Cyber Capability Developer - FBI ECS SME

Type of Requisition:

Regular

Clearance Level Must Currently Possess:

Top Secret

Clearance Level Must Be Able to Obtain:

Top Secret/SCI

Public Trust/Other Required:

None

Job Family:

Cyber Security

Job Qualifications:

Skills:

Cyber Defense, Cyber Threat Intelligence, Incident Response, Security Information and Event Management (SIEM)

Certifications:

None

Experience:

10 + years of related experience

US Citizenship Required:

Yes

Job Description:

CYBER CAPABILITY DEVELOPER SME

Own your career as a Cyber Capability Developer SME at GDIT. Here, you’ll have the opportunity to build strong lines of cyber defense using cutting-edge technologies. Your work in cyber security at GDIT will have an impact on securing our clients’ missions and ensuring we anticipate the threats of tomorrow. At GDIT, people are our differentiator. As a Cyber Capability Developer SME, you will help to ensure today is safe and tomorrow is smarter. Our work depends on you joining our team.

THE PROGRAM:

Work on the program responsible for continually monitoring, detecting, and responding to security incidents that may occur on the networks, IT services, and systems of a large Federal agency where you will be part of a centralized command and control environment, ensuring seamless collaboration among security analysts, threat intelligence teams, streamlined incident response workflows, collaborative intelligence-sharing platforms, and stakeholders in addition to facilitating the collection and correlation of data from various sources, supporting the mission to detect, respond to, and mitigate cyber threats promptly.

You will be part of the watch floor team which operates around the clock, 24/7, 365 days a year, to ensure the timely detection and resolution of potential security incidents, thereby minimizing the impact of cyber threats on the organization. The watch floor team is responsible for actively detecting, monitoring, preventing, and analyzing real-time cybersecurity information, events, and threats. Serving as the operational hub, the watch floor plays a critical role in safeguarding the confidentiality, integrity, and availability of the organization's information assets.

 KEY RESPONSIBILTIES

• Collaborate with the Watch Floor Team to enhance incident detection and response
• Develop, implement, and maintain cybersecurity strategies, policies, procedures, and incident response plans.
• Investigate security incidents and provide guidance and recommendations
• Prepare threat assessments and vulnerability analyses to identify potential risks.
•  Utilize Splunk Enterprise Security and Microsoft Sentinel for monitoring and analyzing security events.
• Training and mentorship on cybersecurity best practices.
• Maintain currency on the latest cybersecurity trends, threats, and technologies.

WHAT YOU’LL NEED TO SUCCEED:

12+ years’ experience with

• Leading the development and implementation of advanced cybersecurity strategies and procedures to enhance incident detection and response capabilities.
• Cybersecurity principles, practices, and frameworks, including Incident Response Frameworks, Executive Orders and National Cybersecurity Strategies, CIS Controls, ISO/IEC 27001, NIST Cybersecurity Framework and Federal Information Security Management Act (FISMA)
• Compliance requirements and regulations relevant to cybersecurity, such as GDPR, HIPAA, and PCI DSS, ensuring adherence to industry standards
• Security information and event management (SIEM) tools
• Collaboration with analysts and other security stakeholders to understand the organization's security needs and translate them into actionable use cases
• Documentation skills to create and maintain comprehensive incident response procedures, playbooks, and detailed reports on security incidents

● Software Experience

• Splunk Enterprise Security Software (required)
• Security information and event management (SIEM) experience (required) with Microsoft Sentinel Software (preferred)

● Certifications (one of the following is preferred)

• GIAC Continuous Monitoring (GMON)

• GIAC Certified Incident Handler (GCIH)

• GIAC Certified Forensic Analyst (GCFA)

• GIAC Certified Intrusion Analyst (GCIA)

• GIAC Network Forensic Analyst (GNFA)

● Education: Technical Training, Certification(s) or Degree/Experience:

Minimum Education: Bachelors in Cybersecurity, Information Technology or a related field with a minimum of 12 years’ experience.

Substitutions Allowed: No Degree- 16 years; Associates- 14 years; Master's- 10 years; Ph.D.- 8 years

● Security Clearance Level:

Top Secret (TS) level with the ability to obtain access to Sensitive Compartmented Information (TS/SCI)

● Location: Onsite

● US Citizenship Required

GDIT IS YOUR PLACE:
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
● Rest and recharge with paid vacation and holidays

The likely salary range for this position is $160,048 - $216,536. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:

40

Travel Required:

Less than 10%

Telecommuting Options:

Onsite

Work Location:

USA AL Huntsville

Additional Work Locations:

USA WV Clarksburg

Total Rewards at GDIT:

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

We connect people with the most impactful client missions, creating an unparalleled work experience that allows them to see their impact every day. We create opportunities for our people to lead and learn simultaneously. From securing our nation’s most sensitive systems, to enabling digital transformation and cloud adoption, our people are the ones who make change real.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans