General Dynamics Information Technology Principal Info Security Analyst (Incident Responder)-- TS/SCI -- Colorado Springs, CO in Colorado Springs, Colorado
As a trusted systems integrator for more than 50 years, General Dynamics Information Technology (GDIT) provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors. With approximately 40,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services worldwide.
Responsible for strengthening the defensive posture and cyber defense operational readiness of an IT Enterprise, our Enterprise Cyber Network Defense (ECND) program defends and protects Government assets from external Cyber Security attacks and Insider Threats that can potentially cause or create data, systems, networks, and personnel vulnerabilities.
As such, GD Information Technology (GDIT) seeks a Principal Information Security Analyst with advanced knowledge in applying in-depth sustainment support of enterprise network cyber defense capabilities to prevent sophisticated cyber threats and vulnerabilities, or detection of them when prevention fails.
Functional duties consist of:
Performing Computer Security Incident Response activities for a large organization, coordinates with other government agencies to record and report incidents.
Monitoring and analyzing Intrusion Detection Systems (IDS) to identify security issues for remediation.
Recognizing potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.
Analyzing and triaging of network anomalies that should be considered Events of Interest (EOI).
Providing basic assessment of the anomaly, designate it as an EOI and coordinate response with CND response team.
Communicating alerts to agencies regarding intrusions and compromises to their network infrastructure, applications and operating systems.
Ensuring the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.
Performing periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance.
Preparing incident reports of analysis methodology and results.
Providing guidance and work leadership to less-experienced technical staff members, and may have supervisory responsibilities.
Maintaining current knowledge of relevant technology as assigned
Participating in special projects as required.
May evaluate firewall change requests and assess organizational risk.
May serve as a technical team or task leader.
Position may require evening, weekend or shift-work (depending on operational tempo).
Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.
The contract position requires:
8 years of related data security administration experience.
A TS/SCI clearance
Candidate's CI poly obtainment and retainment.
An approved DoD 8570 IAT II certification prior to employment. Viable certifications that meet this requirement are Security+ CE, CCNA Security, CSA+, GICSP, GSEC, or SSCP. Most candidates obtain the Security+ CE certification.
The candidate to obtain an 8570 CSSP Incident Responder certification within six months from the date of hire. Viable certifications that meet this requirement are CEH, CFR, CSA+, GCFA, GCIH, or SCYBER.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
Number of Positions1
Job FunctionInformation Technology
Security Clearance LevelTop Secret/SCI with Polygraph
Full/Part TimeFull Time