General Dynamics Information Technology
Cybersecurity Engineer Principal
General Dynamics Information Technology, Tampa, Florida, us, 33646
Cybersecurity Engineer Principal
Deliver simple solutions to complex problems as a Cybersecurity Engineer Principal at GDIT. Here, you'll tailor cutting-edge solutions to the unique requirements of our clients. With a career in application development, you'll make the end user's experience your priority and we'll make your career growth ours. At GDIT, people are our differentiator. As a Cybersecurity Engineer Principal you will help ensure today is safe and tomorrow is smarter. Our work depends on a Cybersecurity Engineer Principal joining our team to optimize our enterprise identity and access management infrastructure. How a Cybersecurity Engineer Principal will make an impact: Manage and maintain Azure AD/Entra ID, including hybrid identity configurations and integrations with on-premises Active Directory. Configure and optimize Azure AD for secure access, identity governance, conditional access, and multi-factor authentication (MFA). Implement and maintain Single Sign-On (SSO) and seamless access across cloud-based applications. Monitor Azure AD health and resolve any synchronization or performance issues. Administer and optimize Azure infrastructure services, including virtual machines, networking, storage, and identity services. Support Azure-based applications, ensuring proper security measures are in place, such as RBAC (Role-Based Access Control), identity management, and privileged identity protection. Collaborate with cloud architects and development teams to design scalable and secure Azure environments that meet business requirements. Implement and manage security and compliance features such as Data Loss Prevention (DLP), Information Rights Management (IRM), and Conditional Access policies. Provide guidance and support for M365 user provisioning, licensing, and troubleshooting. Oversee and maintain on-premises Active Directory environments, including domain controllers, group policies, forests, trusts, and replication. Implement and manage AD object lifecycle, security groups, user accounts, and service accounts. Perform regular AD audits, ensuring compliance with security best practices and policies. Design and implement high-availability AD architectures to minimize downtime and ensure disaster recovery readiness. Administering identities through Okta Identity Management Implement automation using Okta Workflows Manage Okta Federation across a wide array of systems Ensure adherence to corporate security policies and compliance frameworks, including GDPR, HIPAA, and SOC2. Proactively identify and mitigate security risks through continuous monitoring, patch management, and system hardening. Participate in security audits and incident response, assisting in the investigation of any security breaches or vulnerabilities. Perform regular monitoring, diagnostics, and performance tuning for AD, Entra ID, Azure, and M365 environments. Troubleshoot and resolve system performance issues, ensuring minimal impact on business operations. Implement automation and scripting (PowerShell, Azure CLI, etc.) to enhance operational efficiency and reduce manual tasks. Create and maintain comprehensive documentation for system configurations, procedures, and troubleshooting guides. Train and mentor junior engineers, providing technical expertise and knowledge sharing across the IT organization. What you'll need to succeed: Education: Bachelor's degree. In lieu of degree, 12+ years of related experience will be required. Required Experience: 8+ years of related experience Required Skills and Abilities: Cybersecurity engineering with a focus on Active Directory, Azure AD (Entra ID), Azure, Okta Cloud Administration, and Microsoft 365 administration Preferred Skills and Abilities: Expertise in identity management, hybrid cloud environments, and enterprise-scale IT infrastructure. Proficiency in PowerShell scripting and automation tools for system management. Strong knowledge of networking concepts, firewalls, VPNs, and DNS management. Location: Tampa, FL Must have an active TS/SCI security clearance US Citizenship required
Deliver simple solutions to complex problems as a Cybersecurity Engineer Principal at GDIT. Here, you'll tailor cutting-edge solutions to the unique requirements of our clients. With a career in application development, you'll make the end user's experience your priority and we'll make your career growth ours. At GDIT, people are our differentiator. As a Cybersecurity Engineer Principal you will help ensure today is safe and tomorrow is smarter. Our work depends on a Cybersecurity Engineer Principal joining our team to optimize our enterprise identity and access management infrastructure. How a Cybersecurity Engineer Principal will make an impact: Manage and maintain Azure AD/Entra ID, including hybrid identity configurations and integrations with on-premises Active Directory. Configure and optimize Azure AD for secure access, identity governance, conditional access, and multi-factor authentication (MFA). Implement and maintain Single Sign-On (SSO) and seamless access across cloud-based applications. Monitor Azure AD health and resolve any synchronization or performance issues. Administer and optimize Azure infrastructure services, including virtual machines, networking, storage, and identity services. Support Azure-based applications, ensuring proper security measures are in place, such as RBAC (Role-Based Access Control), identity management, and privileged identity protection. Collaborate with cloud architects and development teams to design scalable and secure Azure environments that meet business requirements. Implement and manage security and compliance features such as Data Loss Prevention (DLP), Information Rights Management (IRM), and Conditional Access policies. Provide guidance and support for M365 user provisioning, licensing, and troubleshooting. Oversee and maintain on-premises Active Directory environments, including domain controllers, group policies, forests, trusts, and replication. Implement and manage AD object lifecycle, security groups, user accounts, and service accounts. Perform regular AD audits, ensuring compliance with security best practices and policies. Design and implement high-availability AD architectures to minimize downtime and ensure disaster recovery readiness. Administering identities through Okta Identity Management Implement automation using Okta Workflows Manage Okta Federation across a wide array of systems Ensure adherence to corporate security policies and compliance frameworks, including GDPR, HIPAA, and SOC2. Proactively identify and mitigate security risks through continuous monitoring, patch management, and system hardening. Participate in security audits and incident response, assisting in the investigation of any security breaches or vulnerabilities. Perform regular monitoring, diagnostics, and performance tuning for AD, Entra ID, Azure, and M365 environments. Troubleshoot and resolve system performance issues, ensuring minimal impact on business operations. Implement automation and scripting (PowerShell, Azure CLI, etc.) to enhance operational efficiency and reduce manual tasks. Create and maintain comprehensive documentation for system configurations, procedures, and troubleshooting guides. Train and mentor junior engineers, providing technical expertise and knowledge sharing across the IT organization. What you'll need to succeed: Education: Bachelor's degree. In lieu of degree, 12+ years of related experience will be required. Required Experience: 8+ years of related experience Required Skills and Abilities: Cybersecurity engineering with a focus on Active Directory, Azure AD (Entra ID), Azure, Okta Cloud Administration, and Microsoft 365 administration Preferred Skills and Abilities: Expertise in identity management, hybrid cloud environments, and enterprise-scale IT infrastructure. Proficiency in PowerShell scripting and automation tools for system management. Strong knowledge of networking concepts, firewalls, VPNs, and DNS management. Location: Tampa, FL Must have an active TS/SCI security clearance US Citizenship required