SOC Content Manager

Type of Requisition:

Regular

Clearance Level Must Currently Possess:

Other

Clearance Level Must Be Able to Obtain:

None

Public Trust/Other Required:

MBI (T2)

Job Family:

Cyber Engineering

Job Qualifications:

Skills:

Cyber Defense, Security Information and Event Management (SIEM), Security Tools, SOC Operations, Splunk Enterprise Security

Certifications:

None

Experience:

8 + years of related experience

US Citizenship Required:

Yes

Job Description:

SOC Content Manager

Own your career as a SOC Content Manager at GDIT. Here, you’ll have the opportunity to build strong lines of cyber defense using cutting-edge technologies. Your work in cyber security at GDIT will have an impact on securing our clients’ missions and ensuring we anticipate the threats of tomorrow.

At GDIT, people are our differentiator. As a SOC Content Manager you will help ensure today is safe and tomorrow is smarter.

Job Description:

Support for correlating data feeds includes analyzing data feeds and logs to correlate data with known threats and incidents. Services include building, implementing, and refining event correlation rules, logic, content, and analysis techniques that will enable SOC personnel to correlate events and security incidents with specific sources, such as individuals, threat actors, IT systems, devices, and IP addresses. Support also includes performing correlation activities and

trend analysis to discover attack patterns and assess the risks and potential exposure of client assets.

Job Responsibilities:

1. Analyze incoming data feeds and system logs.

2. Correlate data with known cyber threats, incidents, and vulnerabilities.

3. Analyze trends to identify attack patterns and assess risks posed to client assets.

4. Develop and enhance correlation rules, logic, and analysis techniques for associating cybersecurity incidents with specific sources such as individuals, threat actors, IT systems and devices, and IP addresses.

5. Develop, maintain, update, document scripts, managed and unmanaged codebase in support of SOC operations.

6. Tuning the Security Information and Event Management (SIEM) and intrusion detection system/intrusion prevention system (IDS/IPS) events to minimize false positives.

7. Authoring and maintaining custom SIEM content.

WHAT YOU’LL NEED TO SUCCEED:
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience).
- Familiarity with basic networking concepts (e.g., TCP/IP, DNS, firewalls).
- Understanding of common cybersecurity threats and attack techniques (e.g., phishing, malware, brute force attacks).
- Basic knowledge of security tools and technologies (e.g., SIEM, Splunk, IDS/IPS, firewalls, endpoint protection).
- Strong analytical and problem-solving skills with the ability to work in a fast-paced environment.

Required Skills and Abilities:

- Expert with Security Information and Event Management (SIEM) tools such as Splunk.

Preferred:
- Relevant cybersecurity certifications such as CompTIA Security+, Certified Ethical Hacker (CEH), or GIAC Certified Incident Handler (GCIH).
- Familiarity with incident response procedures and frameworks such as NIST, MITRE ATT&CK, or SANS.

Skills and Competencies:
- Attention to Detail: Ability to spot anomalies in security logs and alerts that could indicate potential threats.
- Communication: Strong verbal and written communication skills, with the ability to document incidents clearly and escalate issues
effectively.
- Teamwork: Willingness to collaborate with senior analysts and cross-functional teams.
- Learning Aptitude: Eagerness to learn and stay up-to-date on cybersecurity trends and best practices.

- Location: Remote now but eventually be onsite DMV area
- US Citizenship Required

GDIT IS YOUR PLACE:
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
● Rest and recharge with paid vacation and holidays

The likely salary range for this position is $204,425 - $276,575. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:

40

Travel Required:

Less than 10%

Telecommuting Options:

Hybrid

Work Location:

USA MD Lanham

Additional Work Locations:

Total Rewards at GDIT:

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at

gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans