Role Description The SOC Analyst is responsible for detecting and reporting cybersecurity incidents to clients. The SOC Analyst is responsible for day-to-day cybersecurity monitoring utilizing Insight’s security tools that are used to monitor and secure our clients’ business. SOC Analysts are accountable for: - Detecting threats - Creating incident tickets - Assisting with the response process - Assisting the team in developing threat detection and prevention capabilities - Equipping clients to optimize their cybersecurity incident response capabilities As a SOC Analyst you will: - Participate in the daily cybersecurity threat monitoring of Insight Managed Security Services (MSS) clients - Monitor SIEM incident queue and perform incident triage & ticketing and support to resolution - Perform threat analysis on events reported by security technologies supported by MSS - Identify indicators of compromise within threat events - Identify potential false positives, policy violations, intrusion attempts, and compromises - Enrich security events with intelligence from multiple technologies, open-source intelligence sources, and knowledge of the client environment Qualifications - Bachelor’s Degree in Cybersecurity, Computer Science, Information Technology or related experience - 2-5 years hands-on experience within a Security Operations Center - Working knowledge of scripting and query languages (preferably KQL) - Experience with Microsoft Sentinel, M365 Defender, Secureworks Taegis, Service Now - Experience with Cloud based services (Azure) Benefits - Freedom to work from another location—even an international destination—for up to 30 consecutive calendar days per year - Core values of Hunger, Heart, and Harmony that guide everything we do

Role Description The SOC Analyst is responsible for detecting and reporting cybersecurity incidents to clients. The SOC Analyst is responsible for day-to-day cybersecurity monitoring utilizing Insight’s security tools that are used to monitor and secure our clients’ business. SOC Analysts are accountable for detecting threats, creating incident tickets, assisting with the response process, assisting the team in developing threat detection and prevention capabilities, and equipping clients to optimize their cybersecurity incident response capabilities. - Participate in the daily cybersecurity threat monitoring of Insight Managed Security Services (MSS) clients - Monitor SIEM incident queue and perform incident triage & ticketing and support to resolution - Perform threat analysis on events reported by security technologies supported by MSS - Identify indicators of compromise within threat events - Identify potential, false positives, policy violations, intrusion attempts and compromises - Enrich security events with intelligence from multiple technologies, open-source intelligence sources, and knowledge of the client environment Qualifications - Bachelor’s Degree in Cybersecurity, Computer Science, Information Technology or related experience - 2-5 years hands-on experience within a Security Operations Center - Working knowledge of scripting and query languages (preferably KQL) - Experience with Microsoft Sentinel, M365 Defender, Secureworks Taegis, Service Now - Experience with Cloud based services (Azure) Benefits - Freedom to work from another location—even an international destination—for up to 30 consecutive calendar days per year - Core values of Hunger, Heart, and Harmony, which guide everything we do

