INFORMATION SECURITY ANALYST SR PRINCIPAL

Members of the ISSO team support the customer and their assessment and authorization (A&A) of critical systems, detection of adversary behavior, and improving the defensive posture of their information systems. The successful candidate will use various tools and methodologies to evaluate the state of systems and applications for vulnerabilities, verify protection against adversary intent, and evaluate cyber security processes to protect and defend against adversaries.  

KEY RESPONSIBILITIES 

Overseeing the security and coordinating risk management by identifying requirements for documentation with system categorization, the System Security Plan (SSP), and systems risk assessment as required under NIST 800-53/53A. 

Function as the go-to person for security questions and needs while supporting the customer in-house as well as external stakeholders. 

Assessing system compliance with NIST requirements and identifying vulnerabilities in systems and evaluating planned remedial actions based upon those requirements.  

Participating in change management by reviewing change requests and assessing the security impact of proposed changes and coordinating those changes with the ISSM. 

Work closely with stakeholders, developers, and external teams including customer security managers (ISSMs), organizational leadership, and key personnel to maintain security posture.  

EDUCATION AND EXPERIENCE 

Bachelors degree in computer engineering, compute science, cybersecurity, or a similar degree, or 5-8 years of relevant work experience. 

5 years of demonstrated cybersecurity expertise.  

REQUIRED QUALIFICATIONS 

Experience assisting the customer with decisions impacting the security posture and compliance of their systems and networks with requirements as documented in NIST 800-53 and its revisions.  

Verbal and written communication skills that demonstrate technical cybersecurity concepts in a clear and concise manner.  

Support control implementation assessment and reporting and monitoring process using cybersecurity and assessment management systems. 

Ability to work both independently and in a team environment. 

DESIRED QUALIFICATIONS 

Demonstrated history of technical aptitude with vulnerability and risk assessment tools 

Strong understanding of methodologies for researching and documenting software and hardware vulnerabilities 

Demonstrated skill documenting process and procedures in CONOPS, system security, contingency, configuration management and other plans 

Knowledge of the customer’s organization, network systems, processes and procedures 

GDIT IS YOUR PLACE
At GDIT, the mission is our purpose, and our people are at the center of everything we do.
● Growth: AI-powered career tool that identifies career steps and learning opportunities
● Support: An internal mobility team focused on helping you achieve your career goals
● Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
● Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY
Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.