Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events.
Evaluates, tests, recommends, coordinates, monitors and maintains cybersecurity policies, procedures and systems, including access management for hardware, firmware and software
Ensures that cybersecurity plans, controls, processes, standards, policies and procedures are aligned with cybersecurity standards
Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security.
Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks.
Provides guidance and leadership to less-experienced cybersecurity personnel.
DESIRED QUALIFICATIONS: Bachelor’s Degree in Computer Science, Information Technology (IT), or a related discipline, and 5 or more years of solid, diverse experience in cyber security vulnerability assessments in cloud environments, or equivalent combination of education and work experience.
At least 5-8 years of demonstrable security engineering or related experience within AWS or Azure cloud environments.
Experience with SCAP Compliance Checker (SCC) and DISA STIGs.
Demonstrable understanding of system hardening processes, tools, guidelines, and benchmarks
Experience with Secure Configuration/Hardening of DoD Information Systems.
Experience with installing, operating, and optimizing SIEM (Splunk).
Experience with configuration, operation, and monitoring using AWS GuardDuty and/or Azure Security.
Experience with installing, integrating, and optimizing security components and tools.
Knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
Strong understanding of enterprise, network, system, and application level security engineering principles.
Demonstrable, hands-on expertise with patching and security remediations for Windows and Linux operating systems.
The likely salary range for this position is $80,000 - $120,000. This is not, however, a guarantee of compensation or salary; rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.