About

Type of Requisition: Regular Clearance Level Must Currently Possess: None Clearance Level Must Be Able to Obtain: Secret Public Trust/Other Required: None Job Family: Cyber and IT Risk Management Job Qualifications: Skills: Active Directory (AD), Identity Access Management (IAM), Microsoft Entra, Okta Identity Management, Privileged Access Management (PAM) Certifications: None Experience: 8 + years of related experience US Citizenship Required: Yes Job Description: Deliver simple solutions to complex problems as a Cybersecurity Engineer Principal at GDIT. Here, you’ll tailor cutting-edge solutions to the unique requirements of our clients. With a career in application development, you’ll make the end user’s experience your priority and we’ll make your career growth ours. At GDIT, people are our differentiator. As a Cybersecurity Engineer Principal you will help ensure today is safe and tomorrow is smarter. Our work depends on Cybersecurity Engineer Principal joining our team to optimize our enterprise identity and access management infrastructure. HOW A CYBERSECURITY ENGINEER PRINCIPAL WILL MAKE AN IMPACT: As a Cybersecurity Engineer Principal, you will lead enterprise-level initiatives that strengthen our identity, access, and cloud security posture. You’ll architect and drive modern IAM solutions that align with Zero Trust principles, enhance automation, and ensure compliance with regulatory and internal frameworks. You will partner with senior leadership, cloud architects, and engineering teams to design secure identity and access controls across hybrid environments — balancing innovation, resilience, and compliance. Key Responsibilities Strategic Leadership & Initiative Ownership Independently lead cybersecurity and IAM initiatives that align with enterprise modernization and Zero Trust strategies. Partner with leadership to develop strategic roadmaps for identity, privilege, and access governance across cloud and on-prem environments. Provide expert guidance in architecture review boards, security councils, and technical working groups to influence secure design decisions. Identity & Access Management (IAM) Engineering Architect, implement, and manage Microsoft Entra ID (Azure AD) and Okta Identity Cloud integrations supporting hybrid identity models. Define and enforce least privilege, role-based access control (RBAC), and just-in-time access across enterprise systems. Engineer automation for identity lifecycle management using Okta Workflows, Microsoft Identity Governance, and API-based orchestration. Privileged Access & Authentication Security Support the design and deployment of Privileged Access Management (PAM) controls using modern cloud-based solutions. Strengthen credential management and certificate authority modernization efforts in alignment with evolving industry expiration and compliance standards. Implement passwordless and phishing-resistant authentication using FIDO2, Windows Hello for Business, and Conditional Access policies. Cloud Security & Governance Integrate security and compliance controls into Azure, AWS, and M365 services leveraging policy automation and native governance frameworks. Conduct architecture risk assessments and participate in security design reviews for new cloud and SaaS integrations. Lead remediation initiatives for cloud misconfigurations and identity exposures identified through continuous monitoring tools. Zero Trust & Modernization Enablement Define and execute Zero Trust roadmap milestones across identity, network, and endpoint domains. Partner with infrastructure and application teams to establish secure access patterns for hybrid workloads, remote workforces, and SaaS integrations. Lead initiatives for federation and adaptive access policies to enhance user experience while maintaining strong security posture. Security Operations, Compliance, & Audit Readiness Ensure alignment with CMMC, ISO 27001, NIST 800-53, and SOX requirements. Conduct periodic reviews of access controls, entitlements, and privileged accounts to maintain compliance. Provide documentation and evidence to support internal and external audits and participate in incident response investigations as a subject matter expert. Automation, Tooling, & Optimization Develop PowerShell, Azure CLI, or Python scripts to automate repetitive tasks, reporting, and compliance checks. Identify and implement opportunities for efficiency, reducing manual effort through orchestration and automation platforms. Measure performance metrics for IAM systems and recommend continuous improvements. Documentation & Knowledge Management Author and maintain Standard Operating Procedures (SOPs), architecture diagrams, and runbooks for all supported systems. Deliver knowledge transfer sessions to operations and support teams to ensure continuity and scalability. Contribute to playbooks and reference architectures that support ongoing modernization and audit requirements. WHAT YOU’LL NEED TO SUCCEED: Education: Bachelor’s degree. In lieu of degree, 12+ years of related experience will be required. Required Experience: 8+ years of progressive experience in cybersecurity engineering, identity and access management, and cloud security operations Required Skills and Abilities: Zero Trust Architecture (ZTA) Identity Access Management (IAM), Privileged Access Management (PAM) Microsoft Entra ID (Azure AD) Active Directory Azure/M365 Security Cloud Governance Automation (PowerShell, Azure CLI, Terraform, or Python) Preferred Experience: CISSP Certification Okta Identity Cloud Microsoft Certified: Cybersecurity Architect Expert, Okta Certified Professional, Azure Solutions Architect Expert, or similar industry certifications Location: This is a hybrid position working in our GDIT facility in Herndon or Falls Church, VA locations. Must be comfortable working a minimum of 3 days a week onsite. Clearance: Must be able to obtain and maintain a Secret clearance US Citizenship required GDIT IS YOUR PLACE: 401K with company match Comprehensive health and wellness packages Internal mobility team dedicated to helping you own your career Professional growth opportunities including paid education and certifications Cutting-edge technology you can learn from Rest and recharge with paid vacation and holidays #cybergdit The likely salary range for this position is $110,500 - $149,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: Less than 10% Telecommuting Options: Hybrid Work Location: USA VA Herndon Additional Work Locations: USA VA Falls Church Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most. We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans Join our 30,000 everyday heroes. We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. For more information about GDIT's Privacy Policy, click here: https://www.gdit.com/privacy-policy/notices/