Cybersecurity Analyst Senior

LED FastStartBossier City, LA
17hHybrid
Match Resume

About The Position

We are GDIT. We support and secure some of the most complex government, defense, and intelligence projects across the country. At GDIT, cyber security is not just a singular part of our mission—it connects every one of us because it’s embedded into every aspect of what we do. GDIT’s Technology Shared Services (TSS) is your place! You make it your own by bringing your ideas and unique perspective to our culture. By owning your opportunity at GDIT, you are helping us ensure today is safe and tomorrow is smarter. At GDIT, people are our differentiators. As a Cybersecurity Analyst Senior supporting the Dept. of Education, you will be trusted to design and develop new systems, applications, and solutions for GDIT’s external customer's enterprise-wide cyber systems and networks. MEANINGFUL WORK AND PERSONAL IMPACT As a Cybersecurity Analyst Senior, the work you’ll do at GDIT will be impactful to the mission of the Department of Education. You will play a crucial role via the following responsibilities: Design and implement behavioral-based detections mapped to the MITRE ATT&CK framework. Response and investigation of reported security vulnerabilities and incidents Involvement in SDLC through design, development, testing, and implementation phases Pivot from raw Indicators of Compromise (IoCs) to Indicators of Behavior (IoBs) based on current threat intelligence Development of security policies, processes, standards, and road maps Implementation of comprehensive security controls consistent with risk Development of scripting and basic programming Management of application deployment and security architecture Involvement in subject area tools and technologies Monitoring and reporting on call volumes, alarm responses, and incident reports to ensure appropriate levels of service are met Support of annual updates of the incident response concept of operations document Support of annual incident response tabletop exercises Membership in a 24x7x365 team delivering real time proactive monitoring and maintenance of supported security tools and associated rules and signatures Identification and response to incidents to prevent or limit damage to assets, and report incidents Detection and analysis of incidents, coordinates activities with other stakeholders for containing, eradicating, and recovering from incidents Execute structured hypothesis-driven threat hunting to identify undetected malicious activity that bypasses automated controls. Development of advanced analytics and countermeasures to protect critical assets Act as a Technical Mentor for Tier 1 and Tier 2 analysts, conducting "over-the-shoulder" coaching and post-incident de-briefs. Support for the production and maintenance standard operational processes and procedures and playbooks for use by all shift personnel Involvement in enterprise-wide management of security incidents and managed network space to detect, respond, and report all computer related incidents, including daily monitoring of information systems, vulnerability remediation, intrusion detection, log reviews, and malware tracking Assessment, identification, and remediation of issues of the individuals and/or systems affected Partner with the XSOAR Engineer to translate manual investigative logic into automated playbooks. Staying up to date with current attack methods and characteristics in order to identify threats and advise on prevention, mitigation, and remediation Performance of other tasks consistent with the goals and objectives of the department/contract WHAT YOU’LL NEED TO SUCCEED Bring your cyber expertise and drive for innovation to GDIT.

Requirements

  • Technical Training, Certification(s) or Degree
  • 3 or more years years of related experience, including at least 1 or more years of experience writing threat reports and other management-level communications
  • An ability to obtain and maintain a Public Trust
  • Louisiana Residency; living within a commutable distance (approximately 60 mile radius) of the Bossier City facility
  • U.S. Citizenship
  • Experience with Incident Response Team (IR/IRT) troubleshooting, root cause analysis, and remediation verification
  • Knowledge of Identity Management - ICAM/IDAM and authorization, least privilege, and reducing unauthorized elevated access
  • Firewall understanding to include basic networking, sub-netting, IDS, NAT, and ACL's
  • Exposure to Penetration Test Response and Remediation
  • Network Security and SIEM tool experience (Splunk, et al.)
  • Working knowledge of Nessus
  • Understanding of continuous integration / continuous delivery (CI/CD) and DevSecOps
  • Experience writing threat reports and other management level communications
  • Ability to prepare and provide a daily security briefing to customers
  • Ability to support a flexible work schedule and handle on-call duties when required
  • Ability to learn the following technologies: ServiceNow (ticketing and reporting),Linux, Windows, Active Directory, Tenable, Palo Alto, ForeScout CounterAct, Microsoft Purview, and Microsoft Defender for Endpoint

Responsibilities

  • Design and implement behavioral-based detections mapped to the MITRE ATT&CK framework.
  • Response and investigation of reported security vulnerabilities and incidents
  • Involvement in SDLC through design, development, testing, and implementation phases
  • Pivot from raw Indicators of Compromise (IoCs) to Indicators of Behavior (IoBs) based on current threat intelligence
  • Development of security policies, processes, standards, and road maps
  • Implementation of comprehensive security controls consistent with risk
  • Development of scripting and basic programming
  • Management of application deployment and security architecture
  • Involvement in subject area tools and technologies
  • Monitoring and reporting on call volumes, alarm responses, and incident reports to ensure appropriate levels of service are met
  • Support of annual updates of the incident response concept of operations document
  • Support of annual incident response tabletop exercises
  • Membership in a 24x7x365 team delivering real time proactive monitoring and maintenance of supported security tools and associated rules and signatures
  • Identification and response to incidents to prevent or limit damage to assets, and report incidents
  • Detection and analysis of incidents, coordinates activities with other stakeholders for containing, eradicating, and recovering from incidents
  • Execute structured hypothesis-driven threat hunting to identify undetected malicious activity that bypasses automated controls.
  • Development of advanced analytics and countermeasures to protect critical assets
  • Act as a Technical Mentor for Tier 1 and Tier 2 analysts, conducting "over-the-shoulder" coaching and post-incident de-briefs.
  • Support for the production and maintenance standard operational processes and procedures and playbooks for use by all shift personnel
  • Involvement in enterprise-wide management of security incidents and managed network space to detect, respond, and report all computer related incidents, including daily monitoring of information systems, vulnerability remediation, intrusion detection, log reviews, and malware tracking
  • Assessment, identification, and remediation of issues of the individuals and/or systems affected
  • Partner with the XSOAR Engineer to translate manual investigative logic into automated playbooks.
  • Staying up to date with current attack methods and characteristics in order to identify threats and advise on prevention, mitigation, and remediation
  • Performance of other tasks consistent with the goals and objectives of the department/contract

Benefits

  • Growth: AI-powered career tool that identifies career steps and learning opportunities
  • Support: An internal mobility team focused on helping you achieve your career goals
  • Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
  • Flexibility: Full-flex work week to own your priorities at work and at home
  • Community: Award-winning culture of innovation and a military-friendly workplace

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Education Level

No Education Listed

Job Search Resources

Similar Cybersecurity Analyst Senior job opportunities

Senior Cybersecurity Analyst
TENEX.AI
TENEX.AI • Overland Park, KS6d • Onsite
Senior Cybersecurity Analyst
ASRC Federal
ASRC Federal • Washington, DC3d
Senior Cybersecurity Analyst
Alexandria Insights
Alexandria Insights • Stafford, VA12d • $110,000 - $130,000 • Onsite
Senior Cybersecurity Analyst
Gunnison Consulting Group
Gunnison Consulting Group • Washington, DC11d • $135,000 - $143,000 • Hybrid
🔥 New JobCybersecurity Analyst Senior
General Dynamics Information Technology
General Dynamics Information Technology • Bossier City, LA17h • Hybrid
Senior Cybersecurity Analyst
The Home Depot
The Home Depot6d • $100,000 - $180,000
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service