Data analysis assistant job description

• Bachelor’s Degree in a technical field and a minimum of 10 years related technical experience required. An additional 4 years of experience may be substituted in lieu of a degree.
• Active Top Secret Security Clearance required. In addition, selected candidate must be able to obtain and maintain a favorably adjudicated DHS SCI background investigation (EOD) for employment
• Demonstrated success leading teams/organizations to achieve a common goal.
• Experience supporting U.S. Government contracts and customers and/or project management in other industries.
• Experience assessing systems and networks to identify where they deviate from acceptable configurations and standards.
• Experience executing enterprise-wide both operating system and application compliance verification, vulnerability assessments, on-site security assessments, web and database vulnerability scanning, and scanning of other IT assets
• Proven ability to analyze efficiency of defense-in-depth architecture against known vulnerabilities.
• Experience with assessments of threats and vulnerabilities and developing mitigation solutions.
• Experience with High Value Assets (HVA), IT Penetration Testing, OT Penetration testing, or Validated Architecture Reviews (VADR) required
• Demonstrated knowledge and experience in Information Technology and Operational Technology
• One or more of the following professional certifications:
  • Offensive Security Certified Professional (OSCP)
  • Offensive Security Certified Expert (OSCE)
  • GIAC Certified Penetration Tester (GPEN)
  • GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
  • Certified Information Systems Security Professional (CISSP)
  • CISSP Information Systems Security Architecture Professional (CISSP-ISSAP)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • GIAC Defensible Security Architecture (GDSA)
  • Certified in Risk and Information Systems Control (CRISC)

Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly differentiated national security solutions and technologies that keep people safe and secure. Peraton serves as a valued partner to essential government agencies across the intelligence, space, cyber, defense, civilian, health, and state and local markets. Every day, our employees do the can’t be done, solving the most daunting challenges facing our customers.

An Equal Opportunity Employer including Disability/Veteran.

Colorado Salary Minimum: $84,300
Colorado Salary Maximum: $204,400

The estimate displayed represents the typical salary range for this position, and is just one component of Peraton's total compensation package for employees. Other rewards may include annual bonuses, short- and long-term incentives, and program-specific awards. In addition, Peraton provides a variety of benefits to employees.

• Bachelor's Degree in a technical field and a minimum of 10 years related technical experience required. An additional 4 years of experience may be substituted in lieu of a degree.
• Active Top Secret Security Clearance required. In addition, selected candidate must be able to obtain and maintain a favorably adjudicated DHS SCI background investigation (EOD) for employment
• Demonstrated success leading teams/organizations to achieve a common goal.
• Experience supporting U.S. Government contracts and customers and/or project management in other industries.
• Experience assessing systems and networks to identify where they deviate from acceptable configurations and standards.
• Experience executing enterprise-wide both operating system and application compliance verification, vulnerability assessments, on-site security assessments, web and database vulnerability scanning, and scanning of other IT assets
• Proven ability to analyze efficiency of defense-in-depth architecture against known vulnerabilities.
• Experience with assessments of threats and vulnerabilities and developing mitigation solutions.
• Experience with High Value Assets (HVA), IT Penetration Testing, OT Penetration testing, or Validated Architecture Reviews (VADR) required
• Demonstrated knowledge and experience in Information Technology and Operational Technology
• One or more of the following professional certifications:
  • Offensive Security Certified Professional (OSCP)
  • Offensive Security Certified Expert (OSCE)
  • GIAC Certified Penetration Tester (GPEN)
  • GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
  • Certified Information Systems Security Professional (CISSP)
  • CISSP Information Systems Security Architecture Professional (CISSP-ISSAP)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • GIAC Defensible Security Architecture (GDSA)
  • Certified in Risk and Information Systems Control (CRISC)

Peraton Overview

Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly differentiated national security solutions and technologies that keep people safe and secure. Peraton serves as a valued partner to essential government agencies across the intelligence, space, cyber, defense, civilian, health, and state and local markets. Every day, our employees do the can't be done, solving the most daunting challenges facing our customers.

An Equal Opportunity Employer including Disability/Veteran.

For Colorado Residents Colorado Salary Minimum: $84,300
Colorado Salary Maximum: $204,400

The estimate displayed represents the typical salary range for this position, and is just one component of Peraton's total compensation package for employees. Other rewards may include annual bonuses, short- and long-term incentives, and program-specific awards. In addition, Peraton provides a variety of benefits to employees.

Type of Requisition:

Regular

Clearance Level Must Currently Possess:

Top Secret/SCI

Clearance Level Must Be Able to Obtain:

Top Secret SCI + Polygraph

Suitability:

Polygraph

Public Trust/Other Required:

Job Family:

Information Security

Job Description:

GDIT is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day. We think. We act. We deliver. There is no challenge we can't turn into opportunity. And our work depends on TS/SCI level cleared Cyber Data Analysis (SIEM) joining our team to support our Intelligence customer in St. Louis, MO.

The desired candidate will provide cybersecurity data analysis services, which designs, develops, builds, tests, configures, employs, operates, integrates, sustains, and refreshes the Security Information Events Management (SIEM) capability (i.e. Enterprise Audit), long-term analytics platform, log aggregation platform, and the cyber threat intelligence capability, signature development and deployment, and reputation management services. This includes the onboarding of all new and existing IT resources, and ensuring the correct routing of all audit events to mission partners in accordance with Intelligence Community Standards (ICS) 500-27.

Job Duties Include:

* Analyzes trends and patterns of data to identify previously undiscovered events and incidents, and develop or tune rules/signatures/scripts as needed
* Analyzes trends and patterns of data to predict adversary actions on customer systems, and develop or tune rules/signatures/scripts as needed
* Coordinates with Network Security Services, Endpoint Security Services, and Cybersecurity Data Analysis Services to develop or tune rules/signatures/scripts
* Coordinates with other Cybersecurity Operations Services to investigate and obtain information about potential sources of compromise on customer systems, and develop or tune rules/signatures/scripts as needed
* Correlates and analyzes precursors to incidents, and develop or tune rules/signatures/scripts as needed
* Improve SIEM alert efficiency though evaluation of valid alerts and false positives, and develop or tune rules/signatures/scripts as needed
* Assists the C-IRT by assessing ongoing incident activity to predict adversary responses and locations of compromise

Education/experience:

BA/BS (or equivalent experience)

8+ years of experience

Required Skills:

* Maintains enterprise cybersecurity infrastructure requirements
* Applies Elastic search experience to optimize SIEM and data utilization for long term archive
* Monitors, maintains and Upgrades petabyte scale Elasticsearch environment
* Elasticsearch expert to include infrastructure support experience
* AWS cloud expert
* Linux (RHEL) Expert
* Bash / Python Scripting

Desired skills

* Regex
* Data paring experience
* Data routing
* Experience with data broker technologies such as Kafka
* Data Parsing
* Arcsight
* Splunk
* SOAR
* UBA
* Beats
* Log Stash
* Event Broker
* Experience with Logstash
* Elasticsearch SIEM experience

Scheduled Weekly Hours:

40

Travel Required:

None

Telecommuting Options:

Onsite

Work Location:

USA MO St. Louis

Additional Work Locations:

COVID-19 Vaccination: GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.