Lead Information Security Engineer/Architect - Richmond, VA area

Lead Security Engineer

Job Description Summary:

At GDIT we build cutting-edge applications that help the end user accomplish their mission. GDIT is your place. You make it your own. Bring your creativity to help us find simple solutions to complex problems. By owning your opportunity at GDIT, you’ll play an essential part in preparing our nation for the

future.

HOW YOU WILL MAKE A DIFFERENCE:

• Ensuring security technologies align and meet requirements.
• Coordinate IT security engineering activities and program resources
• Esure solutions meet the security architecture, and security design, and do not introduce risk.
• Work with the Information Security Manager, technical and not technical staff, customers and corporate advisory boards to provide technical consultation and escalate or resolve security related issues.
• Design IT and Cyber Security solutions as required, and act as technical / engineering lead for implementation of the solutions

Required Education and Experience: Bachelor’s Degree in technology, engineering, business, or a related technical discipline and 15+ years of experience.

Required skills and demonstrated experience:

• Demonstrated experience using Splunk to ingest and analyze network data
• Demonstrated experience in network vulnerability analysis and penetration testing with both open-source and commercial tools
• Demonstrated experience providing in-depth holistic analysis of a technical threat to critical infrastructure by leveraging various data sources
• Experience with  audit records are collected and reviewed IAW ICS 500-27, Collection and Sharing of Audit Data
• Demonstrated experience with the current infrastructure, business processes, policy, and adversary capabilities is key to producing accurate risk assessments
• Demonstrated experience working complex data analysis, experience with analytical assessments of operational and technical data
• Demonstrated experience with multiple operating systems such as Windows, Linux, and Mac OSX
• Demonstrated experience with programming skills with scripting languages such as Perl, PowerShell, Python, and Bash
• Demonstrated experience with system kernel level processing to detect and report on significant kernel events such as root kits, hooked functions, call tables, and data structures
• Demonstrated experience performing documented user requirements and directing or assisting in the design of test plans in support of user requirements for software or IT systems
• Demonstrated experience with analytics, writing, and briefing skills.
• Demonstrated experience distilling information into documented and sourced products.
• Demonstrated experience in analysis, targeting, or investigations.
• Demonstrated experience with data identification, reduction, and analysis to detect suspicious data types, modified software and/or other malicious content
• Demonstrated experience collaborating with multiple teams to accomplish objectives.
• Demonstrated experience with attention to detail, strong organizational skills, and the ability to independently manage and prioritize multiple tasks to ensure deadlines are met

One or more of the following certifications is preferred

• Certified Information Systems Security Professional (CISSP)
• Cisco Certified Network Associate (CCNA)
• Cisco Certified Network Professional (CCNP)
• Splunk Engineering Certification Training
• Certified Ethical Hacker (CEH)
• ISACA Certified Information Security Manager
• CCNA Cyber Ops
• CompTIA Security+ CE [10/2026]

Other skills and demonstrated experiences that are highly desired but not mandatory to perform the work, include:

• Demonstrated on-the-job experience with collaboration and outreach across multiple customer environments such as IT, Cyber, Security, and Operational
• Demonstrated experience working with virtualization software and virtualized environments such as ESXi, VMWare, VirtualBox, and Hyper-V
• Demonstrated experience with both static and dynamic malware analysis and the ability to conduct analysis of identified malicious software and code
• Demonstrated experience working with debuggers and disassemblers such as OllyDbg, WinDbg, IDA Pro, and Binary Ninja
• Demonstrated experience working closely and collegiately with Sponsor mission partners
• Demonstrated experience with fostering and facilitating strategic partnerships across organizational boundaries to positively impact delivery
• Demonstrated experience communicating complex technical topics to a non-technical audience
• Demonstrated experience distilling complex issues into succinct problems, to recommend and impact solutions

Location: Hybrid, Richmond, VA (Work from home, but expected to be on site for customer meetings 2-3 days a week.)

Timeline: This posting is contingent, for a future program that is expected to start in March 2025.

GDIT IS YOUR PLACE:
● Full-flex work week to own your priorities at work and at home
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
● Rest and recharge with paid vacation and holidays