Cyber Operations - Lead (Hybrid 1 Day/Week Onsite)

Clearance Level
Cyber Engineering
Rockville, Maryland
Remote, Based in Maryland

REQ#: RQ132898

Travel Required: Less than 10%
Public Trust: NACI (T1)
Requisition Type: Regular
*****Please Note: This is a hybrid position with a required 1 day per week onsite in the customer's Bethesda, Rockville or Frederick, MD offices. However, during contract transition to GDIT, you will need to be onsite 2-3 days a week for the first few months to acclimate to the customer team / environment.*****

A career as a Cyber Operations Lead at GDIT means owning every opportunity to help support and advance our clients’ missions. At GDIT, cyber security is embedded into every aspect of what we do and we’re constantly evolving our cyber solutions to overcome our clients’ biggest challenges

At GDIT, people are our differentiator. As a Cyber Operations Lead supporting GDIT’s federal customer, you will be trusted to lead a team in providing general cybersecurity activities and support.  In this role, a typical day will include leading the team in performing the following activities:


Job Responsibilities:

  • Collaborate with the Storage Teams to analyze and recommend server security standards to enhance data confidentiality, availability, and integrity.

  • Collaborate with the Hosting Team to identify and remediate all server security vulnerabilities within mandated timeframes that may change based on incident or priority of the incident encountered, develop, and implement a plan to prevent the vulnerability, and related security issues, from recurrence.

  • Provide the customer with all requested information related to security incidents.

  • Assist as needed with remediation and investigation efforts.

  • Provide the customer with all requested information related to A&A, testing, and auditing activities.

  • Recommend improvements to security standards.

  • Conduct audits of permissions and security.

  • Conduct SA&A activities as needed and prepare FedRAMP compliant ATO for any externally hosted cloud systems or services prior to Prod deployments.

  • Perform an organization-wide risk assessment.

  • Conduct a system-level risk assessment and update the risk assessment results on an ongoing basis.

  • Define and document the security and privacy requirements for the system and the environment of operation, as needed.

  • Determine the placement of the system within the enterprise architecture (review existing application boundaries and inventory).

  • Maintain ATOs and monitor security controls

  • Develop processes and documentation



  • B.S. degree in Information Systems, Security, Computer Science, or relevant field

  • Current CISSP or CISM Certification is required.

  • 10+ years of demonstrated Information Security Experience

  • Experience applying security to Cloud Systems

  • ITIL certification is highly desired but will consider candidates with proven experience following the ITIL framework and processes. Candidates should be prepared to provide detailed experience and knowledge of ITSM practices throughout the lifecycle, from service management to change management, problem and incident management, asset management, continual service improvement and knowledge management.

  • Experience as an IA Team Lead or Manager of a team doing ATO’s and Security Assessment and Authorization (SA&A) in a FISMA / NIST environment - successfully managing a team in an Information Assurance Program at a Federal agency or large organization.

  • Demonstrated experience in the field of Information Assurance in a federal FISMA/ NIST based environment.

  • Experience reviewing and evaluating information systems against NIST security controls

  • The ability to work a hybrid schedule from your home office as well as supporting our Bethesda, Rockville and Frederick, MD offices onsite as needed.


Experience with NIH information security policies and procedures


  • 1 day per week onsite to own your priorities at work and at home
  • 401K with company match
  • Comprehensive health and wellness packages
  • Internal mobility team dedicated to helping you own your career
  • Professional growth opportunities including paid education and certifications
  • Cutting-edge technology you can learn from
  • Rest and recharge with paid vacation and holidays

Not sure this job’s the one for you? Check out our other openings at

#GDITPublicHealthJobs #GDITHealthSystems

About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.