Principal Information Security Analyst - Military veterans preferred

2018-11-10
General Dynamics Information Technology (www.gdit.com)
Other

/yr

  full-time   employee


Fairfax
Virginia
United States

IMPACTFUL WORK. SMART SOLUTIONS. MEANINGFUL CAREERS. Come join a fortune 500 company that touches the lives of millions in the Health Care Community. If you are interested in Big Data and Health Care, we can provide the perfect combination for you! Our office has a comfortable dress code and our team spirit is evident in our everyday work environment.  We seek a candidate to perform the following tasks:

  • Receive security alerts, bulletins, and warnings (for example, EWIN notices) from customer.
    • Review information for appropriate action.
    • Disseminate the information to our data center and subcontractors.
    • Track actions taken.
    • Follow up with customer with results of our activities.
  • Participate in customer incident response process.
    • Provide guidance regarding specific incidents.
    • Perform forensics as necessary.
    • Review incident reports.
  • Monitor and analyze Intrusion Detection Systems (IDS) and/or event logs to identify security issues for remediation.
  • Develop and maintain assigned security related deliverables (e.g., System Security Plan, Boundary Document, Contingency Plan, etc.) and security related standard operating procedures (SOPs) as required.
  • Works with security team to determine potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.
  • Evaluate firewall and other system change requests and assess organizational risk.
  • Communicates alerts to agencies regarding intrusions and compromises to their network infrastructure, applications and operating systems.
  • Assists with implementation of counter-measures or mitigating controls.
    Coordinate quarterly vulnerability scanning activities with GDIT data centers and subcontractors.
  • Create and maintain Plans of Action & Milestones (POA&Ms) to address assessment findings, vulnerabilities, and other discovered system weaknesses.
  • Create change tickets to address POA&M items and other security-related system issues (e.g., vulnerability remediation, configuration change(s), documentation updates, etc.).
  • Create evidence packages showing remediation of POA&M items and upload to the customer’s Cyber Security Assessment and Management (CSAM) system.
  • Performs periodic and on-demand system audits ,vulnerability, and risk assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance.
  • Prepares and submits incident reports of analysis methodology and results. May contribute to root cause analyses.
  • Provides guidance and work leadership to less-experienced technical staff members.
  • Maintains current knowledge of technology, vulnerabilities, and threats as assigned and relevant to the target information system.
  • Participates in change control boards for the relevant information system(s).
  • Participates in special projects as required.
  • Provides guidance and work leadership to less-experienced technical staff members, and may have supervisory responsibilities.
  • May serve as a technical team or task leader.

Qualifications:

  • 8-10 years of related experience in data security administration.
 
 

For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

Education:

  • Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.