General Dynamics Information Technology

Compensation

Full Description

Senior Information Security Analyst / SOC Analyst Own your career as a Senior Information Security Analyst at GDIT. Here, you’ll have the opportunity to build strong lines of cyber defense using cutting-edge technologies. Your work in cyber security at GDIT will have an impact on securing our clients’ missions and ensuring we anticipate the threats of tomorrow. At GDIT, people are our differentiator. As a Senior Information Security Analyst, you will help ensure today is safe and tomorrow is smarter. Our work depends on Information Security professionals joining our team to help protect our customers' information resources. HOW THE INFORMATION SECURITY ANALYST WILL MAKE AN IMPACT: • Assists the team in daily support of our contracted Security Operations Center (SOC), including extended hours support (on-call on a rotating basis) • Gathers and handles event and incident evidence. • Reviews monitoring infrastructure events and alerts for possible Indicators of Compromise (IOCs). • Knowledge of Windows Defender and Microsoft Sentinel operation and ability to detect, analyze and respond to security threats. • Ability to rapidly assess and prioritize security alerts and incidents based on risk and urgency • Manage incident playbooks • Assist in vulnerability management activities, particularly in the area of remediation management, identifying and working with system administrators to ensure their systems are patched in accordance with SLAs • You play a key role in protecting your organization's valuable data • You play a critical role in preventing cyber attacks or the compromising of systems to protect individuals and the organization • Dynamic team environment with focus on collaboration WHAT YOU’LL NEED TO SUCCEED: Certifications: Requires one or more of the following governance, risk, assurance or security certifications: CompTIA Sec+, CISSP, CRMA, CRISC, CISA, GIAC or related certifications. Preference to CISSP, GCIH, ECIH, GX-IH, or similar; training or certification in Tenable, Qualys, or other vulnerability management tools. Experience: At least three (3) years of Cybersecurity/Information Security Analyst experience for IT systems in a government or large commercial environment and the following experience. • Experience with SOC operation • Experience with Windows Defender, Microsoft Sentinel, and ServiceNow • Experience with Tenable, Qualys, or other vulnerability management tools • Experience with FISMA / NIST / U.S. government information security requirements highly preferred • Knowledge of NIST, OMB, and or RMF • Interact with project technical teams, system owners, and system administrators • Conduct risk and vulnerability assessment at the network, system and application level • Review Nessus and Qualys scans and report on vulnerabilities • Research, evaluate and recommend new security tools, techniques, and technologies, particularly in the area of SOC tooling • Understand relevant Federal policies and regulations for PKI, networking, IT systems, virtualization, and cloud • Demonstrate initiative, judgement, responsiveness, and excellent communications skills both written and verbal • Ability to work across multiple projects/efforts simultaneously, while maintaining constant triaging of incoming alerts, events, and incidents Education: Technical Training, Certification(s) or Degree equivalent Security Clearance Level: Agency-specific (Public Trust position) Location: Remote or Hybrid GDIT IS YOUR PLACE: • Full-flex work week to own your priorities at work and at home • 401K with company match • Comprehensive health and wellness packages • Internal mobility team dedicated to helping you own your career • Professional growth opportunities including paid education and certifications • Cutting-edge technology you can learn from • Rest and recharge with paid vacation and holidays