Advance how our customer operates while you advance your career. Join GDIT as Monitoring & Event Management Team Lead (SIEMcapable) and build an impactful career in enterprise IT, collaborating with people who are driven and resourceful like you.

As the Monitoring & Event Management Team Lead, you will lead the team that staffs the EnterpriseWide Command Center (EWCC) and own daytoday delivery of 24x7x365 monitoring, event correlation, incident validation, escalation, and restoration activities across FDICs hybrid IT environment. You will ensure MEM tooling, dashboards, CMDB/ITSM integration, and processes meet FDIC requirements and contractual service levels while managing contractor personnel performance, documentation, and continuous improvement.

MEANINGFUL WORK AND PERSONAL IMPACT

As the Monitoring & Event Management Team Lead, the work youll do at GDIT will be impactful to the mission of FDIC. You will play a crucial role in ensuring continuous availability and rapid restoration of critical FDIC services and infrastructure.

Lead MEM staffing, shift schedules, handoffs, and Duty Officer readiness to ensure uninterrupted 24x7x365 EWCC operations.

Manage event detection, validation, correlation, automated ticket generation into ITSM, and lead incident bridge calls for P1/P2 incidents.

Drive improvements in monitoring efficacy, reduce false positives, and ensure timely P1 outage notifications and status updates per SLAs.

Utilize enterprise monitoring tools, CMDB/ITSM integrations, synthetic transaction scripts, automation, ServiceNow Operations Modules, and SIEMstyle event/log correlation to deliver reliable MEM services.

WHAT YOULL NEED TO SUCCEED

Bring your technology expertise and drive for innovation to GDIT. The Monitoring & Event Management Team Lead must have:

Experience: Minimum 5 years of Monitoring & Event Management experience. At least 3 years in an IT outsourcing environment managing contractor personnel and operational delivery for 24x7 services.

Certification(s): ITIL 4 Foundation (required).

Degree: High School Diploma, College Preferred.

Required Technical Skills

Strong knowledge of ICMP, SNMPv3, SSH, WMI, NetFlow and encrypted management protocols.

Handson experience with availability, utilization, performance, synthetic transaction, composite transaction, and log file monitoring.

Experience integrating monitoring with CMDB/CMS and ITSM platforms and automating incident population and severity assignment.

Proficiency in ServiceNow Operations Modules, including Event Management, ITOM/Discovery, Service Mapping, Incident Management, CMDB operations, and Orchestration.

SIEM keyword: Experience with log aggregation, event normalization, correlation rule development, and SIEMstyle analytics (e.g., Splunk, QRadar, Microsoft Sentinel, or equivalent) or demonstrated ability to implement equivalent capabilities within MEM tooling.

Proficiency in scripting and automation for synthetic transactions and automated remediation (PowerShell, Python, or similar).

Familiarity with database monitoring, middleware metrics (JVM, connection pools), and cloud monitoring for IaaS/PaaS/SaaS.

Required Tool Proficiency

Proven experience and proficiency with the following enterprise tools or direct equivalents:

Intune; CrowdStrike; Defender; Endpoint Privilege Management; Fleet RMM; Netaphor SiteAudit; HP Web Jet Admin; Kofax Autostore; Token Vault; Wise Admin Studio; PSTools; Graph; YubiKey Manager; vSec:CMS Admin.

Location: Onsite in Arlington, VA. Candidate must reside within the DC/MD/Northern VA area.

Required Skills and Abilities

Proven leadership and team management in highpressure, 24x7 environments.

Clear, concise communicator for technical and nontechnical stakeholders; experienced running incident bridge calls and delivering outage updates.

Strong analytical skills for root cause analysis, trend interpretation, and parametric application analysis.

Deep understanding of ITIL processes (Incident, Problem, Change, Event, Capacity) and experience enforcing SLAs and operational metrics.

Customer focus and ability to coordinate with vendors and thirdparty providers.

Preferred Skills Experience with Digital Experience Monitoring (DEX) and application performance monitoring (APM).

Experience with lowcode automation platforms and vendor support relationships for troubleshooting and EOL remediation.

RESPONSIBILITIES AND DELIVERABLES

Operational Leadership Lead MEM team activities to provide continuous EWCC coverage, ensure staffing coverage, and maintain Duty Officer readiness for P1/P2 incidents.

Incident and Event Management Oversee event detection, validation, correlation, automated ticket generation, and lead incident bridge calls; ensure P1 outage notifications and updates meet contractual timelines.

ServiceNow Operations & SIEM Integration Configure, tune, and operate ServiceNow Operations Modules to ingest events, correlate alerts, populate incidents, maintain CMDB accuracy, and automate remediation and escalation workflows; implement SIEMstyle log aggregation and correlation where required and coordinate escalations to SOC/security teams for securityrelevant events.

Tooling and Configuration Configure and maintain monitoring tools, dashboards, synthetic transactions, polling/trap logic, alert thresholds, and automated escalation workflows.

CMDB and ITSM Integration Maintain full integration between MEM, CMS/CMDB, and ITSMS so incidents include CI attributes, relationships, and correct severity assignments.

Standards and Tuning Develop, publish, and refine monitoring standards and templates; conduct quarterly reviews with FDIC to tune monitors and reduce noise.

Performance and Capacity Oversee availability, utilization, and performance monitoring for Data Center, Cloud, Network, and Unified Communications CIs; support capacity planning and trend analysis.

Reporting and Continuous Improvement Produce MEM reports and dashboards; recommend and implement improvements to increase monitoring efficacy and reduce false positives.

Documentation and Audit Support Validate knowledge base articles, SOPs, runbooks, and provide audit support and remediation for MEM tools.

Vendor Coordination Coordinate with vendors and thirdparty providers for troubleshooting, patching, and tool rationalization.

Access and Escalation Provide FDIC direct access to engineering resources and ensure timely escalation to resolver groups.

GDIT IS YOUR PLACE

At GDIT, the mission is our purpose, and our people are at the center of everything we do.

Growth AIpowered career tools that identify career steps and learning opportunities.

Support Internal mobility team focused on helping you achieve your career goals.

Rewards Comprehensive benefits and wellness packages, 401K with company match, competitive pay, and paid time off.

Flexibility Fullflex work week where eligible.

Community Awardwinning culture of innovation and a militaryfriendly workplace.