Job Description

Public Trust: None

Requisition Type: Regular

Your Impact

Own your opportunity to support our nation's defense. Make an impact by connecting and securing critical operations across the globe, keeping our country safe and secure.

Job Description

As a SOC Senior Cyber Security Engineer supporting USCENTCOM, you will serve as a technical leader and primary engineer responsible for architecting, securing, and optimizing mission‑critical cybersecurity infrastructure. You will guide engineering efforts across boundary defense, SIEM/EDR/SOAR platforms, network access control, virtual cyber range administration, and enterprise security automation. You will also provide senior‑level expertise in the DevSecOps security controls, and compliance with DoD cybersecurity requirements.

This role requires deep technical mastery, guidance and mentorship, ability to work within a team environment, and the confidence to brief senior leadership on complex cyber issues as needed.  The appropriate candidate will “configure, tune, optimize, and maintain critical security infrastructure while demonstrating both hands‑on expertise and executive‑level communication and collaboration.

Key Responsibilities:

Cybersecurity Architecture & Engineering Leadership

• Lead the design, deployment, and optimization of boundary defense technologies including firewalls, IDS/IPS, Security Onion, and network taps.

• Serve as the senior escalation point for complex troubleshooting, packet analysis, and system performance issues.

• Drive integration of cyber tools with legacy and modern data sources to enhance enterprise visibility.

Advanced SIEM, EDR, NAC, and SOAR Engineering

• Architect and oversee enterprise SIEM deployments, including clustered Splunk environments, app lifecycle management, and large‑scale data onboarding.

• Lead tuning of correlation searches, detection logic, dashboards, and analytics to improve threat detection maturity.

• Oversee EDR policy engineering, NAC (Comply‑to‑Connect) enforcement strategies, Zero-Trust architecture compliance and SOAR automation development.

• Mentor team members on Splunk search optimization, dashboard creation, and advanced analytics.

DevSecOps, Automation & Innovation

• Evaluate DevSecOps and AI/ML security controls and provide expert recommendations.

• Lead development of automation scripts, SOAR playbooks, and orchestration workflows to streamline operations.

• Identify opportunities for continuous improvement and emerging technologies that enhance mission readiness.

Operational Excellence & Leadership Communication

• Oversee maintenance cycles, patching strategies, and system health checks across all cybersecurity platforms.

• Provide senior‑level briefings, technical reports, and capability demonstrations to leadership.

• Lead cross‑functional collaboration with engineering teams, SOC analysts, compliance teams, and mission partners.

• Champion knowledge sharing, training, and documentation to elevate team capability.

Required Qualifications

• Active TS/SCI clearance

• 5+ years of cybersecurity engineering or administration experience

• Bachelor’s degree in Information Systems, Computer Science, Computer Engineering, or another related field or relevant experience preferred.

• Demonstrated expertise with firewalls, IDS/IPS, SIEM, EDR, NAC, and SOAR platforms

• Strong Linux administration and scripting proficiency (PS, Python, JAVA, HTML)

• Expert understanding of cybersecurity principles, threat landscapes, and DoD security requirements

• DoD 8570 certifications CISSP, GIAC, Security+ other security essential  certifications desired, Splunk Core Certified Power User, GITLAB, Kubernetes, Cloud Development.

Desired Qualifications

• Prior CENTCOM/COCOM experience

• SOC or cyber operations leadership experience

• Strong networking and packet analysis background (e.g., Wireshark)

• Experience with Next‑Gen firewalls and IPS

• Experience supporting DevSecOps environments

• Familiarity with DoD military standards

GDIT IS YOUR PLACE

At GDIT, the mission is our purpose, and our people are at the center of everything we do.

• Growth: AI-powered career tool that identifies career steps and learning opportunities

• Support: An internal mobility team focused on helping you achieve your career goals

• Rewards: Comprehensive benefits and wellness packages, 401K with company match, competitive pay and paid time off

• Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY

Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.

#gditpriority

#armajobs

Work Requirements

Years of Experience

5 + years of related experience

* may vary based on technical training, certification(s), or degree

Certification

Splunk Core Certified User | Splunk - Splunk

GIAC Certified Intrusion Analyst Certification (GCIA) | Global Information Assurance Certification (GIAC) - Global Information Assurance Certification (GIAC)

CompTIA Security+ CE | CompTIA - CompTIA

Certified Information Systems Security Professional (CISSP) | International Information System Security Certification Consortium (ISC2) - International Information System Security Certification Consortium (ISC2)

Travel Required

Less than 10%

Citizenship

U.S. Citizenship Required

Job Tags

Similar Jobs