Cyber Security Analyst

Public Trust: None

Requisition Type: Regular

Your Impact

Own your opportunity to support our nation's defense. Make an impact by connecting and securing critical operations across the globe, keeping our country safe and secure.

Job Description

Advance your career while impacting our national security in cyber as an IT/Cyber Analyst at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.

Meaningful Work and Personal Impact
As a Cyber Security Analyst, the work you’ll bring a systems perspective to mission support for multiple Force Protection System (FPS) Family of Systems (FOS) to the IBD-SS program supporting the Warfighter. This role requires not just technical expertise, but the ability to understand interdependence, lifecycle impacts, and holistic security integration across complex systems.

We are seeking a highly skilled Cybersecurity Analyst to join our team who approaches cybersecurity as an integral part of a larger system of systems. The ideal candidate will have experience in vulnerability assessments, STIG/IAVM compliance and RMF 2.0 implementation, and support for system cybersecurity controls. You will collaborate with engineering teams, system administrators, and government stakeholders to ensure mission-critical systems meet all cybersecurity and accreditation requirements.

How the Cyber Security Analyst will make an impact

• Review Security Technical Implementation Guide (STIG) compliance for testing and reporting for systems post-installation.

• Report on IAVM (Information Assurance Vulnerability Management) compliance to ensure appropriate mitigation strategies are in place.

• Review, test, and implement the appropriate IAVA/B patches for the system as required to maintain compliance and address vulnerabilities

• Conduct software and system attack surface analysis to identify security risks and areas for improvement across the system.

• Perform software vulnerability assessments to identify and mitigate security gaps throughout the system lifecycle.

• Engineer and coordinate solutions to ensure Authorization to Operate (ATO) compliance with updates and required changes for existing systems.

• Execute and analyze system baseline vulnerability scans using NESSUS or similar tools.

• Record, report, and remediate identified vulnerabilities, ensuring benefit to operations, logistics and engineering as well as compliance with organizational and federal standards.

• Work with cross-functional teams to validate and verify effective mitigation actions for system vulnerabilities.

• Apply Risk Management Framework (RMF) 2.0 security controls to systems to achieve and sustain system accreditation and support continuous monitoring

• Develop and document system Test Plans and Test Reports in support of cybersecurity operations and assessments.

• Provide support to government-sponsored Security Control Assessors-Vulnerability (SCA-V) and Security Control Assessors-Onsite (SCA-O) teams during cybersecurity testing, verification, and system compliance assessments.

• Developing and maintaining cybersecurity Test Plans and Test Reports with knowledge of and preferably experience in developing system-level engineering solutions to support ATO compliance.

• Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives with supervision including responding and reporting as well as suggesting new processes or procedures that benefit the full system.

• Reviews cybersecurity plans, controls, processes, standards, policies, and procedures that apply to pertinent systems are aligned with cybersecurity standards

What You’ll need to succeed
Bring your technology experience and drive for systemic innovation to GDIT. Cyber Security Analyst must have:

• BS/BA with 5-8 years of experience. Additional years of experience may be considered in lieu of the degree. (9 years without BS/BA; 10 years without HS)

• Security clearance level: Secret Clearance

• Exceptional organizational skills for records and documentation management.

• Proficiency in applying and managing STIG/IAVM compliance activities in complex network and system environments.

• Hands-on experience with vulnerability scanning tools, such as NESSUS or equivalent, and interpreting results to develop actionable remediation plans.

• Strong understanding of Risk Management Framework (RMF) 2.0 processes, security controls, and implementation practices.

• Experience with IAVA/B review

• Ability to perform attack surface analysis for software and systems, analyzing potential weaknesses and offering mitigation strategies.

• Strong coordination and communication skills for working in and with cross-functional teams.

• On Customer Site

• Travel Requirement CONUS/OCONUS determined by mission requirements

• Certification: DoD 8140 or DoD 8570 IAT-II baseline (e.g., Security+ CE) Certification or willing to obtain within three months of your start date

• Certification Requirement subject to change determined by contractual requirements

GDIT is your place

At GDIT, the mission is our purpose, and our people are at the center of everything we do.

• Growth: AI-powered career tool that identifies career steps and learning opportunities

• Support: An internal mobility team focused on helping you achieve your career goals

• Rewards: Comprehensive benefits and wellness packages, 401K with company match, competitive pay and paid time off

• Community: Award-winning culture of innovation and a military-friendly workplace

Work Requirements

Years of Experience

5 + years of related experience

* may vary based on technical training, certification(s), or degree

Certification

Travel Required

10-25%

Citizenship

U.S. Citizenship Required