Cyber Security Analyst, with Polygraph

Job Description

We are GDIT. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that’s important.

GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day.
We think. We act. We deliver. There is no challenge that we can’t turn into opportunity. And our work depends on a Cyber Security Analyst joining our team to support Government activities in McLean, VA.

At GDIT, people are our differentiator. As a Cyber Security Analyst supporting the customer, you will be trusted to examine a variety of system and network technologies and operational activities for Counterintelligence (CI) risks. Activities performed in this capacity include, but is not restricted to:

• Leading technical CI assessments of system/network topologies and write assessment reports based on findings
• Analyzing IP network topologies for CI, technical and operational vulnerabilities and risk
• Reviewing configurations of IP based network equipment such as routers, switches, firewalls, IDS/IPS, One Way Transfer (OWT) appliances for security policy and deployment guideline compliance, operating system and security patch updates, and configuration baseline
• Conducting and evaluating automated system and network scans using tools such as Wireshark, NMap, Nessus, Nipper Studio
• Supporting external customer projects by providing system and network engineering expertise and CI guidance in working groups, customer meetings, and in written communication to ensure the projects comply with sponsor policy and regulations while fulfilling operational needs
• Providing CI recommendations to architecture and design reviews
• Evaluating network operations using network management platforms, network scanning tools, auditing functions, and log reviews
• Reviewing procurement processes of hardware, software and services to comply with CI and operational needs
• Maintaining current knowledge of relevant technology as assigned
• Working independently with little supervision and should be flexible to support customers located throughout the WMA

REQUIRED QUALIFICATIONS:

• Education: Bachelor’s degree in Computer Science, Engineering, or a related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience.
• Minimum of 15 years of experience: 10+ years of network/systems engineering experience in a secure environment and five or more years supporting mission-based TCP/IP networks
• Experience with planning, configuring, and maintaining IP network products including routers, switches, wireless networking, VPN’s, IDS/IPS, Firewalls, One Way Transfer (OWT) appliances
• Experience with configuring, securing, and maintaining cloud-based services such as Amazon Web Services (AWS), Microsoft Azure, Google Cloud, IBM Cloud
• Demonstrated experience with communications protocols such as IP, TCP, UDP, MPLS, OSPF, IGRP, BGP
• Hands on experience with one or more of the following network operating systems – Cisco iOS, MXOS, JunOS
• Virtualized Platform (VMware, Virtua Box) experience
• Experience with Windows Server (2012/2016), Windows Workstation (8.X, 10), Linux (Redhat/Debian), OSX operating system
• Knowledge and experience with encryption products, methodologies and configuration
• Hands-on experience with Network Packet Capture and System analysis tools such as Wireshark, Snort, NMAP, Nipper Studio, Nessus
• Experience with Network Management products such as HP OpenView, Solarwinds, Nagios
• Experience with Computer Aided Design programs such as CAD or Visio
• One or more of the following certifications:
• Amazon Cloud Service Certification (Solutions Architect Associate or higher) or similar cloud certification
• Cisco Certified Network Associate (CCNA), Cisco Certifed Network Professional (CCNP). Juniper NCSP, or Juniper NCP
• Microsoft Certified Solutions Associate (MSCA) or Microsoft Certified Solutions Expert (MSCE)
• Red Hate Certified Engineer (RHCE) or Red Hat Certified Security Specialist (RHCSS)
• Certified Information Systems Security Professional (CISSP)
• Security Clearance Level: Top Secret/SCI with Polygraph

PREFERRED QUALIFICATIONS:

• Experience with VOIP Telephony Systems
• Firm understanding of business legal structures and business operations (contracts, accounts receivable, accounts payable, business banking, procurement processes, and logistics)
• One or more of the following certifications:
• VMWare Certified Professional vSphere 5 (VCP5)
• Project Management Professional (PMP)
• EMC, NetApp or similar certification

WHAT GDIT CAN OFFER YOU

• Alignment to a mission-critical role that directly impacts the customer’s ability to effectively execute its mission.
• Direct engagement with contractor leadership that centers upon career development/mobility, enhanced performance evaluation, and corporate information sharing & networking opportunities.
• Placement on a dynamic team of talented professionals that organically fosters an environment of innovation, collaboration, and trust

Monitor and analyze Intrusion Detection Systems (IDS) to identify security issues for remediation.

Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.

Evaluate firewall change requests and assess organizational risk.

Communicates alerts to agencies regarding intrusions and compromises to their network infrastructure, applications and operating systems.

Assists with implementation of counter-measures or mitigating controls.

Develops, tests, and operates firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools.

Develops and improves processes and direction for projects.

Conducts investigations of computer security violations and incidents, reporting as necessary to management.

Responds to queries and requests for computer security information and reports.

Safeguards the network against unauthorized infiltration, modification, destruction or disclosure.

Researches, evaluates, tests, recommends, communicates and implements new security software or devices.

Implements, enforces, communicates and develops security policies or plans for data, software applications, hardware, and telecommunications.

Develops materials for computer security education/awareness programs.

Provides recommendations to clients on information assurance engineering standards, implementation dependencies, and changing information assurance related technologies.

Performs periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance.

Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.

Provides expert guidance and leadership to less-experienced team members.

May serve as a task or project leader. (Not a people manager)

Provides information assurance project management, technical security staff oversight, and development of mission-critical technical documents.

Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.

Ensure compliance with regulations and privacy laws.

Recognized as a subject matter expert in information security.

DESIRED QUALIFICATIONS: BA/BS (or equivalent experience), 15+ years of experience

#OpportunityOwned

#GDITCareers

#GDITLife

#WeAreGDIT

#GDITInterns

#GDITLife