Cyber Security Analyst Associate

Clearance Level
None
Category
Cyber Security
Location
Huntsville, Alabama

REQ#: RQ119325

Travel Required: None
Public Trust: None
Requisition Type: Regular

We are looking for a Cyber Security Analyst to help plan, implement, and maintain a Security Operations Center (SOC) program. The SOC will be responsible for providing cyber security services to customers. Uses data collected from a variety of cyber defense tools (e.g., SIEM, IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats

interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events. Configures and maintains SIEM rules to identify potentially malicious network traffic activities.

Advises clients on incident response and threat mitigation. Provides cyber security consulting to clients.

Should have experience with vulnerability scanning tools, and some knowledge of firewalls. Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, including access management for hardware, firmware, and software.

Ensures that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards.

Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security.

Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks.

 

Overall goal is to help plan, implement, and maintain the Security Operations Center (SOC) related to the following areas:

 

·        Vulnerability Management – Nessus vulnerability scanning and reporting

·        Familiarity with IDS/IPS

·        Splunk (or equivalent SEIM)

·        Juniper Secure Analytics

·        IBM QRadar

·        Incident Response Team (IR/IRT) troubleshooting, root cause analysis, and remediation verification

 

EDUCATION AND EXPERIENCE:

·        BA/BS or equivalent, 0-2 years of experience or 2 years of relevant work experience in-lieu of bachelor’s degree

·        Basic level Linux or Windows administration experience

·        Cyber Security educational or work experience

 

Additional Preferred Qualifications:

·        Experience with detecting, remediating, and reporting on cyber security events

·        Basic firewall knowledge of Palo Alto, Juniper, and Cisco

·        Configuration Management - STIG/SCAP compliance baselines for Windows, Mac, Linux

·        Penetration Test Response and Remediation

·        Ansible automation planning and implementation

·        Experience with Nessus vulnerability scanning service

·        Familiarity with IDS/IPS

·        Security+ certification


About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.