Cybersecurity Technical SME

GDIT is looking for a skilled and detail-oriented Cybersecurity Technical SME to join our team. The Cybersecurity Technical SME will play a key role in supporting daily security operations, monitoring security feeds, and responding to identified vulnerabilities within the organization’s infrastructure. This role will focus on leveraging industry-leading security tools and collaborating with cross-functional teams to ensure the integrity of our systems and data.

The ideal candidate will have experience working with a variety of cybersecurity technologies, an analytical mindset, and the ability to identify, track, and assist in remediating potential security risks. As part of a dynamic team, the Cybersecurity Technical SME will help safeguard the organization’s digital assets while contributing to the continuous improvement of our cybersecurity posture.

HOW YOU WILL MAKE AN IMPACT:

Security Monitoring & Incident Detection:

• Monitor security alerts and feeds from various tools (e.g., Tenable, Splunk UF, CrowdStrike, Trellix, Armis, ExtraHop) to identify and investigate potential security incidents or vulnerabilities.
• Collaborate with the Cybersecurity Operations Lead to escalate incidents and assist in the resolution of security issues in real-time.

Vulnerability & Risk Management Support:

• Coordinate with vendors to perform system scans on the Oracle Cloud environment for Assessment and Authorization and continuous monitoring efforts to include but not limited to: network devices, servers, databases, and web services
• Assist in tracking and documenting vulnerabilities, their remediation status, and the corresponding risk level.
• Help develop CI/CD pipeline risk management process
• Coordinate across teams to ensure independent assessments are performed and properly coordinated with during Cyber IV&V

Data Analysis & Reporting:

• Analyze security data to identify trends, patterns, and anomalies that may signal security risks or areas for improvement.
• Help prepare reports and dashboards to provide insights into security posture, incident trends, and ongoing mitigation efforts, working closely with the Cybersecurity Operations Lead.

Tool Maintenance & Configuration:

• Ensure STIG Baseline is maintained and work closely with vendor to verify
• Collaborate with other team members to ensure the continuous monitoring and fine-tuning of security systems.

Collaboration & Communication:

• Communicate findings to other internal teams regarding vulnerabilities, incidents, or security concerns.
• Work with cross-functional teams, including engineering and IT, to ensure security tools and processes are effectively integrated and maintained.

Documentation & Process Improvement:

• Maintain comprehensive documentation of security incidents, vulnerabilities, and risk assessments for future reference and compliance.
• Assist in the development and improvement of cybersecurity policies, procedures, and workflows to enhance security operations.

WHAT YOU’LL NEED TO SUCCEED

Requirements:

• Bachelor of Science in Information Technology, Cybersecurity, Data Science, Information Systems, Computer Science, or years of equivalent experience
• 10+ years of experience in cybersecurity operations, with a focus on security monitoring, vulnerability management, and incident response
• Hands-on experience with cybersecurity tools such as Tenable, Splunk UF, CrowdStrike, Trellix, Armis, and ExtraHop
• Strong understanding of network security, cloud security (especially within Oracle Cloud), and endpoint protection
• Familiarity with security monitoring, alerting, and ticketing systems
• Ability to analyze security logs, identify patterns, and assist in risk assessment and mitigation
• Ability to obtain a Public Trust security clearance
• Ability to travel

Preferred Qualifications:

• Certifications such as CompTIA Security+, Certified Ethical Hacker (CEH), or similar cybersecurity-related certification
• Experience working in an enterprise environment with a focus on cloud security and large-scale infrastructures
• Knowledge of incident response methodologies and NIST, FISMA or other regulatory  frameworks
• Detail oriented and strong problem-solving and analytical skills and a proactive approach to identifying and addressing security challenges
• Strong written and verbal communication skills, with the ability to present technical data to non-technical stakeholders
• Ability to work collaboratively in a fast-paced environment and manage multiple priorities

GDIT IS YOUR PLACE:

• Full-flex work week to own your priorities at work and at home
• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you build your skills and own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and 10 company-paid holidays

#IHSJobs

#GDITFedHealth