Insider Threat Analyst

Advance your career while impacting our national security in cyber as an Insider Threat Analyst at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.

MEANINGFUL WORK AND PERSONAL IMPACT
As an Insider Threat Analyst the work you’ll do at GDIT will be impactful to the mission of USCENTCOM. You will play a crucial role in performing Tier 1-3 level review of insider case events; use data mining tools to collect and analyze large amounts of information to triage potential insider indicators and respond to confirmed incidents.

• Triage and analyze UAM alerts
• Document and report findings to impacted stakeholders
• Provide information to the UAM Lead for customer trending and reporting
• When needed, provide on call response as required by government lead
• Participate and provide support to the Command Insider Threat Working Group Stakeholders and other relevant meetings where Insider Threat Analyst representation is needed
• Provide recommendations on ways to improve the Insider Threat UAM detection platform
• Use advanced behavior analytics to detect compromised users and their activities and assess risk

WHAT YOU’LL NEED TO SUCCEED
Bring your cyber expertise and drive for innovation to GDIT. The Information Security Analyst Senior must have:

• Education: Bachelor's degree
• Certification: Current DoD-8570 IAT Level II and DoD-8140
• Experience: 3+ years of related experience
• Technical skills:
  • At least 1 year of incident response / analysis experience / Special Security Office or OPSEC background
  • At least 6 months of UAM or insider threat detection experience
  • Demonstrated experience with Insider Threat detection capabilities.
  • Demonstrated knowledge of network traffic and communications, including known ports and services.
  • Demonstrated experience with MS Office Suite of Applications (Word, PowerPoint, Excel, Access, etc.)
  • Demonstrated experience in coordinating with internal and external stakeholders, especially Law Enforcement and Counterintelligence
  • Knowledge of incident handling procedures.
• Desired skills:
  • Completion of Center for Development of Security Excellence (CDSE) core Insider Threat training competencies
  • Counter Insider Threat Professional Certification (Fundamentals or Analysis)
  • Completion of the 40-hour Insider Threat Detection and Analysis or the Defense Insider Threat Management Analysis HUB Course
  • Completion of vendor provided UAM Basic or Advanced Course.
  • Understanding of core current cybersecurity technologies as well as emerging capabilities.
  • Demonstrated understanding of the life cycle of cybersecurity threats (internal and external), attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
  • Knowledge of computer security principles and DoD security protocols
  • Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings.
  • Comfortable with briefing senior government military and civilian leaders
• Security clearance level: TS/SCI
• US citizenship required
  
  GDIT IS YOUR PLACE
  At GDIT, the mission is our purpose, and our people are at the center of everything we do.

• Growth: AI-powered career tool that identifies career steps and learning opportunities
• Support: An internal mobility team focused on helping you achieve your career goals
• Rewards: Comprehensive benefits and wellness packages, 401K with company match, competitive pay and paid time off
• Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY
Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.