Cyber Security Operations III (Hunt Services) w/TS/SCI

Clearance Level
Top Secret/SCI
Category
Information Security
Location
Springfield, Virginia

REQ#: RQ91172

Travel Required: None
Requisition Type: Regular



GDIT is hiring a Cyber Security Operations Engineer to support a Hunt Services team. This role will proactively search for indicators of compromise on government systems through planned Hunt missions.

Job Duties:

  • Proactively search and identify indicators of compromise and anomalous behavior which is indicative of malicious behavior that has not yet met the event/incident threshold, or has not been detected by automated security tools.
  • Assess date from multiple sources and navigates the cyber terrain to identified suspicious behavior.
  • Obtain data for validating predictive models generated by advanced analytics.
  • Augment identification and tracking of incidents.
  • Create, update, and document tickets in the authorized ticketing system to initiate the incident response process any incidents discovered during the continuous hunt; tickets shall contain to contain sufficient information to meet the equivalent ticket created via Tier 1 and Tier 2 and shall include a level of detail
    sufficient to enable the Government and other contract services to systematically reconstruct the analysis and methodology and any conclusions reached.
  • Provide input to the daily CSOC Significant Activity Report, the daily CSOC Operations Update, and the Weekly CSOC Status Report.
  • Proactively investigate anomalous behavior which is indicative of malicious behavior but has not yet met the event/incident threshold and/or has not been detected by automated security tools
  • Assessing and validating predictive models as provided by other services to locate potential adversary intrusions and unauthorized activity.
  • Other duties as assigned
     

    Qualifications:
  • Current TS/SCI and ability to obtain a CI Poly
  • Bachelors Degree in a Technical Field
  • 5+ years experience working in related Cyber area.
  • Current Security+ certification and will need to obtain  IAT Level III and CSSP Analyst Certification within six (6) months of your start date.  

     

This position requires being fully vaccinated against COVID-19 by January 18, 2022 or the start date, if after January 18. Individuals who work in or reside in Texas or Montana or work outside of the United States may be excluded from this requirement.

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.