Security Infrastructure Support SIEM & Data Pipeline Technical Lead/SME

Security Infrastructure Support Siem & Data Pipeline Technical Lead/Sme

General Dynamics Information Technology (GDIT) is seeking an experienced Security Infrastructure Support SIEM & Data Pipeline Technical Lead/SME to support one of our federal customers on an enterprise cyber program in the DC metropolitan area. This hybrid position offers a combination of remote work and periodic on-site support and customer meetings. The ideal candidate will have extensive experience designing, installing, maintaining, and supporting Enterprise IT systems, with a strong focus on SIEM solutions, data pipelines, and cybersecurity.

How You Will Make an Impact

• Design, install, maintain, and support SIEM solutions and enterprise IT systems.
• Develop and manage data collection, log routing, filtering, and transformation tools.
• Ensure seamless integration of SIEM solutions into a hybrid infrastructure (on-prem and cloud).
• Implement cloud security best practices, including migrations, security hardening, and logging services for AWS, Azure, and O365.
• Develop and manage reliable data pipelines using CI/CD tools and DevOps practices.
• Create and maintain log normalization, data enrichment, and event correlation processes.
• Write complex queries using languages like SPL (Splunk) or SQL to analyze and transform data.
• Provide detailed verbal and written communication to explain complex security concepts to both technical and non-technical stakeholders as well as executive-level reporting.
• Ensure compliance with federal cybersecurity frameworks (FISMA, NIST 800-53, NIST 800-92, OMB M-21-31, CDM).
• Collaborate with third-party vendors and cross-functional teams to enhance security practices and system integrations.
• Stay updated on the latest trends and best practices in SIEM technologies, data pipelines, and cybersecurity.
• Designs and evaluates end-to-end systems through their entire life cycle with a focus on Cyber Security and Risk Management.
• Ensure products and systems comply with requirements and customer information assurance and cybersecurity standards.
• Conduct software and systems engineering and software systems research to develop new capabilities.
• Conduct comprehensive technology research to evaluate potential vulnerabilities.
• Author strategy for and can perform testing, implementation, maintenance, and administration of the security infrastructure hardware and software.
• The full range of security issues including architecture, firewalls, electronic data traffic, and network access.
• Employment of encryption technology, penetration and vulnerability analysis of various security technologies, and information technology security research.
• Ensure the logical and systematic conversion of customer or product requirements into total systems solutions that acknowledge technical, schedule, and cost constraints.
• Develop cybersecurity engineering architectural artifacts and analyze systems engineering artifacts provided/created by others for future cyber operational concerns.

What You'll Need to Succeed

Required Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
• 10+ years of experience designing, installing, maintaining, and supporting Enterprise IT systems.
• 5+ years of experience at the Senior Engineer level or higher.
• 3+ years of specific experience with cybersecurity tools or SIEM implementation and administration.
• Expert in cybersecurity process and operational improvements, 5+ years.
• Vulnerability Management, 5+ years.
• Functional and operational knowledge of ITSM and Support Tiering, 7+ years.
• Solution and architecture development concepts and processes, 5+ years.
• Configuration Management, 3+ years.
• Advanced understanding of network security and related security tools and network concepts.
• Practitioner experience with Risk Management Frameworks, specifically NIST.
• Experience with a hybrid infrastructure (on-prem and cloud) environment.
• Demonstrated familiarity with cloud security concepts, services, and operations (AWS, Azure, O365), including migrations, security hardening, and related logging services.
• In-depth experience with SIEM solutions, data collection tools, and proficiency with log routing, filtering, and transformation tools.
• Deep understanding of log formats (CEF, LEEF, JSON, XML), log normalization, data enrichment, and event correlation.
• Experience with CI/CD tools and DevOps practices for creating reliable and repeatable data pipelines.
• Strong scripting skills, particularly in JavaScript and Python, for automation and pipeline development.
• Ability to write complex queries using languages like SPL (Splunk) or SQL.
• Demonstrated verbal and written communication skills for explaining complex security concepts such as data pipelines and data dictionaries to technical and non-technical stakeholders as well as executive-level reporting.
• Hands-on experience with federal cybersecurity compliance frameworks (FISMA, NIST 800-53, NIST 800-92, OMB M-21-31, CDM).
• Strong problem-solving and analytical abilities for identifying and addressing security issues and root causes.
• Proven experience working with third-party vendors and cross-functional teams.

Desired Qualifications

• Advanced degree in Computer Science, Information Technology, Cybersecurity, or related field.
• Additional relevant certifications such as CISSP, CEH, or SIEM-specific certifications.
• Understanding of data governance and the MITRE ATT&CK framework.
• Familiarity with automated data management and monitoring tools.
• Knowledge of compliance management tools and practices.

Join GDIT to make an impact on an enterprise cyber program, ensuring robust and secure SIEM and data pipeline solutions that support critical federal operations.

The likely salary range for this position is $125,800 - $170,200. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Scheduled Weekly Hours: 40

Travel Required: None

Telecommuting Options: Hybrid

Work Location: USA MD Bethesda

Additional Work Locations:

Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.