Cybersecurity Engineer Principal

Type of Requisition:

Regular

None

None

None

Cyber and IT Risk Management

Authentication Protocols, Cybersecurity, Identity Access Management (IAM), IT Automation, Okta Identity Management

None

8 + years of related experience

No

Apply your expertise to advance the mission and optimize our business strategy as a Cybersecurity Engineer Principal e, you’ll support solving some of our clients’ biggest challenges and help us grow the business. At GDIT, people are our differentiator. As a Cybersecurity Engineer Principal you will help ensure today is safe and tomorrow is smarter. Our work depends on joining our team to lead enterprise-level initiatives that strengthen our identity, access, and cloud security posture.

You’ll architect and drive modern IAM solutions that align with Zero Trust Principals, enhance automation, and ensure compliance with regulatory and internal frameworks.

• Partner with senior leadership, cloud architects, and engineering teams to design secure identity and access controls across hybrid environments — balancing innovation, resilience, and compliance.

• Design, implement, and manage Okta Identity Cloud integrations supporting hybrid identity models.
• Define and enforce least privilege, role-based access control (RBAC), and just-in-time access across enterprise systems.
• Drive automation for identity lifecycle management using Okta Workflows, Power Shell, and API-based orchestration.
• Ensure automated compliance reporting, security controls, and governance dashboards meet audit requirements.
• Drive Active Directory retirement initiatives, migrating to modern cloud-native identity platforms.
• Oversee complex federated authentication scenarios, API integrations, and custom applications.

• Support the design and deployment of Privileged Access Management (PAM) controls using modern cloud-based solutions.
• Strengthen credential management and certificate authority modernization efforts in alignment with evolving industry expiration and compliance standards.
• Implement passwordless and phishing-resistant authentication using FIDO2, Okta Fast Pass, Windows Hello for Business, and M365 Conditional Access policies.

• Define and execute Zero Trust roadmap milestones across identity, network, and endpoint domains.
• Partner with infrastructure and application teams to establish secure access patterns for hybrid workloads, remote work forces, and SaaS integrations.
• Lead initiatives for federation and adaptive access policies to enhance user experience while maintaining strong security posture.

• Ensure alignment with CMMC, ISO 27001, NIST 800-53, and SOX requirements.
• Conduct periodic reviews of access controls, entitlements, and privileged accounts to maintain compliance.
• Provide documentation and evidence to support internal and external audits and participate in incident response investigations as a subject matter expert.

• Education:
  
  Bachelor’s degree. In lieu of degree, 4+ years of additional experience will be required.
• Required Experience:
  
  8 years of progressive experience in cybersecurity engineering, identity and access management, and cloud security operations.
• Required Technical
  
  Skills:
  
  Identity Access Management (IAM), Okta Lifecycle Management, Okta Workflows, Okta Identity Governance, Privileged Access Management (PAM), Zero Trust Architecture (ZTA).
• Security Clearance Level: None.
• Required
  
  Skills and Abilities:
  
  Automation (Okta Workflows, Power Shell), Active Directory, Microsoft Entra .
• Preferred
  
  Skills:
  
  Microsoft Certified:
  Cybersecurity Architect Expert, Okta Certified Professional, Azure Solutions Architect Expert, or similar industry certifications.
• Location:
  
  Hybrid.

• Full‑flex work week to own your priorities at work and at home.
• 401K with company match.
• Comprehensive…