Monitoring & Event Management Team Lead (SIEMcapable)

Responsibilities for this Position

Location: USA VA Arlington
Full Part/Time: Full time
Job Req: RQ213203

Type of Requisition:
Regular

Clearance Level Must Currently Possess:
None

Clearance Level Must Be Able to Obtain:
None

Public Trust/Other Required:
BI Full 6C (T4)

Job Family:
IT Infrastructure and Operations

Job Qualifications:

Skills:
Collaboration, Enterprise Monitoring, IT Service Management (ITSM)
Certifications:
None
Experience:
5 + years of related experience
US Citizenship Required:
Yes

Job Description:

Advance how our customer operates while you advance your career. Join GDIT as Monitoring & Event Management Team Lead (SIEMcapable) and build an impactful career in enterprise IT, collaborating with people who are driven and resourceful like you.

As the Monitoring & Event Management Team Lead, you will lead the team that staffs the EnterpriseWide Command Center (EWCC) and own daytoday delivery of 24x7x365 monitoring, event correlation, incident validation, escalation, and restoration activities across FDIC's hybrid IT environment. You will ensure MEM tooling, dashboards, CMDB/ITSM integration, and processes meet FDIC requirements and contractual service levels while managing contractor personnel performance, documentation, and continuous improvement.

MEANINGFUL WORK AND PERSONAL IMPACT

As the Monitoring & Event Management Team Lead, the work you'll do at GDIT will be impactful to the mission of FDIC. You will play a crucial role in ensuring continuous availability and rapid restoration of critical FDIC services and infrastructure.

Lead MEM staffing, shift schedules, handoffs, and Duty Officer readiness to ensure uninterrupted 24x7x365 EWCC operations.

Manage event detection, validation, correlation, automated ticket generation into ITSM, and lead incident bridge calls for P1/P2 incidents.

Drive improvements in monitoring efficacy, reduce false positives, and ensure timely P1 outage notifications and status updates per SLAs.

Utilize enterprise monitoring tools, CMDB/ITSM integrations, synthetic transaction scripts, automation, ServiceNow Operations Modules, and SIEMstyle event/log correlation to deliver reliable MEM services.

WHAT YOU'LL NEED TO SUCCEED

Bring your technology expertise and drive for innovation to GDIT. The Monitoring & Event Management Team Lead must have:

Experience : Minimum 5 years of Monitoring & Event Management experience. At least 3 years in an IT outsourcing environment managing contractor personnel and operational delivery for 24x7 services.

Certification(s) : ITIL 4 Foundation (required).

Degree: High School Diploma, College Preferred.

Required Technical Skills

Strong knowledge of ICMP, SNMPv3, SSH, WMI, NetFlow and encrypted management protocols.

Handson experience with availability, utilization, performance, synthetic transaction, composite transaction, and log file monitoring.

Experience integrating monitoring with CMDB/CMS and ITSM platforms and automating incident population and severity assignment.

Proficiency in ServiceNow Operations Modules, including Event Management, ITOM/Discovery, Service Mapping, Incident Management, CMDB operations, and Orchestration.

SIEM keyword: Experience with log aggregation, event normalization, correlation rule development, and SIEMstyle analytics (e.g., Splunk, QRadar, Microsoft Sentinel, or equivalent) or demonstrated ability to implement equivalent capabilities within MEM tooling.

Proficiency in scripting and automation for synthetic transactions and automated remediation (PowerShell, Python, or similar).

Familiarity with database monitoring, middleware metrics (JVM, connection pools), and cloud monitoring for IaaS/PaaS/SaaS.

Required Tool Proficiency

Proven experience and proficiency with the following enterprise tools or direct equivalents:

Intune; CrowdStrike; Defender; Endpoint Privilege Management; Fleet RMM; Netaphor SiteAudit; HP Web Jet Admin; Kofax Autostore; Token Vault; Wise Admin Studio; PSTools; Graph; YubiKey Manager; vSec:CMS Admin.

Location : Onsite in Arlington, VA. Candidate must reside within the DC/MD/Northern VA area.

Required Skills and Abilities

Proven leadership and team management in highpressure, 24x7 environments.

Clear, concise communicator for technical and nontechnical stakeholders; experienced running incident bridge calls and delivering outage updates.

Strong analytical skills for root cause analysis, trend interpretation, and parametric application analysis.

Deep understanding of ITIL processes (Incident, Problem, Change, Event, Capacity) and experience enforcing SLAs and operational metrics.

Customer focus and ability to coordinate with vendors and thirdparty providers.

Preferred Skills Experience with Digital Experience Monitoring (DEX) and application performance monitoring (APM).

Experience with lowcode automation platforms and vendor support relationships for troubleshooting and EOL remediation.

RESPONSIBILITIES AND DELIVERABLES

Operational Leadership - Lead MEM team activities to provide continuous EWCC coverage, ensure staffing coverage, and maintain Duty Officer readiness for P1/P2 incidents.

Incident and Event Management - Oversee event detection, validation, correlation, automated ticket generation, and lead incident bridge calls; ensure P1 outage notifications and updates meet contractual timelines.

ServiceNow Operations & SIEM Integration - Configure, tune, and operate ServiceNow Operations Modules to ingest events, correlate alerts, populate incidents, maintain CMDB accuracy, and automate remediation and escalation workflows; implement SIEMstyle log aggregation and correlation where required and coordinate escalations to SOC/security teams for securityrelevant events.

Tooling and Configuration - Configure and maintain monitoring tools, dashboards, synthetic transactions, polling/trap logic, alert thresholds, and automated escalation workflows.

CMDB and ITSM Integration - Maintain full integration between MEM, CMS/CMDB, and ITSMS so incidents include CI attributes, relationships, and correct severity assignments.

Standards and Tuning - Develop, publish, and refine monitoring standards and templates; conduct quarterly reviews with FDIC to tune monitors and reduce noise.

Performance and Capacity - Oversee availability, utilization, and performance monitoring for Data Center, Cloud, Network, and Unified Communications CIs; support capacity planning and trend analysis.

Reporting and Continuous Improvement - Produce MEM reports and dashboards; recommend and implement improvements to increase monitoring efficacy and reduce false positives.

Documentation and Audit Support - Validate knowledge base articles, SOPs, runbooks, and provide audit support and remediation for MEM tools.

Vendor Coordination - Coordinate with vendors and thirdparty providers for troubleshooting, patching, and tool rationalization.

Access and Escalation - Provide FDIC direct access to engineering resources and ensure timely escalation to resolver groups.

GDIT IS YOUR PLACE

At GDIT, the mission is our purpose, and our people are at the center of everything we do.

Growth - AIpowered career tools that identify career steps and learning opportunities.

Support - Internal mobility team focused on helping you achieve your career goals.

Rewards - Comprehensive benefits and wellness packages, 401K with company match, competitive pay, and paid time off.

Flexibility - Fullflex work week where eligible.

Community - Awardwinning culture of innovation and a militaryfriendly workplace.

The likely salary range for this position is $127,500 - $172,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:
40

Travel Required:
Less than 10%

Telecommuting Options:
Onsite

Work Location:
USA VA Arlington

Additional Work Locations:

Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI281718278

Advance how our customer operates while you advance your career. Join GDIT as Monitoring & Event Management Team Lead (SIEMcapable) and build an impactful career in enterprise IT, collaborating with people who are driven and resourceful like you.


As the Monitoring & Event Management Team Lead, you will lead the team that staffs the EnterpriseWide Command Center (EWCC) and own daytoday delivery of 24x7x365 monitoring, event correlation, incident validation, escalation, and restoration activities across FDIC's hybrid IT environment. You will ensure MEM tooling, dashboards, CMDB/ITSM integration, and processes meet FDIC requirements and contractual service levels while managing contractor personnel performance, documentation, and continuous improvement.



MEANINGFUL WORK AND PERSONAL IMPACT


As the Monitoring & Event Management Team Lead, the work you'll do at GDIT will be impactful to the mission of FDIC. You will play a crucial role in ensuring continuous availability and rapid restoration of critical FDIC services and infrastructure.


Lead MEM staffing, shift schedules, handoffs, and Duty Officer readiness to ensure uninterrupted 24x7x365 EWCC operations.


Manage event detection, validation, correlation, automated ticket generation into ITSM, and lead incident bridge calls for P1/P2 incidents.


Drive improvements in monitoring efficacy, reduce false positives, and ensure timely P1 outage notifications and status updates per SLAs.


Utilize enterprise monitoring tools, CMDB/ITSM integrations, synthetic transaction scripts, automation, ServiceNow Operations Modules, and SIEMstyle event/log correlation to deliver reliable MEM services.



WHAT YOU'LL NEED TO SUCCEED


Bring your technology expertise and drive for innovation to GDIT. The Monitoring & Event Management Team Lead must have:



Experience : Minimum 5 years of Monitoring & Event Management experience. At least 3 years in an IT outsourcing environment managing contractor personnel and operational delivery for 24x7 services.



Certification(s) : ITIL 4 Foundation (required).



Degree: High School Diploma, College Preferred.



Required Technical Skills


Strong knowledge of ICMP, SNMPv3, SSH, WMI, NetFlow and encrypted management protocols.


