Information Security Specialist
$116,979 - $138,000/Yr
GD Information Technology, Inc. - Springfield, VA
posted about 1 month ago
Full-time - Mid Level
Remote - Springfield, VA
10,001+ employees
About the position
As an Information Security Specialist at GDIT, you will play a crucial role in building robust cyber defenses using advanced technologies. Your work will directly impact the security of our clients' missions, ensuring that we are prepared for future threats. This position involves supporting the Department of Defense (DoD) across various regions in the Continental United States (CONUS), focusing on integrating cybersecurity into software and systems engineering processes.
Responsibilities
- Participate in software and systems engineering and research to develop new cybersecurity capabilities.
- Conduct comprehensive technology research to evaluate potential vulnerabilities in cyberspace systems.
- Design, develop, test, and evaluate information system security throughout the systems development life cycle.
- Test, implement, deploy, maintain, and administer infrastructure hardware and software.
- Conduct risk assessments and provide recommendations for application design and accreditation including ATO and eMASS.
- Manage security issues including architectures, firewalls, electronic data traffic, and network access.
- Utilize encryption technology and perform penetration and vulnerability analysis of security technologies.
- Participate in the design and development of new systems and applications for external customer enterprise-wide cyber systems and networks.
- Ensure the logical conversion of customer requirements into total systems solutions considering technical, schedule, and cost constraints.
- Provide architectural analysis and relate existing systems to future needs and trends.
- Embed advanced forensic tools for attack reconstruction and provide engineering recommendations.
- Develop and sustain Security Authorization or Assessment and Accreditation (A&A) for systems.
- Coordinate with customers and stakeholders to achieve realistic schedule milestones.
- Deliver required documentation and ensure Security Authorization documentation is updated as needed.
- Develop schedules and requirements to achieve Authority to Operate (ATO) and lead the team to successful ATO achievement.
- Collect and document relevant governing authority Security Controls.
- Develop Security/RMF Packages and perform modifications throughout the information system lifecycle.
- Collaborate with stakeholders to identify additional applicable security controls.
- Provide oversight and advisory activities as needed.
- Develop and deliver Plans of Actions & Milestones (POA&Ms) for each system as needed.
- Participate in project discussions and support stakeholder communications.
Requirements
- 8+ years of related experience in cybersecurity and information assurance.
- US Citizenship is required.
- Bachelor's degree or higher in a relevant field.
Nice-to-haves
- Security+ certification is required; preferred certifications include CISSP, CCSP, CE|H, ITILv4, AWS Cloud Practitioner, AWS Certified SysOps Administrator, Linux Essentials, MCTS, CCAP, CSCP, CSIS, CIOS, Cloud+, Network+, A+, Project+, HBSS, AES, SPLUNK, ACAS, and eMASS Certified.
Benefits
- 401K with company match
- Comprehensive health and wellness packages
- Internal mobility team dedicated to career development
- Professional growth opportunities including paid education and certifications
- Paid vacation and holidays
- Short and long-term disability benefits
- Life, accidental death and dismemberment, and critical illness insurance
