The Contractor shall provide IT security engineering, integration services and solutions. This includes malicious code detection, intrusion detection, and cyber security tool development and integration. The Contractor shall navigate the Sponsor’s security accreditation process and ensure the Sponsor’s systems successfully meet all security controls and gates to obtain continued authority to operate (ATO). The Contractor shall work with team members to ensure all technology pilots are evaluated and reviewed to obtain proper ISSM approval. The Contractor shall investigate virus/malware alerts/incidents to determine root cause, entry point of code, damage risk, and report this information to the Sponsor. The Contractor shall write reports for Sponsor on the detailed technical analysis results of reverse engineering tasks, provide recommendations for mitigating issue in the future. The Contractor shall analyze systems, including forensically, for malware, misuse, and unauthorized activity.
Demonstrated experience in cyber security or IT related field
• Demonstrated experience submitting systems for security scans and inspections
• Demonstrated experience preparing Body of Evidence and security reviews for security accreditations
• Demonstrated working knowledge of cyber security principles for Linux, Windows and virtual platforms
• Demonstrated experience with XACTA or one or more of its predecessors
• Demonstrated experience in all steps of the RMF process
• Demonstrated experience creating system and application security test plans
• Demonstrated experience analyzing security test results and suggesting mitigation plans for identified risks
Demonstrated experience with public and private information security groups and organizations
Demonstrated experience communicating vulnerability results and risk posture to team members and management
Demonstrated experience with information security policies and guidance, as well as assisting in researching, evaluating, and developing relevant security policies and guidance
Demonstrated experience performing complex technical tasks in pursuit of overall goals with minimal direction
Desired Certification: Certified Information Systems Security Professional (CISSP)
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.