Handson experience with availability, utilization, performance, synthetic transaction, composite transaction, and log file monitoring.


Experience integrating monitoring with CMDB/CMS and ITSM platforms and automating incident population and severity assignment.


Proficiency in ServiceNow Operations Modules, including Event Management, ITOM/Discovery, Service Mapping, Incident Management, CMDB operations, and Orchestration.


SIEM keyword: Experience with log aggregation, event normalization, correlation rule development, and SIEMstyle analytics (e.g., Splunk, QRadar, Microsoft Sentinel, or equivalent) or demonstrated ability to implement equivalent capabilities within MEM tooling.


Proficiency in scripting and automation for synthetic transactions and automated remediation (PowerShell, Python, or similar).


Familiarity with database monitoring, middleware metrics (JVM, connection pools), and cloud monitoring for IaaS/PaaS/SaaS.



Required Tool Proficiency


Proven experience and proficiency with the following enterprise tools or direct equivalents:


Intune; CrowdStrike; Defender; Endpoint Privilege Management; Fleet RMM; Netaphor SiteAudit; HP Web Jet Admin; Kofax Autostore; Token Vault; Wise Admin Studio; PSTools; Graph; YubiKey Manager; vSec:CMS Admin.



Location : Onsite in Arlington, VA. Candidate must reside within the DC/MD/Northern VA area.



Required Skills and Abilities


Proven leadership and team management in highpressure, 24x7 environments.


Clear, concise communicator for technical and nontechnical stakeholders; experienced running incident bridge calls and delivering outage updates.


Strong analytical skills for root cause analysis, trend interpretation, and parametric application analysis.


Deep understanding of ITIL processes (Incident, Problem, Change, Event, Capacity) and experience enforcing SLAs and operational metrics.


Customer focus and ability to coordinate with vendors and thirdparty providers.


Preferred Skills Experience with Digital Experience Monitoring (DEX) and application performance monitoring (APM).


Experience with lowcode automation platforms and vendor support relationships for troubleshooting and EOL remediation.



RESPONSIBILITIES AND DELIVERABLES


Operational Leadership - Lead MEM team activities to provide continuous EWCC coverage, ensure staffing coverage, and maintain Duty Officer readiness for P1/P2 incidents.


Incident and Event Management - Oversee event detection, validation, correlation, automated ticket generation, and lead incident bridge calls; ensure P1 outage notifications and updates meet contractual timelines.


ServiceNow Operations & SIEM Integration - Configure, tune, and operate ServiceNow Operations Modules to ingest events, correlate alerts, populate incidents, maintain CMDB accuracy, and automate remediation and escalation workflows; implement SIEMstyle log aggregation and correlation where required and coordinate escalations to SOC/security teams for securityrelevant events.


Tooling and Configuration - Configure and maintain monitoring tools, dashboards, synthetic transactions, polling/trap logic, alert thresholds, and automated escalation workflows.


CMDB and ITSM Integration - Maintain full integration between MEM, CMS/CMDB, and ITSMS so incidents include CI attributes, relationships, and correct severity assignments.


Standards and Tuning - Develop, publish, and refine monitoring standards and templates; conduct quarterly reviews with FDIC to tune monitors and reduce noise.


Performance and Capacity - Oversee availability, utilization, and performance monitoring for Data Center, Cloud, Network, and Unified Communications CIs; support capacity planning and trend analysis.


Reporting and Continuous Improvement - Produce MEM reports and dashboards; recommend and implement improvements to increase monitoring efficacy and reduce false positives.


Documentation and Audit Support - Validate knowledge base articles, SOPs, runbooks, and provide audit support and remediation for MEM tools.


Vendor Coordination - Coordinate with vendors and thirdparty providers for troubleshooting, patching, and tool rationalization.


Access and Escalation - Provide FDIC direct access to engineering resources and ensure timely escalation to resolver groups.



GDIT IS YOUR PLACE


At GDIT, the mission is our purpose, and our people are at the center of everything we do.


Growth - AIpowered career tools that identify career steps and learning opportunities.


Support - Internal mobility team focused on helping you achieve your career goals.


Rewards - Comprehensive benefits and wellness packages, 401K with company match, competitive pay, and paid time off.


Flexibility - Fullflex work week where eligible.


Community - Awardwinning culture of innovation and a militaryfriendly workplace.


The likely salary range for this position is $127,500 - $172,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.



Scheduled Weekly Hours:
40



Travel Required:
Less than 10%



Telecommuting Options:
Onsite



Work Location:
USA VA Arlington



Additional Work Locations:



Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.


We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.


Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc.


Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI281718278