Sr Principal Security Engineer for HSM - Active Top Secret Required

Clearance Level
Top Secret
Systems Engineering
Washington, District of Columbia
Hybrid Workplace
Key Skills For Success

Complex Systems


Hardware Security

Microsoft Windows Server

Systems Engineering

REQ#: RQ167694
Public Trust: SSBI (T5)
Requisition Type: Regular
Your Impact

Own your opportunity to serve as a critical component of our nation’s safety and security. Make an impact by using your expertise to protect our country from threats.

Job Description

Senior Principal Security Engineer for Hardware Security Module (HSM) 

Seize your opportunity to make a personal impact as a Senior Principal Security Engineer for HSM with GDIT. A career in systems engineering means designing and implementing the systems that matter most. You will ensure that HSM services are functioning properly and securely across the enterprise. At GDIT you’ll be at the forefront of innovation and play a meaningful part in improving how agencies operate. 

At GDIT, people are our differentiator. As a Senior Principal Security Engineer for HSM, you will help ensure today is safe and tomorrow is smarter. Our work depends on a Senior Principal Security Engineer for HSM joining our team to bring professionalism and initiative to a fast-paced environment that offers extensive options for training, certification, and career advancement. When we succeed, you succeed and together our best becomes better. 


  • Lead the HSM Management functional area, supporting its technologies, processes, management, usage, and project initiatives. 

  • Responsible for maturing the HSM Management capabilities, prioritizing activities and maximizing investment decisions, leading projects and providing consulting in projects requiring HSM capabilities. 

  • Performing operations and administration support of HSM. 

  • Creating and updating process and technical documentation regarding lifecycle, configuration and STIG requirements. 

  • Support audits and compliance monitoring. 

  • Work with other cryptography teams to select the best solutions involving HSMs. 

  • Practical experience with both certification security encryption and file level security encryption.   

  • Project requirements analysis, technical design, and implementation activities. 

  • Testing and documentation on new versions of HSM hardware and firmware. 

  • Update plans and programs based on changes in internal and industry standards and regulatory environment. 

  • Document current and desired future state capabilities, incorporating industry leading technologies. 

  • Participate in the development of HSM management and other encryption and key management strategies. 

  • Perform/lead encryption key ceremonies as a key security officer as needed. 


  • Education: BS in Computer Engineering, Computer Science or related technology field. Experience may be substituted for education. 

  • Required Experience: Minimum of 17 years’ related technical experience to include:  

  • 5+ years’ of symmetric and asymmetric cryptography concepts and technologies. 

  • 8+ years’ in the encryption and key management security discipline. 

  • 5+ years’ experience managing Utimaco and Thales Hardware Security Modules (HSMs). 

  • 5+ years’ experience in working with Microsoft Windows Server, Active Directory, networking protocols, troubleshooting and root cause analysis, trouble ticketing systems, problem and change management workflow tools. 

  • 3+ years’ experience performing encryption key ceremonies as a key security officer. 

  • Required Technical Experience: DoD 8140/8570 IAT level II compliance

  • Security Clearance Level: Active Top Secret with SCI eligibility and a T5 or T5R within the last 5 years 

  • Required Skills and Abilities: Highly motivated, self-starter; ability to work alone (90% of work is individual); heavy research and development when necessary. 

  • Location: Washington, District of Columbia; limited telework may be available 


  • 401K with company match 

  • Comprehensive health and wellness packages 

  • Internal mobility team dedicated to helping you own your career 

  • Professional growth opportunities including paid education and certifications 

  • Cutting-edge technology you can learn from  

  • Rest and recharge with paid vacation and holidays  

Work Requirements
Years of Experience

15 + years of related experience

* may vary based on technical training, certification(s), or degree


CompTIA - Security+ - CompTIA

Travel Required

Less than 10%


U.S. Citizenship Required

Salary and Benefit Information

The likely salary range for this position is $169,065 - $228,735. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
View information about benefits and our total rewards program.

About Our Work

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.