Cybersecurity Analyst SME

About The Position

Requirements

• Citizenship: US Citizenship required for contract
• Certification(s): One of the following certification from the following: CCNA, CySA+, CFR, GCFA, GCIA, or GICSP
• Education: Bachelor’s degree or experience in lieu of education in Cybersecurity, Information Technology, Computer Science, or a related field.
• Years’ Experience: 10+ years of experience in cybersecurity
• Technical skills: Continuous Monitoring, Security Information and Event Management (SIEM), Security Operations
• Security Clearance level: Active DOW Top Secret Clearance

Nice To Haves

• Certification(s): Security+, CISSP

Responsibilities

• May serve as a team or task lead
• May coach and provide guidance to less experienced professionals
• Investigates, analyzes, and responds to cyber incidents within a network environment or enclave
• Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purpose of mitigating threats
• Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events
• Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, including access management for hardware, firmware, and software
• Ensures that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards
• Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security
• Develop techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks
• Develop and maintain Tactics, Techniques and Procedures (TTPs) for the SOC
• Maintain and provide process improvements on SOC processes and procedures
• Manage Cyber Incidents which includes triage, communication, documenting and responding to the incident in accordance with DoW regulations and policies.
• Communicate and provide summaries which can include presentations to all levels of leadership
• Manage tasks in accordance with DoW government contracts

Benefits

• Growth: AI-powered career tool that identifies career steps and learning opportunities
• Support: An internal mobility team focused on helping you achieve your career goals
• Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
• Flexibility: Full-flex work week to own your priorities at work
• Community: Award-winning culture of innovation and a military-friendly workplace
• Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.
• To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
• To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available.
• We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.