Cybersecurity Analyst Senior

About The Position

Requirements

• Citizenship: US Citizenship required for contract
• Security Clearance level: Ability to obtain a public Trust or Secret
• Certification(s): Security + CE or higher
• Education: Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field is preferred.
• Years’ Experience: 3+ years of experience in cybersecurity,
• Technical skills: Expertise in the development and reviewing of Authorization to Operate (ATO) packages
• Expert knowledge of cyber control implementation associated with Risk Management Framework (RMF)
• Experience with ACAS, HBSS, and Sonatype and Fortify scanning tools
• Knowledge in creating and maintaining Cyber Plan of Action and Milestone (POA&M) reviews
• Experience with security control assessments and maintaining implementation plan
• Working with the DIRP team and various internal / external teams at DMDC to ensure all cyber security policies and procedures are followed and at the highest level of quality.
• Understanding and knowledge with uploading and maintaining artifacts in eMASS: policies, ACAS scans, STIGs, and ESS scans
• Experience analyzing compliance and vulnerability scan results and implementing appropriate mitigations
• Experience performing STIG reviews and maintaining STIG checklists across multiple application areas
• Extensive familiarity with creating, developing and maintaining System Security Plans
• Performing Information Security Continuous Monitoring
• Experience maintaining application and infrastructure Hardware/Software lists.

Nice To Haves

• Security Clearance level: Secret
• Certification(s): CISSP equivalent is highly desired.
• Technical skills: Knowledge of Department of Defense Cyber Security policies and procedures
• Previous experience with ATO and RMF package creation
• Extensive knowledge of cybersecurity policies, frameworks, and compliance standards
• Strong understanding of security tools, SIEM platforms, intrusion detection/prevention systems, and incident response methodologies
• Excellent analytical, problem-solving, and communication skills
• Ability to work under pressure and lead complex security initiatives
• Knowledge of Oracle Cloud Infrastructure (OCI) regarding migration of legacy systems to new infrastructure

Responsibilities

• Expertise in the development and reviewing of Authorization to Operate (ATO) packages
• Expert knowledge of cyber control implementation associated with Risk Management Framework (RMF)
• Experience with ACAS, HBSS, and Sonatype and Fortify scanning tools
• Knowledge in creating and maintaining Cyber Plan of Action and Milestone (POA&M) reviews
• Experience with security control assessments and maintaining implementation plan
• Working with the DIRP team and various internal / external teams at DMDC to ensure all cyber security policies and procedures are followed and at the highest level of quality.
• Understanding and knowledge with uploading and maintaining artifacts in eMASS: policies, ACAS scans, STIGs, and ESS scans
• Experience analyzing compliance and vulnerability scan results and implementing appropriate mitigations
• Experience performing STIG reviews and maintaining STIG checklists across multiple application areas
• Extensive familiarity with creating, developing and maintaining System Security Plans
• Performing Information Security Continuous Monitoring
• Experience maintaining application and infrastructure Hardware/Software lists.

Benefits

• Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.
• To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
• GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year.
• Paid leave and paid holidays are prorated based on the employee’s date of hire.
• The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees.
• To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available.