Role Description GDIT is seeking a Cybersecurity Analyst to support the Indian Health Service PATH EHR system. This role will help deploy, assess, and secure a government-owned Electronic Healthcare Record (EHR) system within a cloud environment. The system must be deployed with a secure baseline, ensuring system integrity, confidentiality, and availability while maintaining compliance with healthcare and federal cybersecurity regulations and addressing vulnerabilities across interconnected medical and enterprise systems. This position is fully remote! This role requires you to obtain and maintain an in-depth Public Trust Level 5. This investigation will review personal and criminal behavior, financial conduct, foreign influence, as well as other adjudications. HOW A CYBERSECURITY ANALYST WILL MAKE AN IMPACT: - Conduct security assessments and support Authorization to Operate (ATO) activities under the NIST Risk Management Framework (RMF). - Analyze security scan results (e.g., ACAS, Nessus, container scans) and track remediation efforts to closure. - Perform continuous monitoring activities and maintain security documentation to support compliance with NIST 800-53 controls. - Review and validate secure configurations across Windows, Linux, cloud, container, and network environments. - Support the assessment of medical device integrations and EHR system interfaces to identify cybersecurity risks. - Evaluate and document Ports, Protocols, and Services (PPS) requirements and maintain the PPSM Master List for EHR-related systems. - Review firewall rules, boundary protections, IDS/IPS configurations, and secure network architecture diagrams. - Assist in reviewing and validating DISA Security Technical Implementation Guides (STIGs) compliance. - Assess authentication and access control implementations including MFA, SSO, RBAC, and privileged access management. - Review Interface Control Documents (ICDs) and Interconnection Security Agreements (ISAs) to ensure cybersecurity requirements are met prior to submission. - Support incident response efforts by analyzing logs, alerts, and security events impacting the EHR environment. - Develop and maintain security documentation including Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and change requests. - Provide cybersecurity recommendations to engineering and architecture teams to mitigate risk across cloud and on-prem environments. - Assist in ensuring HIPAA and federal data privacy safeguards are implemented to protect patient information. Qualifications - Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. - 3+ years of experience in cybersecurity analysis, assessment, or compliance roles in healthcare, government, or regulated IT environments. - Experience with Cherokee Native American Culture and Indian Health personnel required. - Strong knowledge of NIST 800-53 and the Risk Management Framework (RMF), including security control assessments and POA&M management. - Experience conducting vulnerability assessments and analyzing scan results. - Knowledge of networking concepts including TCP/IP, ports, protocols, encryption standards (SSL/TLS), and secure network architecture principles. - Understanding of authentication methods such as MFA, SSO, and identity federation. - Experience with cloud environments (e.g., AWS, Azure, OCI) and applying security best practices to cloud-hosted services. - Experience securing Windows and Linux operating systems. - Familiarity with container technologies (Docker, Kubernetes) and associated security controls. - Understanding of healthcare data privacy regulations (HIPAA) and federal information security standards (FISMA). - Experience with DISA STIG validation and remediation. - Ability to develop and maintain PPS documentation and security artifacts. - Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint, Visio). - Must be able to obtain a Public Trust Level 5 clearance. - Ability to travel up to 25% of the year, if needed. Benefits - Full-flex work week to own your priorities at work and at home. - 401K with company match. - Comprehensive health and wellness packages. - Internal mobility team dedicated to helping you own your career. - Professional growth opportunities including paid education and certifications. - Cutting-edge technology you can learn from. - Rest and recharge with paid vacation and holidays.

• **Manejo de Incidentes de Ciberseguridad**: Responder a incidentes de ciberseguridad y mitigar su impacto en los sistemas, usuarios e información de la empresa. • **Cumplimiento y Capacitación**: Participar en el Programa de Capacitación Global en Cumplimiento de PMI para mejorar tu conocimiento y comprensión de las reglas y requisitos aplicables. • **Protección de la Información**: Asegurar la confidencialidad, integridad y disponibilidad de la información de la empresa cumpliendo con las políticas y procedimientos de manejo de datos de PMI. • **Gestión de Servicios**: Colaborar con los Gerentes de Servicios e Integradores de Servicios para fomentar una cultura de confianza y seguridad de la información. • **Gobernanza y Monitoreo**: Apoyar la gobernanza y promover comportamientos ejemplares mediante la práctica constante de medidas de seguridad de la información. • Implementar una gestión efectiva de vulnerabilidades, endurecimiento de puntos finales e incidentes según los manuales de PMI. • Encargarse de la comunicación con proveedores y terceros, así como del seguimiento y remediación de vulnerabilidades y controles. • Tomar las riendas de la seguridad de nuestro entorno liderando los esfuerzos de respuesta a incidentes en un entorno colaborativo y multifuncional. • Innovar y mejorar las capacidades de respuesta de PMI mediante el desarrollo de iniciativas avanzadas de Respuesta a Incidentes. • Profundizar en las causas raíz de los incidentes de seguridad, realizando análisis exhaustivos.