Information Security Analyst Advisor- IL6 (Azure Security Senior Engineers/ ATO/Tools) DC Metro Area

Public Trust: None

Requisition Type: Regular

Your Impact

Own your opportunity to work alongside federal civilian agencies. Make an impact by providing services that help the government ensure the well being of U.S. citizens.

Job Description

Information Security Analyst Advisor (Azure Security Senior Engineers) DC Metro Area

Your Impact

Own your opportunity to work alongside federal civilian agencies. Make an impact by providing services that help the government ensure the wellbeing of U.S. citizens.

Job Description

We are seeking a qualified, motivated individual to join GDIT as an Information Security Analyst Advisor . We are seeking a highly skilled and hands-on Azure Government Secret Cloud Security Engineers to architect, implement, and manage secure cloud solutions in compliance with DoD IL6, FedRamp High and related cybersecurity standards. The ideal candidate will have deep expertise in Azure Gov cloud services, strong scripting and automation skills, and a proven track record of securing mission-critical workloads in classified environments. This position will be responsible for implementing and monitoring necessary security controls to receive and maintain an Authorization to Operate (ATO) along with tracking and maintaining certification information databases, websites and tools to ensure that networks, systems and devices are properly documented and managed from a security perspective. As part of our Cyber Security Team, you will be joining an Agile Team utilizing multiple Scrum Teams to support the complex systems governing and facilitating our customer business operations, making recommendations, and implementing changes to increase efficiency and support overall application objectives. You will collaborate with GDIT technical leadership, Government customers, and other key stakeholders to assess our existing and new systems infrastructure.

How You’ll Make an Impact:

• Ensure security policies and procedures are implemented
• Identifying corrective actions/mitigation strategies to achieve/sustain RMF compliance
• Review of virus detection software to ensure compliance
• Review and analyze system implementation plans
• Advising system owners and stakeholders on new deployments and advanced cyber security techniques

Information Security Analyst Duties and Responsibilities:

• Design, implement, and maintain secure cloud architectures within Azure Government Secret classified environments
• Enforce zero trust principles, role-based access control (RBAC), and identity federation (e.g., AZURE AD B2B/B2C with CAC/PIV)
• Configure and manage security controls such as Microsoft Defender for Cloud, Key Vault, Azure Policy, NSGs, and Private Endpoints
• Automate compliance and security operations using PowerShell, Terraform, or ARM templates
• Integrate SIEM/SOAR tools (e.g., Microsoft Sentinel for IL6) for continuous monitoring, logging, and incident response
• Conduct vulnerability assessments and implement remediations aligned to NIST 800-53, DoD STIGs, and JSIG
• Collaborate with mission owners, compliance teams, and developers to ensure secure DevSecOps pipelines
• Support Authority to Operate (ATO) processes by generating security documentation, control evidence, and supporting audits
• Navigate federal systems through the authorization process to achieve and maintain Authority to Operate (ATO)
• Work with the ISSO, Program and DOC ITD IA teams to maintain the necessary security authorizations
• Develop comprehensive System Security Plans (SSPs) documenting all implemented NIST 800-53 controls
• Coordinate security assessments with third-party assessors
• Manage Plans of Actions & Milestones (POA&Ms) for addressing identified vulnerabilities
• Ensure continuous monitoring plans meet agency requirements
• Prepare authorization packages for government review
• Maintain ongoing compliance through change management processes
• Serve as the liaison between technical teams and authorizing officials
• Translate security requirements into actionable tasks
• Ensure all documentation meets the rigorous standards required for federal information systems

Information Security Analyst Requirements and Qualifications:

• Bachelor's degree in information systems security; master's degree or equivalent professional experience in information security is preferred

• Active Secret clearance
• 5+ years in cloud security, including 2+ in Azure Government or DoD environments
• Strong knowledge of Azure-native security tools, IL6 data handling, and cloud networking
• Proficient in scripting (PowerShell, Python, or Bash) and Infrastructure as Code (ARM, Bicep, Terraform)
• Experiences with DoD SRG, FedRAMP High, JSIG, and ICD 503 compliance frameworks
• Hands-on experience with classified enclaves, hardened images, and enclave-to-enclave connectivity
• Comprehensive knowledge of corporate Systems/Solutions Architecture processes and trends
• Strong leadership, organizational, and communication skills
• Secret Clearance to start
• Knowledge of Agile software development process

Required Technical Skills:

• SCAP, STIG, Patching, eMASS, and related RMF tools
• Cybersecurity, Systems Administration, implementation of RMF tools and processes
• Experience with gaining an ATO for systems and working the systems through the assessment and authorization process
• Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic email and access-list
• Excellent communication skills
• Experience working in Agile software development teams
• Experience with secure development, coding and engineering practices
• Experience with Cybersecurity, Information Security, and Information Technology Security processes, protocols, and procedures.

Experience

• 10 years of relevant experience
  • May vary based on technical training, certification(s), or degree
• Experience with Cloud Security
• Experience working with leading firewall, network scanning and authentication technologies
• Experience working with internet, web, application and network security techniques
• Experience in Agile methodology
• Experience in Jira to support development team in agile environment
• Experience working in Federal or State government environments
• Ability to work independently and remotely

Certification: Active DoD 8570 IAT Level II Certification (Security+, CISSP, CISM)

Travel Required: Little to no travel anticipated (may be required upon customer request)

Location: On-site 3 days a week at minimum.

US Citizenship : U.S. Citizenship required

GDIT Is Your Place:

• Full-flex work week to own your priorities at work and at home
• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Full-flex work week to own your priorities at work and at home
• 401K with company match
• Comprehensive health and wellness packages
• Internal mobility team dedicated to helping you own your career
• Professional growth opportunities including paid education and certifications
• Cutting-edge technology you can learn from
• Rest and recharge with paid vacation and holidays

Work Requirements

Years of Experience

10 + years of related experience

* may vary based on technical training, certification(s), or degree

Certification

CompTIA Security + certified (DoD 8570 IAT Level II) - CompTIA - CompTIA

Travel Required

Less than 10%