We are looking for a Staff Security Engineer at a Managed Service Provider (MSP) who is a high-level technical leadership role. Unlike a standard Security Engineer who might focus on a single organization’s perimeter, a Staff Engineer at an MSP must design, oversee, and scale security solutions across hundreds of diverse client environments. They act as the "architect-in-chief," balancing deep technical execution with high-level strategy and mentorship. Core Responsibilities At the Staff level, the focus shifts from "doing the work" to "defining how the work is done" across the entire MSP fleet. 1. Security Architecture & Strategy - Scalable Standard Operating Procedures (SOPs): Design security baselines (NIST, CIS, or ISO 27001) that can be applied to clients ranging from small dental offices to mid-market enterprise firms. - Tooling Selection: Evaluate and select the "MSP Stack"—SIEM/MDR platforms, EDR/XDR solutions, and automated vulnerability scanners—ensuring they support multi-tenancy. - Product Development: Partner with the Product or Sales teams to build new "Security-as-a-Service" offerings (e.g., vCISO services or Managed Phishing Simulation). 2. High-Level Technical Leadership - Tier 4 Escalations: Act as the final point of escalation for complex security breaches or persistent threats that Tier 1–3 analysts cannot resolve. - Automation & Scripting: Write advanced scripts (Python, PowerShell, Bash) to automate threat hunting and remediation across thousands of endpoints simultaneously. - Cloud Security Mastery: Secure multi-cloud environments (Azure, AWS, GCP) for clients, ensuring proper identity management (MFA/Conditional Access) and data encryption. 3. Mentorship & Governance - Team Upskilling: Mentor Junior and Senior Engineers, conducting code reviews and architectural deep-dives. - Compliance & Auditing: Lead clients through regulatory audits (HIPAA, GDPR, PCI DSS) and ensure the MSP itself remains compliant (SOC2). Required Skills & Qualifications A Staff Engineer is expected to have 8–12+ years of experience in IT and Security. CategoryKey RequirementsTechnical DepthMastery of EDR/XDR, SIEM (e.g., Sentinel, Splunk), Firewalls (Fortinet, Palo Alto), and Identity (Azure AD/Entra ID).Cloud ExpertiseDeep knowledge of cloud-native security tools and Zero Trust architecture.DevelopmentProficiency in Python or PowerShell for API integrations and security automation.Soft SkillsAbility to explain "zero-day" risks to non-technical business owners (CEOs/CFOs).CertificationsCISSP (highly preferred), CISM, CCSP, or advanced provider certs (AZ-500, PCNSE).

Role Description We are looking for an experienced Senior Security Engineer to join our AI Red Team within Threat Operations. You will conduct sophisticated offensive security operations targeting AI systems, infrastructure, and emerging threats. This role is responsible for executing Red Team operations across our AI portfolio, performing security research on novel attack surfaces, and developing automated solutions to scale offensive security capabilities. You will work closely with security leadership, engineering teams, and researchers to validate security assumptions and drive meaningful improvements in our AI security posture. As a Senior Security Engineer, you will be a hands-on technical contributor with deep expertise in offensive security and growing knowledge of AI/ML systems. You'll execute complex security assessments, discover vulnerabilities in AI infrastructure and applications, and translate technical findings into actionable recommendations. This position requires someone who can work independently on sophisticated technical challenges while collaborating effectively across teams to drive security outcomes. - Conducting Red Team operations targeting AI assets including training pipelines, inference systems, model architectures, and supporting infrastructure - Performing offensive security research focused on threats to AI systems, AI supply chain security, and AI-enabled threat actor tradecraft - Discovering and exploiting vulnerabilities in AI infrastructure, applications, and supporting systems through hands-on security testing - Developing automated tools and solutions for threat emulation and scaling offensive security capabilities - Analyzing security findings and providing detailed technical recommendations to engineering teams for remediation - Collaborating with security engineers and research scientists to advance AI security research and translate findings into practical risk insights - Simulating sophisticated threat actor techniques to validate detection and response capabilities - Contributing to the development of security metrics and reporting frameworks that demonstrate program effectiveness - Supporting cross-organizational security initiatives to assess vulnerabilities introduced by growing reliance on AI Qualifications - Experience working in identifying security issues and risks, and developing mitigation plans - Minimum 5+ years of experience in offensive security testing, penetration testing, or security research - Hands-on experience with vulnerability discovery, exploitation, and lateral movement techniques - Strong understanding of cloud security, network security, and application security principles - Experience with scripting and automation using Python, Go, or similar languages Requirements - 7+ years of experience in offensive security or related security engineering roles - Experience with AI/ML security, including threats to AI systems, adversarial machine learning, or AI supply chain security - Track record of building security tools or automation that scales across organizations - Experience with Red Team operations, threat-based assessments, or security research programs - Deep technical knowledge of cloud platforms (AWS, Azure, GCP) and container technologies - Experience with distributed systems, training infrastructure, or inference optimization - Demonstrated ability to translate complex technical findings into clear recommendations for diverse audiences - Contributions to security research community through publications, presentations, or open-source tools - Understanding of threat actor tradecraft and ability to emulate sophisticated attack techniques - Experience working with cross-functional teams to drive security improvements Benefits - Comprehensive health insurance (medical, dental, vision, prescription) - Basic Life & AD&D insurance and option for Supplemental life plans - EAP and Mental Health Support - Medical Advice Line - Flexible Spending Accounts - Adoption and Surrogacy Reimbursement coverage - 401(k) matching - Paid time off - Parental leave

