Cyber SOC Incident Detector (Nights 10-6 / Sun-Thu) - TS/SCI with Polygraph

Cyber SOC Incident Detector (Nights 10-6 / Sun-Thu) - TS/SCI with PolygraphUSA DC Washington - 200 MacDill Blvd (DCC174)General Dynamics Information TechnologyDelivering consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community.Type of Requisition:RegularClearance Level Must Currently Possess:Top Secret/SCIClearance Level Must Be Able to Obtain:Top Secret SCI + PolygraphPublic Trust/Other Required:NoneJob Family:Cyber SecurityJob Qualifications:Skills:Cybersecurity, MITRE ATT&CK Framework, SOC OperationsCertifications:NoneExperience:8+ years of related experienceUS Citizenship Required:YesJob Description:Own your career as a Cyber Incident Detector at GDIT. Here, you’ll have the opportunity to build strong lines of cyber defense using cutting-edge technologies. Your work in cyber security at GDIT will have an impact on securing our clients’ missions and ensuring we anticipate the threats of tomorrow.HOW A CYBER INCIDENT DETECTOR WILL MAKE AN IMPACTPerform forensic analysis of digital information and gather and handle evidence. Identify network computer intrusion evidence and perpetrators, and coordinate with other government agencies to record and report incidents.Take the lead in day-to-day monitoring for unusual activities, implement defensive protocols, and report incidents.Forensic analysis of digital information, Open-Source Intel (OSINT) review/monitoring, and pivoting/researching on previously reported Indicators of Compromise (IOCs).Participate in collaborative sessions with other CNDSPs and Intelligence Community (IC) agencies on malicious intrusions, attacks, or suspicious activities.Assist in the development of IOCs for active defensive countermeasures and passive detection signatures.WHAT YOU’LL NEED TO SUCCEED:Bachelor's Degree and 8+ years of relevant experience, equivalent combinations of education, certifications, and experience will be considered.DoD Approved Baseline 8570 IAT II (Sec+, CySA+, CND, etc.) certification required prior to start date.DoD Approved Baseline 8570 CSSP Analyst (CEH, CySA, GCIH, Cloud+, etc.) certification required prior to start date.GIAC Continuous Monitoring (GMON) or equivalent certification required within first 120 days of employment.Splunk Core User certification required within first 120 days of employment.Security Clearance Level: TS/SCI clearance and ability to obtain and maintain a Polygraph.REQUIRED SKILLS AND ABILITIES:Common knowledge of standard network infrastructure.Familiarity with monitoring emerging threats through Tools, Techniques, and Procedures (TTPs) and how they relate to the MITRE ATT&CK Framework.Good written communication skills to document and report IOCs.Meticulous eye for detail and ability to multitask in a fast-paced environment.Maintain knowledge of current cybercrime tactics.Location:On Customer SiteBolling AFB, Washington D.C.Reston, VAColorado Springs, COGDIT IS YOUR PLACE:401K with company matchComprehensive health and wellness packagesInternal mobility team dedicated to helping you own your careerProfessional growth opportunities including paid education and certificationsCutting-edge technology you can learn fromThe likely salary range for this position is $134,597 - $172,500. Salary will be set based on experience, geographic location, and possibly contractual requirements.Scheduled Weekly Hours:40Travel Required:Less than 10%Telecommuting Options:OnsiteWe are GDIT. A global technology and professional services company that delivers consulting, technology, and mission services to every major agency across the U.S. government, defense, and intelligence community.#J-18808-Ljbffr