CND Analyst - DCO and CIRT

CND Analyst - DCO and CIRT: THIS POSITION ALLOWS FOR UP TO 2 DAYS REMOTE WORK A WEEK.

We are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that’s important.

GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day.

GDIT has an opening for a CND Analyst - DCO and CIRT position supporting the Army National Guard (ARNG) in Chantilly, VA. This is an IT Service Management contract in support of the operation, modernization, expansion, and further evolution of the ARNG’s global Information Technology (IT) services including networking, compute, storage, infrastructure, applications, hosting, and program management services.  The GECOS program supports the ARNG enterprise IT infrastructure, its Wide Area Network (WAN), authentication and directory services, cybersecurity, application hosting, and associated services. GECOS uses ITIL best practices framework as the basis for IT Service Management (ITSM) model.

The position resides within the ARNG's Security Operations Center (SOC), which provides its services to the ARNG on a 24x7 basis. SOC personnel may be asked to be on-call or contacted outside of normal business hours in order to support mission requirements

The CND Analyst - DCO and CIRT will:

• Reviews, analyzes, documents, and routes WCF requests for potentially malicious Indicators of Compromise/domains.

• Analyzes incoming data feeds and system logs in coordination with the SOC.

• Develops and maintains an incident response plan and associated SOPs for all incident response types and efforts.

• Maintains cyber incident documentation in accordance with RMF and Federal regulations and guidance.

• Assist in incident handling and response activities and fulfills reporting requirements. 

• Reviews all reported incidents, verifies that all pertinent information is recorded and confirmed, and ensures closure occurs only after all remediation and reporting activities have occurred in accordance with RMF and Federal regulations.

• Develops and deploys countermeasures to enterprise systems or networks under ARNG responsibility in coordination with the RCC-NG to contain cyber incidents.

• Produces incident assessment and response reports, along with recommended remediation activities.

• Coordinates with the Government to use findings to inform, expand, or focus monitoring efforts.

• Ensures the handling of possible or actual data spills of classified sensitive information resident in ISs are conducted in accordance with DoDI 8500.01.

• Provides cybersecurity compliance including, but not limited to, operational reporting, scanning, firewalls, proxy services, intrusion detection, sensors, PKI, antivirus servers, monitoring, security incident management, COMSEC, FISMA, and security manager.

Qualifications: Bachelors and/or 10+ years of IT management experience including network engineering and cybersecurity support.  Desired degree: Cybersecurity or Network Engineering. Will consider other combinations of years of experience, degree, and certifications.

Clearance: Secret

Shift/Work Schedule: 40% Telework (2 days a week) optional

Required Certification(s): DoD 8570 IAT II (Sec+ or equivalent) or above

Desired Certification(s): DoD 8570 IAT III (CISSP or equivalent); ITIL

POSITION ALLOWS FOR UP TO 2 DAYS REMOTE WORK WEEKLY

#GECOS #GDITArmy