Desktop Security Engineer

Clearance Level
Cyber Security
Bethesda, Maryland

REQ#: RQ137467

Travel Required: None
Requisition Type: Regular

GDIT has an opportunity for a Desktop Security Engineer to join our team supporting the National Institutes of Health Center for Information Technology (NIH CIT).


  • Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats

  • Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events

  • Evaluates, tests, recommends, coordinates, monitors, and maintains cybersecurity policies, procedures, and systems, including access management for hardware, firmware, and software. Including collaborating with the Desktop Engineering Team in creating custom scripts, packages, group policy objects, and configuration profiles to automate the remediation of security vulnerabilities in accordance with the CIT Change Management policy

  • Ensures that cybersecurity plans, controls, processes, standards, policies, and procedures are aligned with cybersecurity standards.

  • Implementing and maintaining configuration baselines and security controls for Windows and macOS systems, as well as endpoint infrastructure, including BigFix, Bomgar, JAMF, Microsoft Defender, Microsoft Endpoint Manager, and PrinterLogic

  • Identifies security risks and exposures, determines the causes of security violations, and suggests procedures to halt future incidents and improve security. Responding to security issues or audit findings by developing and executing plans of action and milestones, obtaining waivers, and following up on open incidents

  • Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks.

  • Leading weekly security scrums and developing dashboards, reports, and remediation plans for detected security vulnerabilities using PowerBI, ServiceNow, BigFix Web Reports, Excel, and other tools.

  • May coach and provide guidance to less-experienced professionals.

  • May serve as a team or task lead.

Required Skills:

  • Bachelor's degree in Computer Science, Information Technology, or a related field

  • 8+ years of experience in security engineering or a related field

  • Active Certified Information Systems Security Professional (CISSP) credential

  • Knowledge of computer networking concepts and protocols, network security methodologies, cyber threats, and vulnerabilities.

  • Knowledge of cybersecurity and privacy principles and framework (e.g., NIST SP 800-53 and the NIST Cyber Security Framework)

  • Skill in debugging and writing code in a currently supported programming language (e.g., PowerShell, Python, Power Query, BigFix Relevance Language).

  • Excellent communication and collaboration skills

About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.