Conducts the integration/testing, operations, and maintenance of multiple information security tools. Installs, configures, troubleshoots, and maintains server configurations to ensure their confidentiality, integrity, and availability. Manages accounts, firewalls, intrusion detection, and patches for security servers. Tests, implements, deploys, maintains, reviews and administers the infrastructure hardware and software that are required to effectively manage computer network defense services. Monitors network to actively remediate unauthorized or malicious activities. Implements and monitors necessary security controls to maintain an Approval to Operate (ATO). Verifies that application software/network/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations. Performs penetration testing as required for new or updated applications. Has a thorough understanding and practical expertise with Intelligence Community Directive 503 (ICD 503) and National Institute of Standards and Technology (NIST) Risk Management Framework.
Manage the planning, implementation, and configuration of cybersecurity tools for the enterprise; establish TTPs to maintain configuration control of tools
Oversee evaluation of systems/network security posture; interact closely with administrators/engineers to identify and solve problems pro-actively
Plan and conduct security authorization reviews and assurance case development for initial installation of software applications, systems, and networks
Provide detailed audit collection, reduction, and analysis reports with recommended courses of action for mitigation of potential customer impacts
Assess and implement security, audit collection, reduction, and analysis applications for the Enterprise; maintain 100% accountability of audit logs
Experience with Splunk Enterprise monitoring and/or administration required
Knowledge of Host Based Security System (HBSS) and Assured Compliance Assessment Solution (ACAS)/Nessus preferred
Knowledge of host and/or network intrusion detection system (IDS) configuration/tuning preferred
Must have an understanding of the Risk Management Framework (RMF)
Maintain a posture of readiness; remain agile to respond to emerging/changing customer requirements to include up to 20% travel
Participates in special projects as required.
ITIL v3 Certification preferred
DoDI 8570.01m Certification required (Security+ or equivalent)
For more than 50 years, General Dynamics Information Technology has served as a trusted provider of information technology, systems engineering, training and professional services to customers across federal, state, and local governments, and in the commercial sector. Over 40,000 GDIT professionals deliver enterprise solutions, manage mission-critical IT programs and provide mission support services worldwide. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
General Dynamics Information Technology