Project Overview: The Team performs user activity auditing of computer networks and provides investigative support to counterintelligence and law enforcement elements utilizing industry standard system and network monitoring tools within the State Department and to external agencies.
Job Description: The Cyber Analyst conducts in-depth analysis of user activity data employing technical and non-technical disciplines to transform data into actionable information. The primary area of responsibility for the analyst is to examine and analyze data, prioritize significant events for further investigation, correlate information with other information sources to establish context, and to compile noteworthy information into analytic reports for working groups and senior management. Additionally, reviewing sensitive electronic and hard copy investigative and intelligence community reporting, collaborating with internal and external entities via working groups, conferences, or task forces, and preparing summary documents, briefings, assessments, graphical representations of data, and other written products is highly encouraged.
The Cyber analyst will conduct trend and anomaly analysis of user activity data and will use data analytic and visualization tools to discern and display potential threat indicators, while also conducting limited inquiries to solidify hypotheses leading to threat resolution. The individual will also support partnering business areas with ad-hoc data reporting, and will perform hands-on quantitative, statistical, and operational analysis to determine and communicate meaningful and actionable patterns, trends, insights and recommendations. Daily Responsibilities: · Perform network monitoring, analysis and reporting of information security events · Identify malevolent indicators of system and network activity data, define a source for the data, create policy to produce normalized daily auditable data · Identify, prioritize, and track relevant cyber events, potential security and policy violations, incidents, and other anomalous activity · Perform statistical analyses of data for the development of new data management techniques and operational improvements · Prepare and review threat reports, assessments, briefings, and other written products · Establish baselines of normal endpoint behavior to support outlier detection · Core work hours are 9:00am – 3:00pm (8.5 work day), Rosslyn, VA
Required: Basic Requirements · At least 1 year experience in a research analyst or data analyst role; preferably in a cyber-security setting · Experience in behavioral, audit, security, and/or policy compliance analysis · Ability to work well with and accept challenges in a fast paced, dynamic, team-based environment · Strong quantitative and analytic abilities to analyze and validate data · Ability to demonstrate effective organizational and technical skills · Detail-oriented and have a strong delivery performance (ability to meet deadlines and requests efficiently, multi-task and establish priorities) · Ability to quickly learn and understand various tools · Proficiency with MS Office Suite products (Excel, Word, Outlook, Visio, PowerPoint, etc.) and Server Desired Skills: Preferred but not required · Knowledgeable of Database systems (Oracle and MS SQL) · Ability to write and execute SQL queries · Experience with Powershell, Splunk, EnCase, IBM SPSS platform using the Modeler module · Experience with designing and implementing data models to drive threat analysis · Knowledge of cyber threat indicators · Ability to prepare and present briefings · Technical knowledge of Microsoft Operating Systems
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.