Cloud Security Engineer

Clearance Level
Cyber Engineering
Remote, Based in USA
Remote, Based in Texas

REQ#: RQ101892

Travel Required: Less than 10%
Requisition Type: Regular

We are GDIT. We support and secure some of the most complex government, defense, and intelligence projects across the country. At GDIT, cyber security is not just a singular part of our mission—it connects every one of us because it’s embedded into every aspect of what we do. 

GDIT Technology Shared Services (TSS) is your place! You make it your own by bringing your ideas and unique perspective to our culture. By owning your opportunity at GDIT, you are helping us ensure today is safe and tomorrow is smarter.

At GDIT, people are our differentiator. As a Cloud Security Engineer supporting GDMS, you will be trusted to provide support of operational innovation and security direction to the business to elevate the company’s security posture within a cloud computing infrastructure.

In this role, a typical day will include the responsibilities below:

  • Serve as a cloud security subject matter expert by providing guidance on industry best practices and defense in-depth strategies for the security architecture of both cloud-based and on prem systems
  • Perform technical risk assessments of new technology and ensure the solution meets IT Cyber security policies and frameworks and secure architecture designs 
  • Assess and measure risk impact of a security deficiency and communicate the risk or risks to the required IT Cyber teams and stakeholders  
  • Recommend, test, design, deploy and optimize threat detection/prevention solutions for DLP, Data Encryption, Next-Gen Firewalls, Cloud Security products, IDS/IDPS, SASE, Zero Trust and other industry standard security technologies.
  • Develop solution test procedure, test report and implementation plan documents as required for a given project
  • Proactively identify issues and recommend configuration settings or supporting solutions to mitigate security deficiencies in the GDMS network  
  • Perform security approval of firewall and network changes of on prem and cloud-based systems
  • Work with the respective functional teams and stakeholders to resolve security related configuration issues
  • Work with the project teams to assist in the test and evaluation of new solutions ensuring the solution satisfies IT Cyber functional requirements

Required qualifications:

  • BA/BS and a minimum of 5 years of experience in a specialized cyber security area or equivalent experience in lieu of degree 
  • Due to the nature of work performed within our facilities, U.S. citizenship is required
  • Experience with implementation, configuration, and integration of security products from vendors such as Palo Alto Networks, Cisco, ZScaler, AppGate, Crowdstrike, Okta, VMWare, Illumio, Guardicore and Microsoft 
  • Familiarity with emerging cloud security solutions and networking concepts with AWS or Azure, both preferred Strong understanding of enterprise network security technologies including but not limited to web security, proxies, firewalls, SSL/TLS, GRE and IPsec tunneling, DNS, load balancing, SD-WAN, VPNs, DLP, Advanced Threat detection, killchain and threat analytic technologies
  • Strong understanding of authentication and authorization protocols including OAuth, OpenID Connect, SAML 2.0, Kerberos and practical knowledge of conditional based access control technologies to effectively implement adaptive and risk-based network access control
  • Knowledge of SaaS applications and the security implications around integrating them into SASE solutions 
  • Strong understanding of defense-in-depth security best practices 
  • Highly motivated self-starter who enjoys engineering challenges and learning new tools and technology
  • Able to accept & integrate constructive feedback
  • Demonstrates ability to work collaboratively and effectively with a wide range of individuals
  • Demonstrates ability to learn and apply GDMS culture, policies and processes
  • Effective communication skills


Preferred qualifications

  • 7+ years of experience in a specialized cyber security area
  • GSEC, GCIA, GCIH, GFE, GCFA, CISA, CISSP, CISM, or CIA Certifications preferred


  • Full-flex work week
  • 401K with company match
  • Internal mobility team dedicated to helping you own your career
  • Collaborative teams of highly motivated critical thinkers and innovators
  • Ability to make a real impact on the world around you

Not sure this job’s the one for you? Check out our other openings at  Do you have a friend or colleague this posting describes? Let them know about the opportunity by clicking “Share.”  



Opportunity Owned

This position requires being fully vaccinated against COVID-19 by January 18, 2022 or the start date, if after January 18. Individuals who work in or reside in Texas or Montana or work outside of the United States may be excluded from this requirement.

The likely salary range for this position is $96,000 - $144,000, this is not, however, a guarantee of compensation or salary; rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

View information about benefits and our total rewards program.

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.