Cybersecurity Engineer SME

Cybersecurity Engineer SME at GDIT

Advance your career while impacting our national security in cyber as a Cybersecurity Engineer Subject Matter Expert (SME) at GDIT. We are seeking a Cybersecurity Engineer SME to serve as the senior cybersecurity authority supporting a mission-critical defense program in Oahu, Hawaii. This role is responsible for enterprise cybersecurity architecture, risk management, compliance oversight, incident response leadership, and long-term security modernization strategy across classified and unclassified environments.

Key Responsibilities

• Develop and implement enterprise cybersecurity strategy aligned with DoW policies and mission objectives.
• Lead cybersecurity architecture reviews and approve technical security designs.
• Establish security baselines and ensure enforcement across systems and networks.
• Drive long-term modernization initiatives to enhance security posture and resilience.
• Lead Risk Management Framework (RMF) activities, including system categorization, control implementation, assessment support, and ATO package development.
• Ensure compliance with applicable DoW cybersecurity directives and DISA STIG requirements.
• Conduct risk assessments and develop mitigation strategies.
• Support cybersecurity inspections, audits, and continuous monitoring efforts.
• Oversee cybersecurity operations including monitoring, detection, and response.
• Lead incident response efforts for cyber events affecting mission systems.
• Conduct root cause analysis and coordinate remediation actions.
• Develop and maintain incident response plans and playbooks.
• Architect and secure enterprise environments including: Network security (firewalls, IDS/IPS, segmentation), Endpoint security (EDR/XDR), Identity and Access Management (IAM), Cloud security (AWS GovCloud, Azure Government), Data protection and encryption.
• Integrate Zero Trust principles where applicable.
• Ensure secure configuration management and vulnerability remediation.
• Develop cybersecurity policies, standards, and standard operating procedures (SOPs).
• Provide executive-level briefings on cybersecurity posture, risks, and mitigation strategies.
• Maintain accurate system security documentation and reporting metrics.
• Provide technical oversight to cybersecurity engineers and analysts.
• Mentor junior staff and promote cybersecurity best practices across the program.
• Collaborate with network, systems, cloud, and application teams to ensure secure system integration.

Required Qualifications

• Active Top Secret clearance (SCI eligibility strongly preferred).
• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related discipline (Master’s preferred).
• 15+ years of progressive cybersecurity experience.
• Demonstrated experience supporting DoW or federal IT environments.
• Deep understanding of: Risk Management Framework (RMF), Continuous monitoring and vulnerability management, Network and endpoint security technologies, Secure system architecture, Incident response methodologies.
• Experience supporting classified network environments (e.g., SIPR, JWICS, or equivalent).

Preferred Qualifications

• Experience supporting Pacific or INDOPACOM-aligned missions.
• Experience implementing Zero Trust architectures.
• Familiarity with cross-domain solutions.
• Experience securing hybrid cloud and on-premises environments.
• Prior experience leading cybersecurity modernization initiatives on large defense contracts.

Certifications (Preferred / Desired)

• CISSP (highly preferred)
• CISM or CRISC
• CASP+ or Security+
• CEH or equivalent incident response certification
• CCSP (for cloud security environments)

Key Skills/Competency

• Cybersecurity Architecture
• Risk Management Framework (RMF)
• Incident Response
• Information System Security
• Top Secret Clearance
• Network Security
• Endpoint Security
• Cloud Security
• Zero Trust Principles
• Compliance Oversight