Type of Requisition:Regular
Clearance Level Must Currently Possess:Top Secret/SCI
Clearance Level Must Be Able to Obtain:Top Secret/SCI
Public Trust/Other Required:None
Job Family:Cyber and IT Risk Management
Job Qualifications:Skills:Role Based Access Control (RBAC), Security Practices, System Security
Certifications:None
Experience:8 + years of related experience
US Citizenship Required:Yes
Job Description:Deliver simple solutions to complex problems as a
Cybersecurity Engineer Principal at GDIT. Here, you'll tailor cutting-edge solutions to the unique requirements of our clients. With a career in application development, you'll make the end user's experience your priority and we'll make your career growth ours.
At GDIT, people are our differentiator. As a
Cybersecurity Engineer Principal you will help ensure today is safe and tomorrow is smarter. Our work depends on
Cybersecurity Engineer Principal joining our team to optimize our enterprise identity and access management infrastructure.
HOW A CYBERSECURITY ENGINEER PRINCIPAL WILL MAKE AN IMPACT:Entra ID (Azure AD) Management:
- Manage and maintain Azure AD/Entra ID, including hybrid identity configurations and integrations with on-premises Active Directory.
- Configure and optimize Azure AD for secure access, identity governance, conditional access, and multi-factor authentication (MFA).
- Implement and maintain Single Sign-On (SSO) and seamless access across cloud-based applications.
- Monitor Azure AD health and resolve any synchronization or performance issues.
Azure Platform Management:
- Administer and optimize Azure infrastructure services, including virtual machines, networking, storage, and identity services.
- Support Azure-based applications, ensuring proper security measures are in place, such as RBAC (Role-Based Access Control), identity management, and privileged identity protection.
- Collaborate with cloud architects and development teams to design scalable and secure Azure environments that meet business requirements.
Microsoft 365 (M365) Administration:
- Implement and manage security and compliance features such as Data Loss Prevention (DLP), Information Rights Management (IRM), and Conditional Access policies.
- Provide guidance and support for M365 user provisioning, licensing, and troubleshooting.
Active Directory Management:
- Oversee and maintain on-premises Active Directory environments, including domain controllers, group policies, forests, trusts, and replication.
- Implement and manage AD object lifecycle, security groups, user accounts, and service accounts.
- Perform regular AD audits, ensuring compliance with security best practices and policies.
- Design and implement high-availability AD architectures to minimize downtime and ensure disaster recovery readiness.
Okta Cloud Administration:
- Administering identities through Okta Identity Management
- Implement automation using Okta Workflows
- Manage Okta Federation across a wide array of systems
Security and Compliance:
- Ensure adherence to corporate security policies and compliance frameworks, including GDPR, HIPAA, and SOC2.
- Proactively identify and mitigate security risks through continuous monitoring, patch management, and system hardening.
- Participate in security audits and incident response, assisting in the investigation of any security breaches or vulnerabilities.
Performance Optimization & Troubleshooting:
- Perform regular monitoring, diagnostics, and performance tuning for AD, Entra ID, Azure, and M365 environments.
- Troubleshoot and resolve system performance issues, ensuring minimal impact on business operations.
- Implement automation and scripting (PowerShell, Azure CLI, etc.) to enhance operational efficiency and reduce manual tasks.
Documentation & Knowledge Sharing:
- Create and maintain comprehensive documentation for system configurations, procedures, and troubleshooting guides.
- Train and mentor junior engineers, providing technical expertise and knowledge sharing across the IT organization.
WHAT YOU'LL NEED TO SUCCEED:- Education: Bachelor's degree. In lieu of degree, 12+ years of related experience will be required.
- Required Experience: 8+ years of related experience
- Required Skills and Abilities: Cybersecurity engineering with a focus on Active Directory, Azure AD (Entra ID), Azure, Okta Cloud Administration, and Microsoft 365 administration
- Preferred Skills and Abilities: Expertise in identity management, hybrid cloud environments, and enterprise-scale IT infrastructure. Proficiency in PowerShell scripting and automation tools for system management. Strong knowledge of networking concepts, firewalls, VPNs, and DNS management.
- Location: Tampa, FL
- Must have an active TS/SCI security clearance
- US Citizenship required'
#armajobs
The likely salary range for this position is $129,813 - $172,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Scheduled Weekly Hours:40
Travel Required:Less than 10%
Telecommuting Options:Onsite
Work Location:USA FL MacDill AFB - MacDill AFB (FLC007)
Additional Work Locations:Total Rewards at GDIT:Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.
