Principal Info Security Analyst (Defense Counter Measures) -- TS/SCI

General Dynamics Information Technology
Washington, DC
May 17, 2018
May 21, 2018
Full Time
As a trusted systems integrator for more than 50 years, General Dynamics Information Technology (GDIT) provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors. With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.Responsible for strengthening the defensive posture and cyber defense operational readiness of an IT Enterprise, our Enterprise Cyber Network Defense (ECND) program defends and protects Government assets from external Cyber Security attacks and Insider Threats that can potentially cause or create data, systems, networks, and personnel vulnerabilities. As such, GD Information Technology (GDIT) seeks a Principal Information Security Analyst with advanced knowledge in applying in-depth sustainment support of enterprise network cyber defense capabilities to prevent sophisticated cyber threats and vulnerabilities, or detection of them when prevention fails.Experience in Pearl-Compatible Regular Expressions (PCRE), Linux/Centos command line interface and visual editors (Nano and/or VIM) is highly-desired. Functional duties consist of:Performing Enterprise Defense Countermeasure (DC) activities and coordination with other government agencies to record and prepare incident reports and analysis methodology and results.Monitoring and analyzing signature alerts from Intrusion Detection/Prevention Systems (IDS/IPS) for false positives.Providing technical enforcement of organizational security policies. Providing "tune-or-drop" recommendations towards the DC team's Signature Lifecycle Review procedure.Provide insight to Detection and Response teams on signature functionality and providing signature tuning as needed. Performing periodic and on-demand system audits and vulnerability assessments, including user accounts, applications access, file system and external Web integrity scans to determine compliance.Providing guidance and work leadership to less-experienced staff.Communicating with customers and teammates clearly and concisely.Maintaining current knowledge of relevant technology as assigned and may have supervisory responsibilities.Participating in special projects as required.May serve as a technical team or task leader.Position may require evening, weekend or shift-work (depending on operational tempo).#ISDCJ #DpostThe contract position requires:8 years of related data security administration experience.A TS/SCI clearanceCandidate's willingness to obtain and maintain CI Poly.An approved DoD 8570 IAT II certification prior to employment. Viable certifications that meet this requirement are Security+ CE, CCNA Security, CSA+, GICSP, GSEC, or SSCP. Most candidates obtain the Security+ CE certification.The candidate to obtain an 8570 CSSP Incident Responder certification within six months from the date of hire. Viable certifications that meet this requirement are CEH, CFR, CSA+, GCFA, GCIH, or SCYBER.GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.WIIS14

Similar jobs