Cybersecurity Analyst SME

Overview

GDIT is seeking a Security Operations Center Manager to support the Defense Manpower Data Center (DMDC) Cyber Primes program. As a SOC Manager, you will be part of a team responsible for securing DMDC and DHRA networks via the SOC.

The SOC is the central hub of cybersecurity event monitoring with incident detection, triage, and analysis, providing continuous monitoring and event analysis to quickly identify security concerns.

• Monitor, triage, and analyze security alerts and escalate to Incident Response within the DHRA area of responsibility.
• Support 24x7x365 cyber operations.
• Lead or coach team members; may serve as team or task lead; mentor less experienced professionals.
• Investigate, analyze, and respond to cyber incidents within a network environment or enclave.
• Use data from defense tools (e.g., IDS, firewalls, network logs) to analyze events and mitigate threats.
• Interpret, analyze, and report events and anomalies in accordance with directives; initiate, respond, and report incidents.
• Develop and maintain tactics, techniques, and procedures (TTPs) for the SOC; maintain process improvements.
• Manage cyber incidents including triage, communications, documentation, and response in accordance with DoW regulations and policies.
• Communicate summaries and presentations to leadership as needed.
• Manage tasks in accordance with DoW government contracts.

Location:

Alexandria, VA

Security Clearance Level: Active DoW Top Secret

• Citizenship: US Citizenship required for contract
• Certification:
  One of CCNA, CySA+, CFR, GCFA, GCIA, or GICSP
• Education:
  
  Bachelor’s degree or equivalent experience in Cybersecurity, Information Technology, Computer Science, or related field
• Experience:
  
  10+ years of cybersecurity experience
• Technical skills:
  • May serve as a team or task lead
  • May coach and provide guidance to less experienced professionals
  • Investigates, analyzes, and responds to cyber incidents
  • Uses data from cyber defense tools to analyze events and mitigate threats
  • Interprets, analyzes, and reports events and anomalies; maintains cybersecurity policies and access controls
  • Ensures plans, controls, processes, standards, policies, and procedures align with cybersecurity standards
  • Identifies security risks and recommends improvements
  • Develops techniques and procedures for risk assessments and audits; tests hardware, firmware, software for security impact; investigates and resolves incidents
  • Develops and maintains SOC TTPs and processes
  • Manages cyber incidents including triage and communication per DoW regulations
  • Communicates at all leadership levels
  • Manages tasks under DoW government contracts

• Security+: CISSP

The likely salary range for this position is $169,604 - $229,464. This is not a guarantee; salary will be based on experience, location, and contractual requirements and could fall outside this range.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans