Job Description

Public Trust: Other

Requisition Type: Regular

Your Impact

Own your opportunity to work alongside federal civilian agencies. Make an impact by providing services that help the government ensure the well being of U.S. citizens.

Job Description

Cyber Security Analyst – SME (CTI/Digital Forensics)

GDIT is seeking a Cyber Security Analyst - SME with an active Public Trust  clearance to work for our client at the Centers for Disease Control and Prevention (CDC) Cybersecurity Program Office (CSPO) in Atlanta, GA. At GDIT we deliver groundbreaking analytics and innovation solutions that provide an information advantage contributing to the mission and operational success of our federal government agencies. The Cyber Intelligence Analyst will perform a variety of command, control, coordination, communication, monitoring, and analysis roles.

The Cyber Security Analyst - SME is responsible for protecting the company from dynamic and evolving threats. Conducts cyber threat intelligence, threat hunting, enterprise forensic services, and cyber-related SCRM activities. Applies diverse digital forensics and related methodologies in both proactive and reactive scenarios to detect, analyze, and document activities detrimental to enterprise cybersecurity with a primary focus on advanced threat actors and insider threats. Effectively applies Supply Chain Risk Management (SCRM) related methodologies and knowledge to accomplishing SCRM related tasks

WORK SCHEDULE :

• This will be an 80-hour bi-weekly schedule from 8a-5p
• You will work within a team to provide support to a 24x7x365 Operation, including Federal Holidays.

QUALIFICATIONS :

Required Skills and Experience:

• Active Public Trust clearance required.
• 5+ years of Cyber Threat Intelligence, Threat Hunting and Digital Forensics experience.
• An understanding of cloud computing models, technologies, and concepts.
• Experience of ingestion of cyber news feeds, signature updates, incident reports, threat briefs, and vulnerability alerts from external sources, and determine its applicability to the environment.
• Develop and maintain detailed profiles of known adversaries, their Tactics, Techniques, and Procedures (TTPs), and indicators of compromise (IOCs).
• Expert Knowledge and skills in, but not limited to the following: SIEM (Splunk Enterprise), Packet capture, Open-source tools, Endpoint Detection and Response (EDR) tools (CrowdStrike Falcon), Trellix FireEye, Microsoft 365 Security/Microsoft Azure, Mandiant Advantage.
• Prepare and Presentation skills.
• Experience developing SCRM Plan.
• Experience identifying and addressing weaknesses or deficiencies in the supply chain elements and processes.
• Experience developing enterprise-level cyber threat hunting program for on-premises and cloud.
• Help define management reporting requirements and metrics, including risk appetite metrics and key risk indicators.
• Responsible for providing multi-agency 24x7x365 cybersecurity event monitoring and expert cyber threat analysis management.
• Memorialize examination findings in incident ticket or a formal report, as required.
• Provide advice on matters related to Cyber Intel and Digital Forensics, as appropriate.
• Comptia Security+ Certification, CEH
• Must have experience working at the CDC and currently supporting the CDC Attack Surface Management program.

Desired Skills and Experience:

• Familiarity with cyber security of Intelligence Community networks and operations.

Preferred key industry certifications such as CEH, CISSP, CISA, CISM, GCIH.

Work Requirements

Years of Experience

5 + years of related experience

* may vary based on technical training, certification(s), or degree

Certification

Travel Required

Less than 10%

Citizenship

U.S. Citizenship Required

Job Tags

Similar Jobs