Cybersecurity Engineer Principal

Type of Requisition:

Regular

Clearance Level Must Currently Possess:

Top Secret/SCI

Clearance Level Must Be Able to Obtain:

Top Secret/SCI

Public Trust/Other Required:

None

Job Family:

Cyber and IT Risk Management

Job Qualifications:

Skills:

Role Based Access Control (RBAC), Security Practices, System Security

Certifications:

None

Experience:

8 + years of related experience

US Citizenship Required:

Yes

Job Description:

Deliver simple solutions to complex problems as a Cybersecurity Engineer Principal at GDIT. Here, you’ll tailor cutting-edge solutions to the unique requirements of our clients. With a career in application development, you’ll make the end user’s experience your priority and we’ll make your career growth ours.
At GDIT, people are our differentiator. As a Cybersecurity Engineer Principal you will help ensure today is safe and tomorrow is smarter. Our work depends on Cybersecurity Engineer Principal joining our team to optimize our enterprise identity and access management infrastructure.

HOW A CYBERSECURITY ENGINEER PRINCIPAL WILL MAKE AN IMPACT:

Entra ID (Azure AD) Management:

• Manage and maintain Azure AD/Entra ID, including hybrid identity configurations and integrations with on-premises Active Directory.

• Configure and optimize Azure AD for secure access, identity governance, conditional access, and multi-factor authentication (MFA).

• Implement and maintain Single Sign-On (SSO) and seamless access across cloud-based applications.

• Monitor Azure AD health and resolve any synchronization or performance issues.

Azure Platform Management:

• Administer and optimize Azure infrastructure services, including virtual machines, networking, storage, and identity services.

• Support Azure-based applications, ensuring proper security measures are in place, such as RBAC (Role-Based Access Control), identity management, and privileged identity protection.

• Collaborate with cloud architects and development teams to design scalable and secure Azure environments that meet business requirements.

Microsoft 365 (M365) Administration:

• Implement and manage security and compliance features such as Data Loss Prevention (DLP), Information Rights Management (IRM), and Conditional Access policies.

• Provide guidance and support for M365 user provisioning, licensing, and troubleshooting.

Active Directory Management:

• Oversee and maintain on-premises Active Directory environments, including domain controllers, group policies, forests, trusts, and replication.

• Implement and manage AD object lifecycle, security groups, user accounts, and service accounts.

• Perform regular AD audits, ensuring compliance with security best practices and policies.

• Design and implement high-availability AD architectures to minimize downtime and ensure disaster recovery readiness.

Okta Cloud Administration:

• Administering identities through Okta Identity Management

• Implement automation using Okta Workflows

• Manage Okta Federation across a wide array of systems

Security and Compliance:

• Ensure adherence to corporate security policies and compliance frameworks, including GDPR, HIPAA, and SOC2.

• Proactively identify and mitigate security risks through continuous monitoring, patch management, and system hardening.

• Participate in security audits and incident response, assisting in the investigation of any security breaches or vulnerabilities.

Performance Optimization & Troubleshooting:

• Perform regular monitoring, diagnostics, and performance tuning for AD, Entra ID, Azure, and M365 environments.

• Troubleshoot and resolve system performance issues, ensuring minimal impact on business operations.

• Implement automation and scripting (PowerShell, Azure CLI, etc.) to enhance operational efficiency and reduce manual tasks.

Documentation & Knowledge Sharing:

• Create and maintain comprehensive documentation for system configurations, procedures, and troubleshooting guides.

• Train and mentor junior engineers, providing technical expertise and knowledge sharing across the IT organization.

WHAT YOU’LL NEED TO SUCCEED:

• Education: Bachelor’s degree. In lieu of degree, 12+ years of related experience will be required.

• Required Experience: 8+ years of related experience

• Required Skills and Abilities: Cybersecurity engineering with a focus on Active Directory, Azure AD (Entra ID), Azure, Okta Cloud Administration, and Microsoft 365 administration

• Preferred Skills and Abilities: Expertise in identity management, hybrid cloud environments, and enterprise-scale IT infrastructure. Proficiency in PowerShell scripting and automation tools for system management. Strong knowledge of networking concepts, firewalls, VPNs, and DNS management.

• Location: Tampa, FL

• Must have an active TS/SCI security clearance

• US Citizenship required'

#gditpriority

#armajobs

The likely salary range for this position is $129,813 - $172,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:

40

Travel Required:

Less than 10%

Telecommuting Options:

Onsite

Work Location:

USA FL MacDill AFB - MacDill AFB (FLC007)

Additional Work Locations:

Total Rewards at GDIT:

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

 

Our Identity Verification Process:

As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during virtual interviews. We reserve the right to take your picture to verify your identity and prevent fraud. By proceeding, you authorize the collection, processing, and use of your biometric data for identity verification and security purposes.

About Our Work:

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 26,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at

gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans