Cybersecurity (SIEM/EDR) Systems Administrator

This is an unpaid fellowship through the Department of War (DoW) SkillBridge Program. The fellow selected for this role will not receive compensation or benefits from GDIT and will not be an employee, agent or contractor of GDIT but rather will remain an employee of the DoW and will receive compensation and benefits through the DoW.

Type of Requisition:
Regular

Clearance Level Must Currently Posses:
Top Secret/SCI

Clearance Level Must Be Able To Obtain:
Top Secret/SCI

Public Trust/Other Required:
None

Job Family:
Cyber and IT Risk Management

Job Qualifications:

Skills:
Operations Security, Splunk Administration, Vulnerability Scanning
Certifications:
None
Experience:
5 + years of related experience
ship Required:
Yes

Job Description:

Through the Department of War (DoW) SkillBridge Program, GDIT offers transitioning service members the opportunity to gain hands-on training and professional experience as a Cybersecurity (SIEM/EDR) Systems Administrator Fellow, supporting cybersecurity operations at U.S. Central Command (USCENTCOM). In this Fellowship, participants will observe and participate in real-world cyber operations, gaining exposure to technical tools, operational processes, and security practices used within a Cyber Operations Security Operations Center (CSOC).

The Cybersecurity (SIEM/EDR) Systems Administrator Fellow will work alongside experienced cybersecurity engineers, analysts, and mission partners to support enterprise cybersecurity platforms, including Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), Network Access Control (Comply-to-Connect), and Security Orchestration, Automation, and Response (SOAR) systems. This Fellowship is designed to prepare participants for a successful transition into civilian cybersecurity or IT operations roles by providing exposure to hands-on cyber system administration, incident response, and security operations practices.

As a Cybersecurity (SIEM/EDR) Systems Administrator Fellow, you will train under the guidance of senior analysts and engineers to develop foundational cybersecurity skills. Throughout the Fellowship, you will gain experience configuring, maintaining, and optimizing cybersecurity tools, troubleshooting technical issues, and supporting mission operations consistent with the requirements of a GDIT Cybersecurity Systems Administrator.

HOW A CYBERSECURITY (SIEM/EDR) SYSTEMS ADMINISTRATOR FELLOW WILL MAKE AN IMPACT:

• Observing and assisting with the configuration, deployment, and tuning of SIEM platforms, including clustered deployments, alert rules, correlation searches, and detection mechanisms aligned to mission requirements.
• Supporting Linux system administration tasks, including editing, maintaining, and troubleshooting Splunk configuration files, apps, and related services.
• Assisting with EDR policy optimization, rule adjustments, and scanning configurations to improve endpoint visibility and threat detection capabilities.
• Participating in the configuration and maintenance of network access control policies through the Comply-to-Connect (C2C) solution to enforce device compliance and reduce risks from unauthorized systems.
• Integrating cybersecurity platforms with enterprise data sources, legacy systems, and other security tools to create a unified operational security environment.
• Conducting routine system maintenance activities such as software updates, patches, performance tuning, and system health checks under supervision.
• Assisting with troubleshooting and operational support for SIEM, EDR, C2C, and SOAR systems, coordinating with vendors or senior team members as needed.
• Observing and contributing to system audits, assessments, and vulnerability identification, supporting corrective actions and configuration improvements.
• Assisting with development and maintenance of automation scripts, SOAR playbooks, and workflows to streamline operational tasks and incident response processes.
• Supporting user requirements gathering, creation of Splunk search queries, dashboard development, and end-user assistance under guidance.
• Observing and supporting presentations of tool capabilities and operational insights to leadership and mission partners.
• Supporting the development and application of configuration standards, security policies, and operational procedures in alignment with DoD and federal requirements.
• Assisting with compliance and audit-related activities to ensure adherence to regulatory and security standards.
• Participating in documentation, knowledge sharing, and training support to strengthen team capabilities and mission readiness.

WHAT YOU'LL NEED TO SUCCEED:

Education:

• Bachelor's degree in cybersecurity, information technology, computer science, or a related technical discipline preferred, or equivalent combination of education, military experience, technical certifications, and operational training.

Experience:

• Prior military experience in cybersecurity, IT operations, or systems administration highly valued.
• Exposure to SOC, CENTCOM, COCOM, or other cyber operations environments preferred.
• Hands-on experience with Linux systems, endpoint security, network access control, or other cybersecurity platforms desired.
• Experience supporting technical troubleshooting, incident response, or operational security activities preferred.

Technical & Professional Skills:

• Foundational knowledge of cybersecurity principles, threat landscapes, and security tool administration.
• Familiarity with SIEM, EDR, SOAR, C2C, and related cybersecurity platforms.
• Ability to observe, learn, and support operational procedures, incident response, and security system troubleshooting.
• Proficiency in Linux administration, including system configuration, shell scripting, automation, and performance monitoring.
• Strong analytical skills with the ability to detect anomalies, investigate technical issues, and optimize system performance.
• Excellent communication and collaboration skills, with the ability to convey technical concepts to both technical and non-technical stakeholders.
• Willingness to follow established procedures, maintain detailed documentation, and assist with team training and knowledge-sharing activities.
• Ability to work independently, manage multiple priorities, and meet deadlines in dynamic, fast-paced environments.

Certification:

• Applicable DoD 8140 or DoD 8570 certification preferred, or willingness to pursue during Fellowship.

Role Requirements:

• On-site attendance.
• Active TS/SCI security clearance required.
• U.S. citizenship required.

DoW SkillBridge Eligibility:

• Has served at least 180 days on active duty
• Can participate within the last 6 months of separation or retirement
• Will receive an honorable discharge
• Has taken any service TAP/TGPS
• Has attended or participated in an ethics brief within the last 12 months

Received Unit Commander (first O-4/Field Grade commander in chain of command) written authorization and approval to participate in DoW SkillBridge Program prior to start of the fellowship.

Scheduled Weekly Hours:
40

Travel Required:
None

Telecommuting Options:
Onsite

Work Location:
USA FL MacDill AFB

Additional Work Locations:

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

Join our Talent Community to stay up to date on our career opportunities and events at

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans