Apply on Employer Site

General Dynamics Information Technology · 5 hours ago

Cyber Threat Analyst

United States

Full-time

Remote

Mid, Senior Level

$111K/yr - $150K/yr

7+ years exp

General Dynamics Information Technology is a global technology and professional services company delivering consulting and mission services to U.S. government agencies. As a Cyber Threat Analyst, you will analyze, develop, and implement security measures to protect the United States Postal Service from cyber threats, including monitoring incidents and recommending automation strategies.

Artificial Intelligence (AI)Cloud ComputingConsultingCyber SecurityInformation Technology

No H1B

U.S. Citizen Only

Responsibilities

Responsible for performing triage on all security escalations and detections to determine scope, severity, and root cause

Monitor cyber security events, detecting incidents, and investigating incidents

Identify, recommend strategies, develop, and implement automation use cases leveraging AI/ML capabilities

Support deploying, configuring, testing, and maintaining Security Orchestration, Automation, and Response (SOAR) platform, and tools integrated with AI/ML capabilities to enhance threat detection, analysis and response

Provide support to contract Program Manager, as necessary

Effectively communicates technical information to non-technical audiences

Influence others to comply with policies and conform to standards and best practices

Investigates and analyzes potential online threats to an organization's computer systems and networks. Monitor for malicious activity, assess vulnerabilities, and develop strategies to mitigate risks. Essentially, they act as a proactive defense mechanism against cyberattacks

Qualification

Cyber DefenseSecurity InformationEvent Management (SIEM)Security OperationsArtificial IntelligenceMachine Learning (AI/ML)Security OrchestrationAutomationResponse (SOAR)Threat HuntingIncident ResponseAnalytical SkillsCommunication Skills

Required

7 + years of related experience

Bachelor's or Master's degree in Computer Science, Information Systems, Cybersecurity or other related fields. Or equivalent work experience

7+ years of experience with security operations, threat hunting, and incident response

Experience in analyzing alerts from Cloud, SIEM, EDR, and XDR tools, and alerts tuning process with preference on SentinelOne, Armis, and Splunk

Experience in configuring network devices and analyzing network traffic

Experience with Artificial Intelligence and Machine Learning (AI/ML) based security tools

Experience in researching, developing, and implementing SOAR use cases

Familiar with Security Orchestration, Automation, and Response (SOAR) platform

Familiarity with cybersecurity operation center functions

Experience configuring and re-configuring security tools, including SentinelOne and Splunk

Experience implementing Security frameworks, such as MITRE ATT&CK and NIST, and can interpret use cases into actionable monitoring solutions

Develop, test and Implement dynamic Risk-Based Alerting (RBA)

Identifying and developing RBA and identifying use cases for SOAR and AI/ML

Monitor and analyze alerts from various sources such as IDS/IPS, Splunk, Tanium, MS Defender, SentinelOne and Cloud security tools leveraging SOAR and AI/ML capabilities, and provide recommendation for further tuning of these alerts when necessary

Analyze network traffic utilizing available tools and provide recommendations

Perform vulnerability assessments of recently discovered CVEs against USPS systems and network

Assist in the process of configuring or re-configuring the security tools

Perform analysis on hosts running on a variety of platforms and operating systems, to include, but not limited to, Microsoft Windows, UNIX, Linux, as well as embedded systems and mainframes

Assist in the construction of signatures which can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave

Test, evaluate, and verify hardware and/or software to determine compliance with defined specifications and requirements

MUST have one or more of the following Certification(s): CISSP, CISA, CISM, GIAC, RHCE

Ability to obtain and maintain a Public Trust clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprinting

Benefits

401K with company match

Comprehensive health and wellness packages

Professional growth opportunities including paid education and certifications

Rest and recharge with paid vacation and holidays

Variety of medical plan options, some with Health Savings Accounts

Dental plan options

Vision plan

Variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave

GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees

Short and long-term disability benefits

Life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance

Company

General Dynamics Information Technology

Glassdoor3.9

General Dynamics Information Technology is an IT consulting company that specializes in cyber security, AI, and quantum computing. It is a sub-organization of General Dynamics.

Founded in 1999

Falls Church, Virginia, USA

10001+ employees

https://www.gdit.com/

Funding

Current Stage

Late Stage

Leadership Team

Paul Nedzbala

Senior Vice President

Ben Buckley

Vice President and General Manager

Recent News

PRWeb

Parallel Works Deploys Mission-Critical Weather Forecasting to the Cloud, Expanding Real-Time Predictions at Scale

2026-01-13

PR Newswire

GDIT Named AWS Global Defense Consulting Partner of the Year

2026-01-03

PR Newswire

GDIT Awarded $285 Million Virginia Cybersecurity Services Contract

2025-12-16

Company data provided by crunchbase