Security Infrastructure Support Senior Security Engineer

GDIT is seeking a senior level Cyber Security Engineer, to support an enterprise cyber program that spans Vulnerability Management, Security Operations, Prevention and Maintenance support, Quality Assurance, as well as Event Detection and Incident Response. You will support critical scientific and business activities related to infrastructure, and security operations and engineering support related to server and desktop systems.

You will support existing tools and leverage your technical background to make the tools more effective and identify new processes and tools to protect this environment. You will leverage your experience and tools to identify, protect, and respond to vulnerabilities within the environment.

You will work collaboratively with user and infrastructure support teams to define and apply security policy and standards across the larger environment, working with end users, stakeholders, and support teams alike to define and establish this secure environment.

You will inspire and foster confidence in others with your abilities to effectively communicate with various customer communities to understand their needs and provide them guidance on how to best protect them through your technical solutions.

This enterprise cyber program requires support for our federal customer in the DC metropolitan area, and this is a hybrid position that requires periodic onsite support and customer meetings.

HOW YOU WILL MAKE AN IMPACT:

You will support the larger security team through your actions related to the following areas:

• Provide an understanding and application of security governance and best practices
• Demonstrate a strong understanding of an enterprise technical environment and system engineering/administration actions
• Provide Vulnerability Management oversight
• Support secure system development lifecycles
• Maintain and promote secure tools and infrastructure
• Perform Event Detection and Incident Response
• Acts as a liaison between engineering and security and customer communities to:
• Plan, understand and communicate risk, as well as methods to reduce this risk
• Develop an understanding of how change to various environments can result in changes to risk posture
• Provide technical leadership to infrastructure and security teams to effectively translate security policy and best practices into action
• Provide technical leadership to infrastructure teams to effectively translate security policy and best practices into action within the desktop support, infrastructure engineering and operations teams, and user communities
• Design, install, maintain, and support Enterprise IT systems.
• Implement and administer cybersecurity tools or SIEM platforms.
• Manage and secure hybrid infrastructure environments (on-prem and cloud).
• Communicate complex security concepts to technical and non-technical stakeholders, including executive-level reporting.
• Apply cloud security best practices and perform security hardening in AWS, Azure, and O365 environments.
• Utilize core virtualization technologies.
• Integrate secure code and automation into the build, test, and deployment process following DevSecOps practices.
• Develop and automate tools with strong scripting skills, particularly in Python.
• Manage and configure a variety of enterprise cybersecurity tools across hybrid environments.
• Integrate and normalize data pipelines with SIEM platforms.
• Ensure compliance with federal cybersecurity frameworks (FISMA, NIST 800-53, NIST 800-92, OMB M-21-31, CDM).
• Maintain and secure Windows/Linux servers, perform patching, vulnerability remediation, and manage network appliances and endpoint security.
• Solve and analyze security issues to identify root causes.
• Collaborate with third-party vendors and cross-functional teams.

WHAT YOU'LL NEED TO SUCCEED

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
• 10+ years of experience designing, installing, maintaining, and supporting Enterprise IT systems.
• 5+ years of experience at the Senior Engineer level or higher.
• 3+ years of specific experience with cybersecurity tools or SIEM implementation and administration.
• Experience with hybrid infrastructure environments (on-prem and cloud).
• Strong verbal and written communication skills for explaining complex security concepts.
• Familiarity with cloud security concepts, services, and operations (AWS, Azure, O365).
• Understanding of core virtualization technologies.
• Familiar with DevSecOps practices.
• Strong scripting skills, particularly in Python.
• Experience managing a variety of enterprise cybersecurity tools, including SIEM platforms.
• Experience onboarding and normalizing data with SIEM platforms.
• Hands-on experience with federal cybersecurity compliance frameworks.
• Strong background in infrastructure management, including Windows/Linux servers, network appliances, and endpoint security.
• Strong problem-solving and analytical abilities.
• Experience working with third-party vendors and cross-functional teams.
• Prior experience in the health domain.
• Must have experience supporting a Government agency.
• Must be a US Citizen.

DESIRED QUALIFICATIONS

• Advanced degree in Computer Science, Information Technology, Cybersecurity, or related field.
• Additional relevant certifications or training.
• One or more of the following certifications is preferred
  • CISSP certification is strongly preferred, or ability to obtain within 6 months
  • CEH certification
  • SANS Security Related Certifications (e.g. GSEC, GCIH)
  • Cisco Network Certifications (CCNA, CCNP)
  • Microsoft MCSA/MCSE
• Experience with additional cloud platforms or services beyond AWS, Azure, and O365.

GDIT IS YOUR PLACE:

• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional scientific growth opportunities, including journal subscriptions, conference attendance, and supporting publication journey
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays