Security Analyst Advisor

Company: General Dynamics Information Technology
Location: Bethesda
Posted on: May 15, 2020

Job Description:

Type of Requisition:RegularClearance Level Must Currently Possess:NoneClearance Level Must Be Able to Obtain:NoneSuitability:Agency SpecificPublic Trust/Other Required:SSBI (T5)Job Family:Cyber SecurityJob Description:General Dynamics Information Technology is actively looking for a Security Analyst Sr. Advisor with Nessus and Splunk toolset experience. The Analyst will be part of a team that develops and operates security alerts within the robust National Institutes of Health (NIH) TOC team. As a key participant within a security operations maturity model assessment team, you will share responsibilities for conducting FISMA-compliant Incident response gap analysis. You will also share in responsibilities for maintaining security systems and conducting security operations for accredited infrastructures and applications. Direct responsibilities will be based on your greatest strengths and interests.In this position, you will have the opportunity to directly impact the lives of millions of Americans by working on systems that increase access to medical research and improves health outcomes across the cancer, opioid and infectious disease spectrum.-- The ideal candidate will be someone who is looking for continual growth, can think strategically and perform tactically, and mostly importantly, wants to make a positive difference to the people around them.RESPONSIBILITIESThe information security professional will be part of a team involved in the security alert analysis, and maintenance of the toolsets for numerous FISMA systems for a federal health care agency. Specific responsibilities include:Provides basic Monitoring and Analysis support of computer security eventsDetect Active ThreatsResponse PlanningOptimizing Incident Alert ThresholdsImprove Mean Time to RemediatePerform escalation assistance in alerts, --validation and root cause analysisReport computer security events, in accordance with established processes and proceduresIDS monitoring and analysis, network traffic and log analysis, prioritization and differentiation between potential intrusion attempts, determination of false alarms, insider threat and APT detection, and malware analysis/forensics.Create and track investigations to resolution.Compose security alert notifications. Advise incident responders in the steps to take to investigate and resolve computer security incidents.Oversight, monitoring and tuning of security systems, including the following: Intrusion Detection & Prevention Systems; Endpoint Security Systems; Security Information and Event Management Systems; Web Proxy Systems; Log Management Systems; Firewall Systems; Full Packet Capture Systems; Data Loss Prevention Systems; Object Level Auditing Systems; Endpoint Forensics; Wireless LAN Monitoring Systems; Database Security Monitoring; Compliance & Threat Modeling Systems.Develop and maintain security policies, procedures, Run Book and Incident Management Plan. Manage consistent daily, weekly and event-based reporting, and manage knowledge base for sharing and transfer of experience.Perform gap analysis and provide strategic and tactical recommendations on security issues, and scale systems to take into account new threat or devices and valuate and contribute to the security posture of the organization.Required Skills and ExperienceBachelor's Degree in Computer Science or a related technical discipline, and 10+ years of experience or the equivalent combination of education, professional training or work experienceMust be able to obtain and maintain a Public Trust Clearance.1 plus years of related experience with Splunk and/or SIEM technologies.--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------Desired ExperienceExperience working in a SOC environment is desiredMaster's Degree Certification (CISSP) or (CEH)Scheduled Weekly Hours:40Travel Required:NoneTelecommuting Options:Some Telecommuting AllowedWork Location:USA MD BethesdaAdditional Work Locations:We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

Keywords: General Dynamics Information Technology, Bethesda , Security Analyst Advisor, Professions , Bethesda, Maryland