• Cybersecurity Analyst Sr Principal

    General Dynamics Information Technology (Philadelphia, PA)


    **Req ID:** RQ210784

    **Type of Requisition:** Regular

    **Clearance Level Must Be Able to Obtain:** None

    **Public Trust/Other Required:** NACLC (T3)

    **Job Family:** Cyber and IT Risk Management

    Skills:

    Audit Trails,Cyber Defense,Technical Security

    Certifications:

    CompTIA SecurityX CE | CompTIA - CompTIA

    Experience:

    8 + years of related experience

    US Citizenship Required:

    Yes

    Job Description:

    CYBERSECURITY ANALYST SR PRINCIPAL

    Advance your career while impacting our national security in cyber as a Cybersecurity Analyst Sr Principal at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.

    MEANINGFUL WORK AND PERSONAL IMPACT

    As a Technical Compliance Cybersecurity Specialist, the work you’ll do at GDIT will be impactful to the mission of DLA Troop Support Medical Supply Chain. In this role, one serves as the technical authority for validating audit readiness across multiple technology domains, including identity, databases, hosting environments, application platforms, and infrastructure components. This role bridges the gap between auditors and engineering teams by translating audit control requirements into concrete technical checks and independently verifying compliance.

     

    The individual will produce audit-ready evidence, identify gaps, lead remediation planning, and reduce the operational burden placed on subject matter experts. This position is hands-on, investigative, and deeply technical, with the ability to interpret controls and directly inspect systems, logs, configurations, and code paths to determine whether requirements are actually met.

     

    This position requires analytical and communication skills to evaluate existing audit materials, understand requirement rationales through strategic questioning, and collaborate with teams to produce targeted audit deliverables,

     

    + Lead/Manage/Support - Interpret audit controls from financial, security, and enterprise compliance frameworks. Map each control to the real technical mechanisms used across identity systems, databases, hosting environments, and application components. Produce authoritative guidance describing how controls are satisfied, citing actual system behavior and configuration

    + Collaborate with Application Infrastructure, ICAM, Database, and Application teams to research findings. Participate in design reviews to ensure future changes remain audit-aligned

    + Drive hands-on validation across multiple domains. Independently validate technical compliance for:

    + Identity & access management (OIDC/OAuth, ABAC, E-ICAM).

    + Databases (Oracle, SQL Server)

    + Infrastructure and hosting (IIS, Linux, Windows Server)

    + Application behavior (session management, authentication flows)

    + Logging, audit trails, and monitoring

    + Utilize: Identity systems (OIDC/OAuth, IdPs, ABAC, ICAM concepts). Databases (Oracle, SQL Server — configuration, permissions, logging, auditing). Hosting platforms (IIS, Windows Server, Linux). Application architectures (authentication flows, API patterns, session handling). Infrastructure components (load balancers, proxies, certificates, network basics).

     

    WHAT YOU’LL NEED TO SUCCEED

    The Technical Compliance Cybersecurity Specialist must have:

    **Security clearance level:** Minimum active Top Secret (SSBI or Tier 5) clearance

    **● Education:** High School Diploma (degree preferred)

    **Certifications:** Must have ONE of the following:

    + Certified Information Systems Auditor (CISA)

    + Certified Information Systems Security Professional (CISSP)

    + CompTIA Cybersecurity Analyst (CySA+)

    **Experience:** 8+ years of related experience

    **Technical Skills:**

    + Identity systems (OIDC/OAuth, IdPs, ABAC, ICAM concepts).

    + Databases (Oracle, SQL Server — configuration, permissions, logging, auditing).

    + Hosting platforms (IIS, Windows Server, Linux).

    + Application architectures (authentication flows, API patterns, session handling).

    + Infrastructure components (load balancers, proxies, certificates, network basics).

    **Skills & Abilities:**

    + Experience interpreting and validating technical security and financial audit controls.

    + Familiarity with DoD audit expectations, evidence requirements, and RFI workflows.

    + Understanding of STIGs, RMF controls, and enterprise compliance frameworks.

    + Ability to inspect configurations directly, run commands/queries, read logs, and trace system behavior.

    + Strong diagnostic skills to independently assess compliance.

    + Strong written communication for producing audit responses and evidence packages.

    + Clear reasoning, assertive communication style, and comfort defending technical positions.

    GDIT IS YOUR PLACE

    At GDIT, the mission is our purpose, and our people are at the center of everything we do.

     

    Growth: AI-powered career tool that identifies career steps and learning opportunities

    Support: An internal mobility team focused on helping you achieve your career goals

    Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off

    Flexibility: This is a Hybrid position that **requires the successful candidate to be on-site at our client facility in Northeast Philadelphia Wednesday of each week** . The other 4 days are teleworking days. This could soon change to 2 days on-site if directed by the government.

    Community: Award-winning culture of innovation and a military-friendly workplace

    OWN YOUR OPPORTUNITY

    Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.

     

    The likely salary range for this position is $144,500 - $195,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

     

    Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

     

    We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

     

    Join our Talent Community to stay up to date on our career opportunities and events at https://gdit.com/tc.

     

    Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans