Req ID: RQ183609Type of Requisition: RegularClearance Level Must Be Able to Obtain: SecretPublic Trust/Other Required: NoneJob Family: Information SecuritySkills:Cybersecurity,Cybersecurity Policy,Information SecurityExperience:10 + years of related experienceUS Citizenship Required:YesJob Description:Seize your opportunity to make a personal impact as a Senior Defense Assessment Analyst supporting NETCOM. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.GDIT is currently seeking a Senior Defense Assessment Analyst in Fort Huachuca, AZ. The Senior Defense Assessment Analyst is responsible for supporting the defense of Army networks.Essential Job DutiesResponsible for:
Providing timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities.
The use of cyber defense tools for continual monitoring and analysis of systems and networks to identify malicious activity.
Documenting and escalating incidents (including event's history, status, and potential impact for further action) that may cause ongoing and immediate impact to the networks, applications, and devices.
Analyzing identified malicious activity to determine the weaknesses exploited, exploitation methods, the effects on systems and information.
Performing event correlation using information gathered from a variety of sources within the enterprise, to gain situational awareness and determine the effectiveness of an observed attack.
Conducting research, analysis, and correlation across a wide variety of all source data sets (indications and warnings).
Receipt and analysis of network alerts from various sources within the enterprise, and root cause analysis of such alerts.
Performance of cyber defense trend analysis and reporting.
Characterization and analysis of network traffic, to identify anomalous activity and potential threats to network resources.
Coordination with enterprise-wide cyber defense staff to validate network alerts.
Identification and analysis of anomalies in network traffic using metadata.
Creation and provision of daily network event and activity reports relevant to cyber defense practices.
Identification of applications and operating systems of network devices based on network traffic.
Developing strong relationships with team members, managers, and government counterparts.
Mentoring, coaching, and auditing of the activities of junior analysts.
The above duties are normal for this position. The omission of specific statements of duties does not exclude them from being expected of this position if the work is similar, related, or a logical assignment for this position. Other duties may be required.WHAT YOU’LL NEED TO SUCCEED:Education :MA/MS +10 -OR- BA/BS in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science +12 years of experience managing organizations similar in size, scope, and complexity.Security Clearance Level : Active SECRET clearanceRequired Skills and Abilities:
Expertise in complex information systems and architectures that encompass multiple disparate databases, networks, and communication subsystems.
Must meet DoD 8140 DCWF 511 requirements (B.S., CySA+ or CBROPS or CFR or FITSP-O or GCIA or GDSA or GICSP or GCFA)
The following certifications:
Certified Ethical Hacker (CEH) or higher certification
Certified Penetration Tester (GPEN)
An IAT II certification (CCNA-Security, CND, CySA+, GICSP, GSEC, Security+ CE, or SSCP) is required
Knowledge of cybersecurity and privacy principles.
Knowledge of computer networking concepts and protocols, and network security methodologies.
Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
Knowledge of cyber threats and vulnerabilities.
Knowledge of specific operational impacts of cybersecurity lapses.
Knowledge of intrusion detection methodologies and techniques for detecting host and network-based intrusions.
Knowledge of cyber defense and information security policies, procedures, and regulations.
Knowledge of the common attack vectors on the network layer.
Knowledge of Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) tools and applications.
Skill in collecting data from a variety of cyber defense resources.
Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).
Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
Knowledge of network traffic analysis methods.
Knowledge of new and emerging information technology (IT) and cybersecurity technologies.
Knowledge of different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks).
Knowledge of cyber attackers (e.g., script kiddies, insider threat, non-nation state-sponsored, and nation sponsored).
Knowledge of cyber defense and vulnerability assessment tools and their capabilities.
Knowledge of what constitutes a network attack and a network attack's relationship to both threats and vulnerabilities.
Knowledge of how to use network analysis tools to identify vulnerabilities.
Skill in recognizing and categorizing types of vulnerabilities and associated attacks.
Skill in performing packet-level analysis.
Must be willing to work overtime, after hours, holidays, and weekends, as necessary. This position may require periods of non-traditional working hours, to include consecutive nights and/or weekends
Preferred Skills:
First-hand knowledge of the mission and operational requirements of the U.S. Army.
A demonstrated understanding of U.S. Army IT operational and technical requirements, and an advanced understanding of U.S. Army IT applications and network systems.
One or more of the following certifications:
CySA+: CompTIA Cybersecurity Analyst plus
CBROPS: CCNA CyberOps Associate
CFR: CyberSec First Responder
FITSP-O: Federal IT Security Professional-Operator-NG
GCIA: GIAC Certified Intrusion Analyst
GDSA: GIAC Defensible Security Architect
GICSP: Global Industrial Cyber Security Professional
GCFA: GIAC Certified Forensic Analyst
ITIL v3 Foundations (or higher) certification, or able to achieve this certification w/in 90 days of contract start or hire date
Location : On Customer Site, Fort Huachuca, AZThis position is contingent upon award of contractGDIT IS YOUR PLACE:
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional growth opportunities including paid education and certifications
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidaysThe likely salary range for this position is $140,899 - $235,310. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.We connect people with the most impactful client missions, creating an unparalleled work experience that allows them to see their impact every day. We create opportunities for our people to lead and learn simultaneously. From securing our nation’s most sensitive systems, to enabling digital transformation and cloud adoption, our people are the ones who make change real.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
