Own your opportunity to work with the largest government agency in the nation. Make an impact by advancing the Department of Defense’s mission to keep our country safe and secure.
Job DescriptionGeneral Dynamics IT has a current job opportunity for an Insider Threat Analyst at United States Central Command located on MacDill Air Force Base in Tampa, FL.
POSITION SUMMARY:
Provide analytical support to the USCENTCOM Insider Threat Program. Perform Tier 1-3 level review of insider case events; use data mining tools to collect and analyze large amounts of information to triage potential insider indicators and respond to confirmed incidents. Continually analyze data to further development of threat scenarios. Recommend changes to the UAM detection platform on policies, filters, and rules to improve event analysis. Maintain a strong working relationship with Command Insider Threat Working Group stakeholders and provide support to outside DoD investigating agencies on case inquiries.
PRIMARY RESPONSIBILITIES:
•Triage and analyze UAM alerts
•Document and report findings to impacted stakeholders
•Provide information to the UAM Lead for customer trending and reporting
•When needed, provide on call response as required by government lead
•Participate and provide support to the Command Insider Threat Working Group Stakeholders and other relevant meetings where Insider Threat Analyst representation is needed
•Provide recommendations on ways to improve the Insider Threat UAM detection platform
•Use advanced behavior analytics to detect compromised users and their activities and assess risk
BASIC QUALIFICATIONS:
•Bachelor's degree and 4+ years of professional experience; additional related years of experience is accepted in lieu of a degree
•At least 1 year of incident response / analysis experience / Special Security Office or OPSEC background
•At least 6 months of UAM or insider threat detection experience
•Must have certifications that satisfy DoD-8570 IAT Level II and CSSP Analyst.
•Demonstrated experience with Insider Threat detection capabilities.
•Demonstrated knowledge of network traffic and communications, including known ports and services.
•Demonstrated experience with MS Office Suite of Applications (Word, PowerPoint, Excel, Access, etc.)
•Demonstrated experience in coordinating with internal and external stakeholders, especially Law Enforcement and Counterintelligence
•Knowledge of incident handling procedures.
•Must be Top Secret/SCI eligible. TS/SCI clearance required.
PREFERRED QUALIFICATIONS:
•Completion of Center for Development of Security Excellence (CDSE) core Insider Threat training competencies
•Counter Insider Threat Professional Certification (Fundamentals or Analysis)
•Completion of the 40-hour Insider Threat Detection and Analysis or the Defense Insider Threat Management Analysis HUB Course
•Completion of vendor provided UAM Basic or Advanced Course.
•Understanding of core current cybersecurity technologies as well as emerging capabilities.
•Demonstrated understanding of the life cycle of cybersecurity threats (internal and external), attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
•Knowledge of computer security principles and DoD security protocols
•Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings. Comfortable with briefing senior government military and civilian leaders.
WHAT GDIT CAN OFFER YOU:
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional growth opportunities including paid education and certifications
Cutting-edge technology and the ability to make a real impact on the world around you.
Not sure this job’s the one for you? Check out our other openings at gdit.com/careers.
Do you have a friend or colleague this posting describes? Let them know about the opportunity by clicking “Share.”
#OpportunityOwned
#GDITCareers
#GDITLife,
#WeAreGDIT
#ARMA
#CENTCOMCITS
#GDITPRIORITY