This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Cyber Security Insider Threat Hunter Analyst
General Dynamics - Newington, VA
posted 3 months ago
About the position
As a Cyber Security Insider Threat Hunter Analyst at GDIT, you will play a crucial role in safeguarding the organization's critical assets by proactively searching for indicators of compromise through planned Threat Hunt missions. Your expertise in cyber security and insider threat hunting will be essential in analyzing raw data and identifying suspicious behavior that may indicate malicious activity. This position requires strong analytical skills, technical knowledge, and the ability to work collaboratively within a team to address security challenges.
Responsibilities
- Provide Cyber Security/Insider Threat Hunting expertise and deep analysis of raw data from assets supporting Network Security Services, Endpoint Security Services, and Cybersecurity Data Analysis Services.
- Proactively search and identify indicators of compromise and anomalous behavior indicative of malicious behavior that has not yet met the event/incident threshold.
- Assess data from multiple sources to identify suspicious behavior.
- Provide input to the daily CSOC Significant Activity Report, daily CSOC Operations Update, and Weekly CSOC Status Report.
- Identify potential conflicts with the implementation of any CND tools within the enterprise and develop recommendations to remediate these conflicts.
- Demonstrate systems experience using Security Information and Event Management (SIEM) and Incident Response analysis.
- Knowledge of Network Intrusion Detection System/Intrusion Prevention Systems (NIDS/IPS) and Host Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS).
- Knowledge of Security Orchestration Automation and Response (SOAR), Endpoint and Network Detection and Response (EDR/NDR), and User Behavior Analytics (UBA).
- Demonstrate strong analytical and problem-solving skills, leveraging interpersonal, organizational, writing, communications, and briefing skills.
- Work within a team environment to meet security challenges, documenting requirements and researching solutions.
Requirements
- 5+ years of related experience in Cyber Security and Insider Threat Hunting.
- Active TS/SCI clearance required.
- US Citizenship required due to the TS/SCI clearance requirement.
- Education: BS/BA degree or equivalent work experience and technical certifications/training.
- Required DoD 8570 certifications: CEH cert is required but will also consider CCSP, GSOC, CFR, GCIH, GCIA, and/or GSEC.
- Required skills: Communication, presentation, problem solving, analytical skills, detail-oriented, and knowledge of server and client operating systems.
Nice-to-haves
- Knowledge of current and emerging threats/threat vectors and vulnerability information dissemination sources.
Benefits
- 401K with company match
- Comprehensive health and wellness packages
- Internal mobility team dedicated to helping you own your career
- Professional growth opportunities including paid education and certifications
- Paid vacation and holidays
