Cybersecurity Technician

Clearance Level
Top Secret
Category
Cyber Engineering
Locations
Fort Belvoir, Virginia
Albuquerque, New Mexico

REQ#: RQ101460

Travel Required: Less than 10%
Requisition Type: Regular

GDIT is seeking a Cybersecurity Technician to provide security engineering and management planning, design and implementation using standard Government processes and application like ACAS HBSS and RMF, while following DISA STIG Requirements and DoD IA Standards for the Defense Stockpile Management System (DSMS).  The Cybersecurity Technician designs and evaluates end-to-end systems through their entire life cycle. Ensures products and systems comply with requirements and customer information assurance and cybersecurity standards and practices through formal verification methods with specific emphasis on network operations and cyber warfare tactics.

Requirements include:

  • Providing Security Engineering to include all design and development necessary to ensure DSMS systems are fully compliant with applicable security requirements to meet DTRA and other organizations’ Assessment and Authorization (A&A) standards.

  • Developing and implementing a capability to perform audit logging of security relevant events, including those occurring in the application(s), operating system(s), Database Management System(s) (DBMS) and services to log audit records.

  • Exercising Nessus vulnerability and compliance scanning tools to maintain vulnerability management service.

  • Updating Linux servers and software IAW DISA releases.

  • Meeting DOD requirements for vulnerability mitigation timelines and use of POA&M for prioritization.

  • Maintaining an active program to monitor, evaluate and install all Information

  • Applying Assurance Vulnerability Alert (IAVA) updates to DSMS systems with no or minimal disruption to systems during the workweek.

  • Providing security management to include access control, encryption/decryption, key management, risk analysis, management of security assets, and assessment and prevention of security threats.

  • Providing data and system integrity and the physical security of the network.

  • Authoring and maintaining the System Security Plan (SSP), hardware and software baseline, system/network diagrams, maintaining the POA&M and other RMF requirements to obtain and maintain security accreditation from the DTRA Accrediting Authority and approval to connect from other sources.

  • Preparing, completing, updating, and maintaining site A&A packages for DTRA.

  • Coordinating with the DTRA and other organizations’ Approving Officials (AOs) to ensure the DSMS system accreditation remains active.

  • Maintaining awareness of current and future trends of National Security Agency (NSA), DoD, DOE, Air Force, and Navy security requirements.

  • Assisting Government representatives in answering requests for information or coordinating with DTRA and other site security organizations.

  • Developing a system-level Continuous Monitoring (CM) strategy (maintaining ongoing awareness of information security, patches, vulnerabilities, threats, policies, standards, and guideline to support system management decisions during the system’s lifecycle) and apply the CM guidance described in NIST SP 800-137.

  • Validating system applications, operating system(s), database management system(s) and components under the NIAP Common Criteria Evaluation and Validation.

  • Administering and maintaining HBSS servers and clients to include operating systems, patches, STIG compliance, resolve ePO server issues, and manage authorized data transfer officers.

  • Providing configuration management of all systems, ensuring a mature process systematically shepherds new requirements through appropriate reviews and boards prior to fielding and upholding configuration management processes, making and implementing recommendations for improvement to realize a robust and secure environment.

  • Engineering, implementing, and effectively administering Security Information and Event Management (SIEM) to ensure high situational awareness of pertinent events and risks across the environment

  • Developing, implementing, maintaining, and decommissioning new cybersecurity tools, applications, and capabilities, identified due to mission requirements and following mandated government guidance, policies, and directives

  • Conducts software and systems engineering and software systems research to develop new capabilities, ensuring cybersecurity is fully integrated. Conducts comprehensive technology research to evaluate potential vulnerabilities in cyberspace systems.

  • Designs, develops, tests, and evaluates information system security throughout the systems development life cycle.

  • Tests, implements, deploys, maintains, and administers the infrastructure hardware and software.

  • Conducts risk assessment and provides recommendations for application design.

  • Handles a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.

  • Uses encryption technology, penetration and vulnerability analysis of various security technologies, and information technology security research.

  • Designs and develops new systems, applications, and solutions for external customer enterprise-wide cyber systems and networks.

  • Ensures the logical and systematic conversion of customer or product requirements into total systems solutions that acknowledge technical, schedule, and cost constraints.

  • Integrates new architectural features into existing infrastructures, designs cyber security architectural artifacts, provides architectural analysis and relates existing system to future needs and trends, embeds advanced forensic tools and techniques for attack reconstruction, provides engineering recommendations, and resolves integration/testing issues.

  • Builds and maintains trusted relationships with customers.

  • Provides guidance and leadership to less-experienced cybersecurity personnel.


REQUIRED QUALIFICATIONS:

  • 5+ years of Cyber Security experience

  • Top Secret Clearance

  • BA/BS (or equivalent experience)

Posses one of the following certifications:

  • CAP

  • CND

  • Cloud+

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.