations, logistics and engineering as well as compliance with organizational and federal standards. Work with cross-functional teams to validate and verify effective mitigation actions for system vulnerabilities. Apply Risk Management Framework (RMF) 2.0 security controls to systems to achieve and sustain system accreditation and support continuous monitoring Develop and document system Test Plans and Test Reports in support of cybersecurity operations and assessments. Provide support to government-sponsored Security Control Assessors-Vulnerability (SCA-V) and Security Control Assessors-Onsite (SCA-O) teams during cybersecurity testing, verification, and system compliance assessments. Developing and maintaining cybersecurity Test Plans and Test Reports with knowledge of and preferably experience in developing system-level engineering solutions to support ATO compliance. Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives with supervision including responding and reporting as well as suggesting new processes or procedures that benefit the full system. Reviews cybersecurity plans, controls, processes, standards, policies, and procedures that apply to pertinent systems are aligned with cybersecurity standards What You’ll need to succeed Bring your technology experience and drive for systemic innovation to GDIT. Cyber Security Analyst must have: BS/BA with 5-8 years of experience. Additional years of experience may be considered in lieu of the degree. (9 years without BS/BA; 10 years without HS) Security clearance level: Secret Clearance Exceptional organizational skills for records and documentation management. Proficiency in applying and managing STIG/IAVM compliance activities in complex network and system environments. Hands-on experience with vulnerability scanning tools, such as NESSUS or equivalent, and interpreting results to develop actionable remediation plans. Strong understanding of Risk Management Framework (RMF) 2.0 processes, security controls, and implementation practices. Experience with IAVA/B review Ability to perform attack surface analysis for software and systems, analyzing potential weaknesses and offering mitigation strategies. Strong coordination and communication skills for working in and with cross-functional teams. On Customer Site Travel Requirement CONUS/OCONUS determined by mission requirements Certification: DoD 8140 or DoD 8570 IAT-II baseline (e.g., Security+ CE) Certification or willing to obtain within three months of your start date Certification Requirement subject to change determined by contractual requirements GDIT is your place At GDIT, the mission is our purpose, and our people are at the center of everything we do. Growth: AI-powered career tool that identifies career steps and learning opportunities Support: An internal mobility team focused on helping you achieve your career goals Rewards: Comprehensive benefits and wellness packages, 401K with company match, competitive pay and paid time off Community: Award-winning culture of innovation and a military-friendly workplace The likely salary range for this position is $119,000 - $161,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: 10-25% Telecommuting Options: Onsite Work Location: USA AL Huntsville Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most. We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans Join our 30,000 everyday heroes. We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. For more information about GDIT's Privacy Policy, click here: https://www.gdit.com/privacy-policy/notices/