Security Authority to Operate (ATO)-Tools

Responsibilities for this Position

Location: USA DC Home Office (DCHOME)
Full Part/Time: Full time
Job Req: RQ202907

Type of Requisition:
Regular

Clearance Level Must Currently Possess:
Secret

Clearance Level Must Be Able to Obtain:
Secret

Public Trust/Other Required:
None

Job Family:
Information Security

Job Qualifications:

Skills:
Cybersecurity, Information Security, Information Technology Security, System Security
Certifications:
None
Experience:
10 + years of related experience
US Citizenship Required:
No

Job Description:

Information Security Analyst Advisor (Azure Security Senior Engineer)

Your Impact

Own your opportunity to work alongside federal civilian agencies. Make an impact by providing services that help the government ensure the wellbeing of U.S. citizens.

Job Description

We are seeking a qualified, motivated individual to join GDIT as an Information Security Analyst Advisor. We are seeking a highly skilled and hands-on Azure Government Secret Cloud Security Engineer to architect, implement, and manage secure cloud solutions in compliance with DoD IL6, FedRamp High and related cybersecurity standards. The ideal candidate will have deep expertise in Azure Gov cloud services, strong scripting and automation skills, and a proven track record of securing mission-critical workloads in classified environments. This position will be responsible for implementing and monitoring necessary security controls to receive and maintain an Authorization to Operate (ATO) along with tracking and maintaining certification information databases, websites and tools to ensure that networks, systems and devices are properly documented and managed from a security perspective. As part of our Cyber Security Team, you will be joining an Agile Team utilizing multiple Scrum Teams to support the complex systems governing and facilitating our customer business operations, making recommendations, and implementing changes to increase efficiency and support overall application objectives. You will collaborate with GDIT technical leadership, Government customers, and other key stakeholders to assess our existing and new systems infrastructure.

How You'll Make an Impact:

Ensure security policies and procedures are implemented
Identifying corrective actions/mitigation strategies to achieve/sustain RMF compliance
Review of virus detection software to ensure compliance
Review and analyze system implementation plans
Advising system owners and stakeholders on new deployments and advanced cyber security techniques

Information Security Analyst Duties and Responsibilities:

Design, implement, and maintain secure cloud architectures within Azure Government Secret classified environments
Enforce zero trust principles, role-based access control (RBAC), and identity federation (e.g.,Azure AD B2B/B2C with CAC/PIV)
Configure and manage security controls such as Microsoft Defender for Cloud, Key Vault, Azure Policy, NSGs, and Private Endpoints
Automate compliance and security operations using PowerShell, Terraform, or ARM templates
Integrate SIEM/SOAR tools (e.g., Microsoft Sentinel for IL6) for continuous monitoring, logging, and incident response
Conduct vulnerability assessments and implement remediations aligned to NIST 800-53, DoD STIGs, and JSIG
Collaborate with mission owners, compliance teams, and developers to ensure secure DevSecOps pipelines
Support Authority to Operate (ATO) processes by generating security documentation, control evidence, and supporting audits
Navigate federal systems through the authorization process to achieve and maintain Authority to Operate (ATO)
Work with the ISSO, Program and DOC ITD IA teams to maintain the necessary security authorizations
Develop comprehensive System Security Plans (SSPs) documenting all implemented NIST 800-53 controls
Coordinate security assessments with third-party assessors
Manage Plans of Actions & Milestones (POA&Ms) for addressing identified vulnerabilities
Ensure continuous monitoring plans meet agency requirements
Prepare authorization packages for government review
Maintain ongoing compliance through change management processes
Serve as the liaison between technical teams and authorizing officials
Translate security requirements into actionable tasks
Ensure all documentation meets the rigorous standards required for federal information systems

Information Security Analyst Requirements and Qualifications:

Bachelor's degree in information systems security; master's degree or equivalent professional experience in information security is preferred
Active Secret clearance (Top Secret Preferred)
5+ years in cloud security, including 2+ in Azure Government or DoD environments
Strong knowledge of Azure-native security tools, IL6 data handling, and cloud networking
Proficient in scripting (PowerShell, Python, or Bash) and Infrastructure as Code (ARM, Bicep, Terraform)
Experiences with DoD SRG, FedRAMP High, JSIG, and ICD 503 compliance frameworks
Hands-on experience with classified enclaves, hardened images, and enclave-to-enclave connectivity
Comprehensive knowledge of corporate Systems/Solutions Architecture processes and trends
Strong leadership, organizational, and communication skills
Secret Clearance to start
Knowledge of Agile software development process
Required Technical Skills:

SCAP, STIG, Patching, eMASS, and related RMF tools
Cybersecurity, Systems Administration, implementation of RMF tools and processes
Experience with gaining an ATO for systems and working the systems through the assessment and authorization process
Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic email and access-list
Excellent communication skills
Experience working in Agile software development teams
Experience with secure development, coding and engineering practices
Experience with Cybersecurity, Information Security, and Information Technology Security processes, protocols, and procedures.

Experience
10 years of relevant experience may vary based on technical training, certification(s), or degree
Experience with Cloud Security
Experience working with leading firewall, network scanning and authentication technologies
Experience working with internet, web, application and network security techniques
Experience in Agile methodology
Experience in Jira to support development team in agile environment
Experience working in Federal or State government environments
Ability to work independently and remotely

Certification: Active DoD 8570 IAT Level II Certification (Security+, CISSP, CISM)

Travel Required: Little to no travel anticipated (may be required upon customer request)
Location: Hybrid / On-site as required for classified work at Washington D.C. customer location

US Citizenship: U.S. Citizenship required

GDIT Is Your Place:
Full-flex work week to own your priorities at work and at home
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional growth opportunities including paid education and certifications
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays

The likely salary range for this position is $129,200 - $174,800. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours:
40

Travel Required:
Less than 10%

Telecommuting Options:
Hybrid

Work Location:
USA DC Home Office (DCHOME)

Additional Work Locations:

Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at
gdit.com/tc .

