Cybersecurity Engineer Principal

Job description

**Req ID:** RQ207337
**Type of Requisition:** Regular
**Clearance Level Must Be Able to Obtain:** Secret
**Public Trust/Other Required:** None
**Job Family:** Cyber and IT Risk Management
**Skills:**
Active Directory (AD),Identity Access Management (IAM),Microsoft Entra ID (Azure Active Directory)
**Experience:**
8 + years of related experience
**US Citizenship Required:**
Yes

**Job Description:**

Deliver simple solutions to complex problems as a **Cybersecurity Engineer Principal** at GDIT.

Here, you’ll tailor cutting-edge solutions to the unique requirements of our clients.

With a career in application development, you’ll make the end user’s experience your priority and we’ll make your career growth ours.

At GDIT, people are our differentiator.

As a **Cybersecurity Engineer Principal** you will help ensure today is safe and tomorrow is smarter.

Our work depends on **Cybersecurity Engineer Principal** joining our team to optimize our enterprise identity and access management infrastructure.

**HOW A CYBERSECURITY ENGINEER PRINCIPAL WILL MAKE AN IMPACT:**

Entra ID (Azure AD) Management:

+ Manage and maintain Azure AD/Entra ID, including hybrid identity configurations and integrations with on-premises Active Directory.
+ Configure and optimize Azure AD for secure access, identity governance, conditional access, and multi-factor authentication (MFA).
+ Implement and maintain Single Sign-On (SSO) and seamless access across cloud-based applications.
+ Monitor Azure AD health and resolve any synchronization or performance issues.

Azure Platform Management:

+ Administer and optimize Azure infrastructure services, including virtual machines, networking, storage, and identity services.
+ Support Azure-based applications, ensuring proper security measures are in place, such as RBAC (Role-Based Access Control), identity management, and privileged identity protection.
+ Collaborate with cloud architects and development teams to design scalable and secure Azure environments that meet business requirements.

Microsoft 365 (M365) Administration:

+ Implement and manage security and compliance features such as Data Loss Prevention (DLP), Information Rights Management (IRM), and Conditional Access policies.
+ Provide guidance and support for M365 user provisioning, licensing, and troubleshooting.

Active Directory Management:

+ Oversee and maintain on-premises Active Directory environments, including domain controllers, group policies, forests, trusts, and replication.
+ Implement and manage AD object lifecycle, security groups, user accounts, and service accounts.
+ Perform regular AD audits, ensuring compliance with security best practices and policies.
+ Design and implement high-availability AD architectures to minimize downtime and ensure disaster recovery readiness.

Okta Cloud Administration:

+ Administering identities through Okta Identity Management
+ Implement automation using Okta Workflows
+ Manage Okta Federation across a wide array of systems

Security and Compliance:

+ Ensure adherence to corporate security policies and compliance frameworks, including GDPR, HIPAA, and SOC2.
+ Proactively identify and mitigate security risks through continuous monitoring, patch management, and system hardening.
+ Participate in security audits and incident response, assisting in the investigation of any security breaches or vulnerabilities.

Performance Optimization & Troubleshooting:

+ Perform regular monitoring, diagnostics, and performance tuning for AD, Entra ID, Azure, and M365 environments.
+ Troubleshoot and resolve system performance issues, ensuring minimal impact on business operations.
+ Implement automation and scripting (PowerShell, Azure CLI, etc.) to enhance operational efficiency and reduce manual tasks.

Documentation & Knowledge Sharing:

+ Create and maintain comprehensive documentation for system configurations, procedures, and troubleshooting guides.
+ Train and mentor junior engineers, providing technical expertise and knowledge sharing across the IT organization.

**WHAT YOU’LL NEED TO SUCCEED:**

+ **Education** : Bachelor’s degree.

In lieu of degree, 12+ years of related experience will be required.
+ **Required Experience** : 8+ years of related experience
+ **Required Skills and Abilities** : Cybersecurity engineering with a focus on Active Directory, Azure AD (Entra ID), Azure, Okta Cloud Administration, and Microsoft 365 administration
+ **Preferred Skills and Abilities** : Expertise in identity management, hybrid cloud environments, and enterprise-scale IT infrastructure.

Proficiency in PowerShell scripting and automation tools for system management.

Strong knowledge of networking concepts, firewalls, VPNs, and DNS management.
+ **Location:** This is a hybrid position working in our GDIT facility in Falls Church, VA.

Must be comfortable working a minimum of 3 days a week onsite.
+ Must be able to obtain and maintain a Secret clearance
+ US Citizenship required

**GDIT IS YOUR PLACE:**

+ 401K with company match
+ Comprehensive health and wellness packages
+ Internal mobility team dedicated to helping you own your career
+ Professional growth opportunities including paid education and certifications
+ Cutting-edge technology you can learn from
+ Rest and recharge with paid vacation and holidays

#cyberGDIT

The likely salary range for this position is $139,984 - $146,050.

This is not, however, a guarantee of compensation or salary.

Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.

To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.

To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available.

We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT.

A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community.

Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation.

We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development.

Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
Join our Talent Community to stay up to date on our career opportunities and events at https://gdit.com/tc.
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Required Skill Profession

Other General