Own your opportunity to work alongside federal civilian agencies. Make an impact by providing services that help the government ensure the well being of U.S. citizens.
Job DescriptionGDIT is looking for a skilled and detail-oriented Cybersecurity Technical SME to join our team. The Cybersecurity Technical SME will play a key role in supporting daily security operations, monitoring security feeds, and responding to identified vulnerabilities within the organization’s infrastructure. This role will focus on leveraging industry-leading security tools and collaborating with cross-functional teams to ensure the integrity of our systems and data.
The ideal candidate will have experience working with a variety of cybersecurity technologies, an analytical mindset, and the ability to identify, track, and assist in remediating potential security risks. As part of a dynamic team, the Cybersecurity Technical SME will help safeguard the organization’s digital assets while contributing to the continuous improvement of our cybersecurity posture.
HOW YOU WILL MAKE AN IMPACT:
Security Monitoring & Incident Detection:
Monitor security alerts and feeds from various tools (e.g., Tenable, Splunk UF, CrowdStrike, Trellix, Armis, ExtraHop) to identify and investigate potential security incidents or vulnerabilities.Collaborate with the Cybersecurity Operations Lead to escalate incidents and assist in the resolution of security issues in real-time.Vulnerability & Risk Management Support:
Coordinate with vendors to perform system scans on the Oracle Cloud environment for Assessment and Authorization and continuous monitoring efforts to include but not limited to: network devices, servers, databases, and web servicesAssist in tracking and documenting vulnerabilities, their remediation status, and the corresponding risk level.Help develop CI/CD pipeline risk management processCoordinate across teams to ensure independent assessments are performed and properly coordinated with during Cyber IV&VData Analysis & Reporting:
Analyze security data to identify trends, patterns, and anomalies that may signal security risks or areas for improvement.Help prepare reports and dashboards to provide insights into security posture, incident trends, and ongoing mitigation efforts, working closely with the Cybersecurity Operations Lead.
Tool Maintenance & Configuration:
Ensure STIG Baseline is maintained and work closely with vendor to verifyCollaborate with other team members to ensure the continuous monitoring and fine-tuning of security systems.Collaboration & Communication:
Communicate findings to other internal teams regarding vulnerabilities, incidents, or security concerns.Work with cross-functional teams, including engineering and IT, to ensure security tools and processes are effectively integrated and maintained.Documentation & Process Improvement:
Maintain comprehensive documentation of security incidents, vulnerabilities, and risk assessments for future reference and compliance.Assist in the development and improvement of cybersecurity policies, procedures, and workflows to enhance security operations.WHAT YOU’LL NEED TO SUCCEED
Requirements:
Bachelor of Science in Information Technology, Cybersecurity, Data Science, Information Systems, Computer Science, or years of equivalent experience10+ years of experience in cybersecurity operations, with a focus on security monitoring, vulnerability management, and incident responseHands-on experience with cybersecurity tools such as Tenable, Splunk UF, CrowdStrike, Trellix, Armis, and ExtraHopStrong understanding of network security, cloud security (especially within Oracle Cloud), and endpoint protectionFamiliarity with security monitoring, alerting, and ticketing systemsAbility to analyze security logs, identify patterns, and assist in risk assessment and mitigationAbility to obtain a Public Trust security clearanceAbility to travelPreferred Qualifications:
Certifications such as CompTIA Security+, Certified Ethical Hacker (CEH), or similar cybersecurity-related certificationExperience working in an enterprise environment with a focus on cloud security and large-scale infrastructuresKnowledge of incident response methodologies and NIST, FISMA or other regulatory frameworksDetail oriented and strong problem-solving and analytical skills and a proactive approach to identifying and addressing security challengesStrong written and verbal communication skills, with the ability to present technical data to non-technical stakeholdersAbility to work collaboratively in a fast-paced environment and manage multiple prioritiesGDIT IS YOUR PLACE:
Full-flex work week to own your priorities at work and at home401K with company matchComprehensive health and wellness packagesInternal mobility team dedicated to helping you build your skills and own your careerProfessional growth opportunities including paid education and certificationsCutting-edge technology you can learn fromRest and recharge with paid vacation and 10 company-paid holidays#IHSJobs
#GDITFedHealth