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI276488195

Information Security Analyst Advisor (Azure Security Senior Engineer)



Your Impact


Own your opportunity to work alongside federal civilian agencies. Make an impact by providing services that help the government ensure the wellbeing of U.S. citizens.



Job Description


We are seeking a qualified, motivated individual to join GDIT as an Information Security Analyst Advisor. We are seeking a highly skilled and hands-on Azure Government Secret Cloud Security Engineer to architect, implement, and manage secure cloud solutions in compliance with DoD IL6, FedRamp High and related cybersecurity standards. The ideal candidate will have deep expertise in Azure Gov cloud services, strong scripting and automation skills, and a proven track record of securing mission-critical workloads in classified environments. This position will be responsible for implementing and monitoring necessary security controls to receive and maintain an Authorization to Operate (ATO) along with tracking and maintaining certification information databases, websites and tools to ensure that networks, systems and devices are properly documented and managed from a security perspective. As part of our Cyber Security Team, you will be joining an Agile Team utilizing multiple Scrum Teams to support the complex systems governing and facilitating our customer business operations, making recommendations, and implementing changes to increase efficiency and support overall application objectives. You will collaborate with GDIT technical leadership, Government customers, and other key stakeholders to assess our existing and new systems infrastructure.



How You'll Make an Impact:


Ensure security policies and procedures are implemented
Identifying corrective actions/mitigation strategies to achieve/sustain RMF compliance
Review of virus detection software to ensure compliance
Review and analyze system implementation plans
Advising system owners and stakeholders on new deployments and advanced cyber security techniques


Information Security Analyst Duties and Responsibilities:


Design, implement, and maintain secure cloud architectures within Azure Government Secret classified environments
Enforce zero trust principles, role-based access control (RBAC), and identity federation (e.g.,Azure AD B2B/B2C with CAC/PIV)
Configure and manage security controls such as Microsoft Defender for Cloud, Key Vault, Azure Policy, NSGs, and Private Endpoints
Automate compliance and security operations using PowerShell, Terraform, or ARM templates
Integrate SIEM/SOAR tools (e.g., Microsoft Sentinel for IL6) for continuous monitoring, logging, and incident response
Conduct vulnerability assessments and implement remediations aligned to NIST 800-53, DoD STIGs, and JSIG
Collaborate with mission owners, compliance teams, and developers to ensure secure DevSecOps pipelines
Support Authority to Operate (ATO) processes by generating security documentation, control evidence, and supporting audits
Navigate federal systems through the authorization process to achieve and maintain Authority to Operate (ATO)
Work with the ISSO, Program and DOC ITD IA teams to maintain the necessary security authorizations
Develop comprehensive System Security Plans (SSPs) documenting all implemented NIST 800-53 controls
Coordinate security assessments with third-party assessors
Manage Plans of Actions & Milestones (POA&Ms) for addressing identified vulnerabilities
Ensure continuous monitoring plans meet agency requirements
Prepare authorization packages for government review
Maintain ongoing compliance through change management processes
Serve as the liaison between technical teams and authorizing officials
Translate security requirements into actionable tasks
Ensure all documentation meets the rigorous standards required for federal information systems



Information Security Analyst Requirements and Qualifications:


Bachelor's degree in information systems security; master's degree or equivalent professional experience in information security is preferred
Active Secret clearance (Top Secret Preferred)
5+ years in cloud security, including 2+ in Azure Government or DoD environments
Strong knowledge of Azure-native security tools, IL6 data handling, and cloud networking
Proficient in scripting (PowerShell, Python, or Bash) and Infrastructure as Code (ARM, Bicep, Terraform)
Experiences with DoD SRG, FedRAMP High, JSIG, and ICD 503 compliance frameworks
Hands-on experience with classified enclaves, hardened images, and enclave-to-enclave connectivity
Comprehensive knowledge of corporate Systems/Solutions Architecture processes and trends
Strong leadership, organizational, and communication skills
Secret Clearance to start
Knowledge of Agile software development process

Required Technical Skills:


SCAP, STIG, Patching, eMASS, and related RMF tools
Cybersecurity, Systems Administration, implementation of RMF tools and processes
Experience with gaining an ATO for systems and working the systems through the assessment and authorization process
Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic email and access-list
Excellent communication skills
Experience working in Agile software development teams
Experience with secure development, coding and engineering practices
Experience with Cybersecurity, Information Security, and Information Technology Security processes, protocols, and procedures.



Experience
10 years of relevant experience may vary based on technical training, certification(s), or degree
Experience with Cloud Security
Experience working with leading firewall, network scanning and authentication technologies
Experience working with internet, web, application and network security techniques
Experience in Agile methodology
Experience in Jira to support development team in agile environment
Experience working in Federal or State government environments
Ability to work independently and remotely


Certification: Active DoD 8570 IAT Level II Certification (Security+, CISSP, CISM)


Travel Required: Little to no travel anticipated (may be required upon customer request)

Location: Hybrid / On-site as required for classified work at Washington D.C. customer location


US Citizenship: U.S. Citizenship required



GDIT Is Your Place:
Full-flex work week to own your priorities at work and at home
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional growth opportunities including paid education and certifications
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays


The likely salary range for this position is $129,200 - $174,800. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.



Scheduled Weekly Hours:
40



Travel Required:
Less than 10%



Telecommuting Options:
Hybrid



Work Location:
USA DC Home Office (DCHOME)



Additional Work Locations:



Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.


We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.


Join our Talent Community to stay up to date on our career opportunities and events at

gdit.com/tc .


Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

PI276488195