We are GDIT. We build cutting-edge applications for the most complex government, defense, and intelligence projects across the country. Bring your creativity to help us find solutions to complex problems and play an essential part in preparing our nation for the future.
At GDIT, people are our differentiator. The TSS is looking for a Senior GRC Information Security Analyst Advisor. In this role, a typical day will include the responsibilities below:
Leads the execution efforts of all ATO-related activities for a given information system and develops all supporting documentation for that system.
Provides security expertise in FISMA, OMB, NIST and federal government requirements to support IT Security and Privacy compliance.
Provide expertise with several security platforms, including but not limited to firewalls, intrusion detection systems, two-factor authentication systems, antivirus systems, secure email gateway appliances, web filtering proxy, security information and event management (SIEM) platforms, data-loss prevention, vulnerability detection & remediation, content filtering and identity & access management.
Provide expertise and consult on matters regarding designing secure networks, systems, & application architectures; in disaster recovery technologies & methods; in planning, researching, & developing security policies, standards & procedures; in system administration activities; and in supporting multiple platforms and applications.
Demonstrates considerable experience with cloud Platform-as-a-Service (PaaS) and security testing tools.
Conducts regular assessments of continuous monitoring activities and the security controls that have been implemented to support those activities.
Respond to vulnerability reports and perform remediation actions that are appropriate to take.
Perform the process of information system categorization and how to use that process to select security controls to create system and accreditation documentation.
Maintain knowledge of relevant network and security technologies and trends.
Requires BA/BS (or equivalent experience) and 10+ years experience in Information Security, IT Assurance, IT Governance, Risk Management and/or Cyber Engineering.
Has expertise with FISMA, OMB, NIST, Federal Government or private sector security certification requirements. Understands IT Security and Privacy compliance issues
Has an advanced understanding of information systems and architectures.
Has the ability to work across multiple projects simultaneously.
The ability to develop, document and implement business processes and/or procedures.
Requires highly effective communication and interpersonal communication skills. Must be able to conduct briefings, and correctly interpret security control verbiage
Requires flexibility and willingness to work with a wide range of personalities on a variety of projects.
Requires strong analytic and problem-solving skills and the ability to adapt to a changing environment. Must be able to identify, and if necessary, modify proposed recommendations that effectively address business and control needs. The ability to train and guide others in this area is a plus.
Requires one or more of the following governance risk, assurance or security certifications: CISSP, CRMA, CGEIT, CRISC, CISM, CISA, CBCP, GIAC, CompTIA Security + or related governance certifications.
US Citizenship to obtain clearance
Government-related cyber security knowledge.
Practical experience with FISMA / OMB / NIST / Government RMF security requirements.
Current DoD Secret, or Top-Secret security clearance, or public sector suitability clearances.
WHAT GDIT CAN OFFER YOU:
401K with company match
Customizable health benefits packages
Internal mobility team dedicated to helping you own your career
Challenging work that makes a real impact on the world around you
Full-flex work week
Not sure this job’s the one for you? Check out our other openings at gdit.com/careers.
About Our Work
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.