Tier I Security Operations Center (SOC) Analyst

Advance your career while impacting our national security in cyber as a Tier I Security Operations Center (SOC) Analyst at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.

Technology Shared Services (TSS) is looking for a Tier I Security Operations Center (SOC) Analyst to support the Virginia Information Technology Agency (VITA). As a member of the 24x7x365 TSS SOC team, the Tier I Security Operations Center (SOC) Analyst. will be responsible for performing initial triage and escalation of security alerts from hardware, software, intelligence sources, virtual systems, and virtual applications. As a SOC Analyst, the aptitude and flexibility to quickly learn and utilize third party toolsets will be an essential part of securing our client environments. This role will be hybrid in Bossier City, LA.

RESPONSIBILITIES

As a Tier I Security Operations Center Analyst you will:

• Provide technical support on event network security logs and trend analysis.
• Detect the full spectrum of known cyberattacks (e.g., DDoS, malware, phishing, others).
• Uncover and pinpoint security violations of compromised systems and devices
• Correlate security events from various capabilities to identify attacks and breaches.
• Analyze and act on intelligence information to secure customer networks and devices
• Observe, document and report actions taken by malicious actors in customer networks.
• Maintain a current understanding of the best practices and strategies used in cyber security.
• Motivate self and co-workers to expand knowledgebase and capabilities.

REQUIRED QUALIFICATIONS

You MUST have:

• Technical Training, Certification(s) or Degree, 0+ years of experience or equivalent years of experience
• A qualifying certification to meet DoD CSSP Analyst requirements. (CEH, CFR, CCNA Cyber Ops, CCNA-Security, CySA+, GCIA, GCIH, GICSP, Cloud+, SCYBER, PenTest+)
• Ability to obtain and maintain CompTIA CySA+, Splunk Core Certified User and Splunk Core Certified Power User certification (within 6 months of hire)

PREFERRED QUALIFICATIONS

Even BETTER if you have:

• 1+ years of relevant experience
• Certification(s) and/or experience with any SIEM or log aggregation system
• Strong analytical, organizational and project management skills
• Understanding of networking fundamentals, the OSI model, and TCP/IP protocols
• Knowledge of attack methods and techniques (DDoS, brute force, spoofing, etc.)
• Experience reviewing network, host, and application audit logs (system, security, etc.)
• Familiarity of security standards (NIST, FISMA, Fed RAMP, DCID, CNSS and DoD 8500)
• Knowledge of cloud IT solutions and security considerations of cloud solution deployment
• Other Relevant Cybersecurity certifications

LOCATION

• Hybrid at GDIT's Integrated Technology Center in Bossier City, LA

GDIT IS YOUR PLACE
At GDIT, the mission is our purpose, and our people are at the center of everything we do.

• Growth: AI-powered career tool that identifies career steps and learning opportunities
• Support: An internal mobility team focused on helping you achieve your career goals
• Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
• Flexibility: Full-flex work week to own your priorities at work and at home
• Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY
Explore a career in cyber at GDIT and you'll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.

Work Requirements