• Creazione, modifica e manutenzione di ruoli e profili SAP (PFCG) • Gestione delle richieste di accesso e assegnazione autorizzazioni agli utenti • Analisi e risoluzione di problematiche legate ad accessi e autorizzazioni

Title: Cloud Network Security Architecture Manager (TIC 3.0) Location: USA WV Martinsburg - 510 Butler Ave (WVC009) Job Description: Type of Requisition: Regular Clearance Level Must Currently Possess: None Clearance Level Must Be Able to Obtain: None Public Trust/Other Required: MBI (T2) Job Family: IT Infrastructure and Operations Job Qualifications: Skills: Cloud Platform, IT Service Management (ITSM), Network Architecture Certifications: None Experience: 10 + years of related experience US Citizenship Required: No Job Description: GDIT has an opportunity for a Cloud Network Security Architecture Manager supporting the Department of Veterans Affairs (VA). This role leads secure network and cloud architecture design, TIC 3.0 modernization, and enterprise gateway operations. The manager partners with stakeholders, guides technology decisions, and ensures security, compliance, and performance across hybrid and multi‑cloud environments. HOW YOU WILL MAKE AN IMPACT • Partner with internal teams and customer groups to define strategy, design solutions, and support implementation. • Collaborate with stakeholders and vendors to ensure solutions meet technical and business requirements. • Communicate technical status, risks, and impacts to leadership and customers. • Evaluate new technologies, perform pilots, assess vendors, and recommend solutions. • Resolve escalations by analyzing issues, providing guidance, and implementing fixes. • Mentor engineering staff on key technologies and processes. • Develop and execute test plans to validate solutions. • Establish timelines, coordinate delivery, and support budgeting decisions. • Write functional and technical requirements and solution documentation. • Stay current on cloud, security, and network technology trends. • Support selection, implementation, and operationalization of new technologies. WHAT YOU’LL NEED TO SUCCEED • Bachelor’s Degree or 4+ additional years of experience in lieu of a degree. • 10+ years in cloud, network, or platform engineering/architecture supporting enterprise‑scale environments. • 3+ years leading AWS/Azure hybrid or multi‑cloud environments in regulated or federal settings. • Experience supporting large federal agencies or customers. • Support 24×7×365 TIC operations, including critical incident bridge participation. • Lead TIC 3.0 policy enforcement, DNS filtering, SSL decryption, IPS/IDS signature deployment. • Manage DHS Cyber Hygiene, ED 19‑01, BOD 18‑01/19‑02 compliance and remediation actions. • Oversee external connections (BPE/S2S VPN) approval, audits, and configuration lifecycle. • Deliver required weekly TIC reports, vulnerability rollups, and compliance status updates. • Lead TIC technical refresh, architecture redesign, and next‑generation gateway modernization. Additional Experience: • Experience designing landing zones, secure network/identity patterns, and CI/CD/IaC pipelines. • Knowledge of NIST 800‑53/RMF, Zero Trust, TIC 3.0, FedRAMP services, and continuous monitoring. • Experience delivering Kubernetes/OpenShift platforms with DR, RTO, and RPO requirements. • Leadership in multi‑vendor/SIAM environments with cross‑domain change coordination and incident response. Technical Skills: • Cloud Platforms: AWS, Azure, IAM/Entra ID, landing zones, cloud networking, security, monitoring. • Networking & Identity: VPC/VNet design, hub‑and‑spoke, SD‑WAN, DNS, NAT, firewalls, service mesh, SSO, PIV/FIDO2. • Automation & Delivery: Terraform, CloudFormation/Bicep, Ansible, Packer, Helm, GitOps, policy as code. • Containers & Platforms: Kubernetes/OpenShift operations, lifecycle management, security. • Observability & SRE: OpenTelemetry, Prometheus/Grafana, SIEM/log analytics, SLOs/error budgets. • Data & Storage: Managed databases, backup/restore, immutability, replication. • Security & Compliance: CIS/STIGs, vulnerability orchestration, encryption, secrets management. • Cost & Performance: FinOps fundamentals, autoscaling, rightsizing, performance tuning. Preferred Certifications: • AWS Solutions Architect – Professional • Microsoft Azure Solutions Architect Expert • VMware Certified Professional / Advanced Professional • CKA/CKAD or OpenShift Administrator • HashiCorp Terraform Associate / Authoring and Operations Professional LOCATION: Hybrid, based out of Martinsburg, WV or Austin, TX. CLEARANCE: Must be able to obtain and maintain a Public Trust clearance. Visa sponsorship will not be provided for this position. GDIT IS YOUR PLACE At GDIT, the mission is our purpose, and our people are at the center of everything we do. ● Growth: AI-powered career tool that identifies career steps and learning opportunities ● Support: An internal mobility team focused on helping you achieve your career goals ● Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off ● Community: Award-winning culture of innovation and a military-friendly workplace OWN YOUR OPPORTUNITY Explore an enterprise IT career at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your desire to drive operations forward. The likely salary range for this position is $114,750 - $155,250. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: Less than 10% Telecommuting Options: Hybrid Work Location: USA DC Washington Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most. We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans