Cybersecurity Engineer - Monitoring and Analysis

THIS POSITION ALLOWS FOR UP TO 2 DAYS REMOTE WORK A WEEK.

We are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that’s important. GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day.

GDIT has an opening for a Cybersecurity Engineer - Monitoring and Analysis position supporting the Army National Guard (ARNG) in Chantilly, VA. This is an IT Service Management contract in support of the operation, modernization, expansion, and further evolution of the ARNG’s global Information Technology (IT) services including networking, compute, storage, infrastructure, applications, hosting, and program management services.  The GECOS program supports the ARNG enterprise IT infrastructure, its Wide Area Network (WAN), authentication and directory services, cybersecurity, application hosting, and associated services. GECOS uses ITIL best practices framework as the basis for IT Service Management (ITSM) model.

The position resides within the ARNG's Security Operations Center (SOC), which provides its services to the ARNG on a 24x7 basis. SOC personnel may be asked to be on-call or contacted outside of normal business hours in order to support mission requirements.

The Cybersecurity Engineer - Monitoring and Analysis will:

Be responsible for providing Enterprise IT Services and Support for DCO operations and engineering.

Use security tools to monitor, investigate, and identify anomalous events that are detected by security devices or reported to the SOC from external entities, Government leads, system administrators, and the user community.

Respond to IDS/IPS alerts. Tune the SIEM and IDS/IPS events to minimize false positives.

Implement custom detection content; applies various antivirus, intrusion detection, and vulnerability assessment tools, techniques, and procedures including maintaining policy signature enforcement, custom signature, signature modification, performance profiling, and sensor deployment in coordination with the Regional Cyber Center-National Guard (RCC-NG).

Perform and document risk assessment analysis for access requests in coordination with the RCC-NG, along with analyzing Information System Security (ISS) reports.

Perform work under supervision, as necessary.

May coach and provide guidance to less-experienced professionals.

May serve as a team or task lead.

Qualifications: Bachelors and/or 10+ years of IT management experience including network engineering and cybersecurity support.  Desired degree: Cybersecurity or Network Engineering. Will consider other combinations of years of experience, degree, and certifications.

Clearance: Secret

Shift/Work Schedule: Up to 40% Telework (2 days a week) optional

Required Certification(s): DoD 8570 IAT II (Sec+ or equivalent) or above

Desired Certification(s): DoD 8570 IAT III (CISSP or equivalent); ITIL