Cybersecurity Analyst Senior Principal

About The Position

Requirements

• Education: Bachelor Degree in Computer Science or a related technical discipline, or the equivalent combination of education and technical certifications or training, or work experience
• Required Experience: 10-12 Years of directly related experience in Information Assurance
• CISSP certification
• Strong analysis, oral and written communication
• Be able to work with all levels of program and client project team members and establish and maintain a strong customer-focused working relationship
• Experience/knowledge in CMS Information Security (IS) Acceptable Risk Safeguards (ARS) and Information Security and Privacy Library documents
• NIST 800 series of Special Publications, disaster/contingency planning, risk assessment, and the NIST Risk Management Framework.
• Information security practices, networks, software, and hardware, computer programming, operating systems and computer desktop packages such as Microsoft Word, Excel, etc.
• Working knowledge of system security intrusion detection, incident handling, configuration control, change management, auditing, Assessment and Authorization, information assurance principles (Confidentiality, Integrity, non-repudiation, availability, access control), and security testing.

Responsibilities

• Serve as the primary POC for all program security and privacy issues and requirements, and incident response lead
• Maintain knowledge of customer security requirements, policies and procedures
• Accomplish system security human resource objectives by recruiting, selecting, orienting, training, assigning, scheduling, coaching, counseling, and disciplining employees; communicating job expectations; planning, monitoring, appraising, and reviewing job contributions; planning and reviewing compensation actions; enforcing policies and procedures.
• Develop security policies and procedures
• Achieve system security operational objectives by contributing information and recommendations to strategic plans and reviews; preparing and completing action plans; implementing production, productivity, quality, and customer-service standards; resolving problems; completing audits; identifying trends; determining system improvements; implementing change.
• Meet system security financial objectives by forecasting requirements; preparing an annual budget; scheduling expenditures; analyzing variances; initiating corrective actions.
• Protect computer assets by developing security strategies; directing system control development and access management, monitoring, control, and evaluation.
• Establish system safeguards by directing disaster preparedness development; conducting preparedness tests.
• Develop security awareness by directing development of orientation and training programs
• Advise senior management by identifying critical security issues; recommending risk-reduction solutions.
• Update job knowledge by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations; coordinating hardware and software evaluations with vendors.
• Maintain components of the security program to include Certification and Accreditation/Assessment and Authorization activities (document preparation, system configuration/validation, certification testing, etc.), security sustainment activities (change management, , account management, media protection, user interface, file transfers, etc.), conducting self-inspections, audit trail review, delivering information systems security education and awareness.
• Translate operational requirements into technical requirements and architectures needed to meet program objectives
• Manage system security audits
• Ensure that the user community understands and adheres to necessary procedures to maintain security.

Benefits

• Growth: AI-powered career tool that identifies career steps and learning opportunities
• Support: An internal mobility team focused on helping you achieve your career goals
• Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
• Flexibility: Full-flex work week to own your priorities
• Community: Award-winning culture of innovation and a military-friendly workplace
• The likely salary range for this position is $136,000 - $184,000.
• Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.
• To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
• GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year.
• Paid leave and paid holidays are prorated based on the employee’s date of hire.
• The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees.
• To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available.