Zero Trust Analyst

At GDIT, people are our differentiator. We are seeking an Information Assurance Analyst to join our team to support Centers for Medicare & Medicaid Services (CMS) activities at Windsor Mill, MD. As a security analyst supporting the Healthcare Integrated General Ledger Accounting System (HIGLAS) contract, you will work with a team of analysts and engineers to scrutinize network and system events for potential indicators of threats or compromise. This effort includes implementing and maintaining security safeguards designed to minimize the CMS security risk and protect confidentiality, integrity, and availability of sensitive data, including privacy information.

This is a position on the Identity and Access Management (IAM) team and part of a larger security team responsible for establishing and maintaining a high security posture for a critical federal information system. Our team’s security responsibility includes, but not limited to, developing IT security strategy and architecture, establishing security operations and monitoring, implementing risk and vulnerability management processes, remediating weaknesses, conducting audits and assessments, maintaining all manner of IT security documentation, managing access, and enforcing Federal and organizational policies.

This position allows the opportunity to work 100% remote from home preferably in Eastern or Central time zones. Those local to the Baltimore MD area will have opportunity to come into our office as needed.

HOW YOU WILL MAKE AN IMPACT:

• Provide support to and participate in Zero Trust deployment activities surrounding privilege access management including monitoring new and removed identities, access and permissions changes, escalation, bot activity, and other related activities.
• Threat hunting activities including analysis, assessment, and response to anomalous activity in support of security audits and incident response.
• Draft documentation to detail potential risks associated with known security issues within the environment.
• Develop and maintain Standard Operating Procedures (SOPs) related to security tasking.
• Coordinate and collaborate with technical subject matter experts (SMEs) to ensure technical and operational security controls are operating as expected.

WHAT YOU’LL NEED TO SUCCEED:

• Ability to pass CMS background check and meet the residency requirement for having resided in the US at least (3) three out of the last (5) five years.
• Bachelor’s degree and 1+ years’ experience (degree preferably in Cyber Security or Information Technology), or equivalent combination of education and experience.
• Knowledge and experience in CMS security guidelines and technology requirements surrounding access controls.
• CompTIA Security+ certification. Other equivalent security certifications will be considered.
• Strong knowledge of access controls, segregation of duties, and privilege access management.
• Strong knowledge of NIST Special Publications and cybersecurity best practices.
• Strong knowledge of cybersecurity audits and ability to respond to data requests regarding security compliance.
• Strong analytical, written, and verbal communication skills with the ability and comfort level to conduct presentations for existing customer audiences.

IT WOULD BE GREAT IF YOU ALSO HAD:

• Knowledge and experience in access automation and bot usage.
• Knowledge of Splunk for conducting investigations and analysis.

LOCATION: Remote

CLEARANCE:

Ability to obtain a Public Trust: candidate must have lived in the United States at least three (3) out of the last five (5) years and pass a public trust background investigation.

WHAT GDIT CAN OFFER YOU:

• An opportunity to learn and grow in the cybersecurity realm while providing critical security oversight for a White House High Value Asset (HVA).
• Association and inclusion on a team of dedicated security analysts and engineers, collaborating to improve the HIGLAS security program.
• Exposure to new and emerging security technologies and processes.

• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays

#GDITFedHealthJobs