Deliver simple solutions to complex problems as a Cybersecurity Engineer Principal at GDIT. Here, you’ll tailor cutting-edge solutions to the unique requirements of our clients. With a career in application development, you’ll make the end user’s experience your priority and we’ll make your career growth ours.

At GDIT, people are our differentiator. As a Cybersecurity Engineer Principal you will help ensure today is safe and tomorrow is smarter. Our work depends on Cybersecurity Engineer Principal joining our team to optimize our enterprise identity and access management infrastructure.

HOW A CYBERSECURITY ENGINEER PRINCIPAL WILL MAKE AN IMPACT:

Entra ID (Azure AD) Management:

Manage and maintain Azure AD/Entra ID, including hybrid identity configurations and integrations with on-premises Active Directory.Configure and optimize Azure AD for secure access, identity governance, conditional access, and multi-factor authentication (MFA).Implement and maintain Single Sign-On (SSO) and seamless access across cloud-based applications.Monitor Azure AD health and resolve any synchronization or performance issues.

Azure Platform Management:

Administer and optimize Azure infrastructure services, including virtual machines, networking, storage, and identity services.Support Azure-based applications, ensuring proper security measures are in place, such as RBAC (Role-Based Access Control), identity management, and privileged identity protection.Collaborate with cloud architects and development teams to design scalable and secure Azure environments that meet business requirements.

Microsoft 365 (M365) Administration:

Implement and manage security and compliance features such as Data Loss Prevention (DLP), Information Rights Management (IRM), and Conditional Access policies.Provide guidance and support for M365 user provisioning, licensing, and troubleshooting.

Active Directory Management:

Oversee and maintain on-premises Active Directory environments, including domain controllers, group policies, forests, trusts, and replication.Implement and manage AD object lifecycle, security groups, user accounts, and service accounts.Perform regular AD audits, ensuring compliance with security best practices and policies.Design and implement high-availability AD architectures to minimize downtime and ensure disaster recovery readiness.

Okta Cloud Administration:

Administering identities through Okta Identity ManagementImplement automation using Okta WorkflowsManage Okta Federation across a wide array of systems

Security and Compliance:

Ensure adherence to corporate security policies and compliance frameworks, including GDPR, HIPAA, and SOC2.Proactively identify and mitigate security risks through continuous monitoring, patch management, and system hardening.Participate in security audits and incident response, assisting in the investigation of any security breaches or vulnerabilities.

Performance Optimization & Troubleshooting:

Perform regular monitoring, diagnostics, and performance tuning for AD, Entra ID, Azure, and M365 environments.Troubleshoot and resolve system performance issues, ensuring minimal impact on business operations.Implement automation and scripting (PowerShell, Azure CLI, etc.) to enhance operational efficiency and reduce manual tasks.

Documentation & Knowledge Sharing:

Create and maintain comprehensive documentation for system configurations, procedures, and troubleshooting guides.Train and mentor junior engineers, providing technical expertise and knowledge sharing across the IT organization.

WHAT YOU’LL NEED TO SUCCEED:

Education: Bachelor’s degree. In lieu of degree, 12+ years of related experience will be required.Required Experience: 8+ years of related experienceRequired Skills and Abilities: Cybersecurity engineering with a focus on Active Directory, Azure AD (Entra ID), Azure, Okta Cloud Administration, and Microsoft 365 administrationPreferred Skills and Abilities: Expertise in identity management, hybrid cloud environments, and enterprise-scale IT infrastructure. Proficiency in PowerShell scripting and automation tools for system management. Strong knowledge of networking concepts, firewalls, VPNs, and DNS management.Location: This is a hybrid position working in our GDIT facility in Falls Church, VA. Must be comfortable working a minimum of 3 days a week onsite.   Must be able to obtain and maintain a Secret clearanceUS Citizenship required

GDIT IS YOUR PLACE:

401K with company matchComprehensive health and wellness packagesInternal mobility team dedicated to helping you own your careerProfessional growth opportunities including paid education and certificationsCutting-edge technology you can learn fromRest and recharge with paid vacation and holidays