Type of Requisition:

Regular

Clearance Level Must Currently Possess:

Other

Clearance Level Must Be Able to Obtain:

None

Public Trust/Other Required:

MBI (T2)

Job Family:

Cyber Security

Job Qualifications:

Skills:

Cyber Defense, Cybersecurity, SIEM Tools

Certifications:

None

Experience:

3 + years of related experience

US Citizenship Required:

Yes

Job Description:

Mid Cybersecurity Analyst- SOC

Job Description: 

Lead the analysis and investigation of information security events (IDS/DLP/SIEM/etc.) in a 24X7 SOC environment to detect, verify, and respond swiftly to cyber threats and remove false positives. Serve as a technical point of escalation and provide mentoring for junior Security Operations Center (SOC) analysts. Responsible for investigating incidents, analyzing attack methods, researching new defense techniques and tools, developing security policy, and documenting procedures for SOC. Familiar with malware analysis and other attack analysis to extract indicators of compromise. Perform data security event correlation between various systems. Prepare reports, summaries, and other forms of communication that may be both internal and client-facing. Maintain familiarity with industry trends and security best practices. Ensure compliance with SLA, process adherence, and process improvisation to achieve operational objectives. 

General Skills: 

Strong knowledge of TCP/IP protocols, basic networking, etc. Ability to parse/analyze network logs (proxy, firewall, antivirus, email, etc.) PCAP analysis (Wireshark familiarity, Trellix) IDS (know what an IDS is/does. Snort, Suricata, etc.) Familiarity with typical attack/exploit techniques (OWASP top 10, what a command injection looks like, how to identify malicious code on a webpage, how to read obfuscated code etc.) Significant expertise in SIEM (Splunk, ArcSight, Crowdstrike, etc.) Threat Intelligence (Open source feeds, IOCs, Known APT TTPs, etc.) Threat Hunting (Know what to look for, analyst mindset) Scripting (Ideally Python, PowerShell, Bash) Command line Interface Linux (Just the basics necessary, should at least know concepts like what is root and basic directory structure) Knowledge of Enterprise Windows configurations (Mainly Active Directory, how it works, why it’s essential to monitor/protect) Written Communications (Analyst will be interacting with other departments in CTFC and often with those outside the org via email) 

In addition, the following skills are a strong plus: 

Working knowledge of web proxies, firewalls, HTTP status codes, proxy configuration, etc. Ability to parse network logs to identify network anomalies/proxy issues Expertise with open-source intelligence gathering tools like virustotal, joesandbox, robtex, whois, urlscan, etc.) Attention to detail Good Interpersonal skills (Can be very customer-facing at times, a large portion of our calls are for PERs, and there is an entire inbox dedicated to troubleshooting user complaints) Basic understanding of HTML/javascript/how a web page works  

Any of the following certifications are a plus: 

CISSP, ITIL, CEH, GIAC, GSEC, SANS, GCIH, SEC504, GCED, SEC501 

GDIT IS YOUR PLACE:

● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
● Rest and recharge with paid vacation and holidays **(remove if not eligible)**

The likely salary range for this position is $102,000 - $138,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:

40

Travel Required:

Less than 10%

Telecommuting Options:

Hybrid

Work Location:

Any Location / Remote

Additional Work Locations:

USA MD Lanham

Total Rewards at GDIT:

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year. Paid leave and paid holidays are prorated based on the employee’s date of hire. The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at

gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans