GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day.
We think. We act. We deliver. There is no challenge we can’t turn into opportunity. And our work depends on a Cyber Security Analyst Senior Advisor joining our team to support the technical infrastructure of the GDIT Security Operations Center (SOC) team of security analysts and incident responders and providing technical guidance and support for GDIT’s internal network.
The primary duty of the Cyber Security Analyst Senior Advisor is to support the SOC’s engineering and administration efforts. Other activities include ensuring uptime for resources such as ArcSight data feeds of alerts and logs from firewalls, routers, and other network devices or hosts, data feeds and/or alerts from CISCO Sourcefire(FirePower). Must be very consistent in ensuring the security posture of GDIT’s and the SOC infrastructure, staying on top of current security technologies and developments in the security field and able to relate them to the GDIT corporate network and Applications.
Bachelor's degree in Computer Science or related discipline, plus 10+ years of related experience
In lieu of degree, combination of education, professional training and related work experience
Able to obtain and maintain Secret Clearance
Experience in security/network/systems engineering
Strong experience working in Windows LDAP/AD environments, Linux administration, technical documentation, and communicating technical information to leadership
Strong working knowledge of various security technologies, architecture, networking, engineering, and administration
Have a deep understanding of networking, storage, and operating system technologies
Familiarity with CISCO FIREPower Defense Center (IDS/IPS), F5 BigIP/ASM module, FireEye HX, ArcSight Use Case and Content development, Full packet capture, Carbon Black, Nessus, SentinelOne, REGEX, PowerShell, Lamda, Python Scripting, Cloud Infrastructure and Security in the cloud, Digital Guardian
Installing and configuring Windows and Linux servers to comply with CIS benchmarks
Able to learn new products, create documentation, present, and implement security products to 30K end point Enterprise, and document to high standards able to pass audit scrutiny.
Working knowledge of incident response and analysis
Working knowledge of firewalls and VPNs, IDS/IPS, site blocking and content filtering tools
Working within a cyber operations or network defense operations environment
Hands-On experience with ArcSight ESM engineering/administration
Knowledge of Data Lake Infrastructure
Vendor or GIAC certifications
Active Secret Clearance
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.