"Alerted.org

**Req ID:** RQ212949

**Type of Requisition:** Regular

**Clearance Level Must Be Able to Obtain:** Top Secret/SCI

**Public Trust/Other Required:** None

**Job Family:** Cyber and IT Risk Management

Skills:

Cybersecurity,Endpoint Security,Linux,Splunk Enterprise Security

Certifications:

CompTIA Security+ CE | CompTIA - CompTIA

Experience:

8 + years of related experience

US Citizenship Required:

Yes

Job Description:

**Description:** We are seeking a highly skilled and multi-faceted Cyber Engineer for a critical contract role supporting Google's SIPRNet enclave. The ideal candidate is a proactive and seasoned professional with extensive, hands-on experience navigating Red Hat Linux, the NIST 800-53 Risk Management Framework (RMF) control requirements, and Security Operations for a classified network in a unique commercial cloud setting. This role requires a blend of technical engineering prowess to provide Security Operations support as well as a deep understanding of continuous monitoring control requirements to prepare for security assessments and auditing. You will be a key contributor to our SIPR Enclave team, supporting the SIPR Enclave Lead in RMF activities and the Senior Cyber Engineer in security operations support.

Timeframe** **:

+ Start - 1/1/2026

+ End - 12/31/2026

+ Renewal Cycle - Annual

Investigation/Clearance Level:

+ Mustpossessa current and active Top Secret (Sensitive Compartmented Information [SCI] eligibility).

**Location:** Onsite at the classified operations center in McLean, VA.

Duties:

From a Security Operations perspective, as directed by the Senior Cyber Engineer, the Engineer -

+ Configure and update the Linux operating systems.

+ Red Hat

+ Debian

+ Monitors the following security applications:

+ Scanning implementation (Tenable.sc, SCC Tool)

+ SIEM implementation (Splunk)

+ Endpoint security implementation (Trellix)

+ Works with the vendors of the security applications as applicable tomaintainsecurity updates, licenses, resolve support issues (e.g., for Tenable plugins), etc.

+ For the SIEM:

+ Ensure security systems are up to date and implemented.

+ Validate the telemetry from the hosts and security applications areforwardedto the SIEM.

+ Configures alerts for privileged activity that would be conducted in the enclave as well as alerts from security advisories.

+ Triages all alerts from the SIEM to ensure activity in the environment is authorized.

+ Investigates, resolves, and reports security incidents in alignment with the Incident Response Plan.

+ For scanning/STIGs:

+ Ensures the inventory of hosts and recurring/ad-hoc scan policies areaccurate.

+ Reviews the scans to confirm correct, actionable data is generated to support the patching activities.

+ Reviews STIG results and supports the team in implementing corrective action as applicable.

+ For endpoint management:

+ Ensures all hosts can be seen in the endpoint security application with ongoing monitoring and applicable policies applied.

+ Triages all alerts from the tool to ensure activity in the environment is authorized.

+ For insider threat monitoring:

+ Ensures deployment of tool and related modules are performing as intended.

+ Monitors aggregate user data as directed.

+ Designs, develops, tests, and evaluates information system security throughout the systems development life cycle.

From a RMF perspective, as directed by the SIPR Enclave Lead -

+ Supportsmaintainingthe Continuous Monitoring program, specifically around vulnerability management, endpoint security, auditing, and security alert triage/monitoring.

+ Supports control implementation statement updates, documentation development for plans or procedures, artifact identification for assessments, and body of evidence generation.

+ Supports POAM mitigation and/or remediation activities.

Required Qualifications:

+ Education: BA/BS Degree or equivalent experience in lieu of degree

+ Experience: 8+ years of related experience

+ Technical skills:

+ Hands-on experience with Red Hat operating system.

+ Understanding of various Linux operating systems.

+ Understanding of security operations of Splunk andTrellix.

+ Understanding of Microsoft Active Directory and implementing controls via Group Policy.

+ Role requirements: Knowledge of the complete NIST SP 800 series (especially 800-37, 800-53, 800-30) and risk management principles.

+ Certifications: Must be DoD 8140 / 8570.01-M compliant (e.g., including but not limited to Security+)

Preferred Qualifications:

+ Hands-on experience with security operations ofTeramind.

+ Hands-on experience with Tenable.sc.

+ 5 days onsite McLean, VA

The likely salary range for this position is $142,792 - $175,950. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at https://gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans