Cyber Engineer
About The Position
Foxhole Technology provides robust cybersecurity and IT support capabilities for federal civilian and defense agencies. A recognized leader in navigating technology and security challenges, Foxhole delivers mission-focused innovations to answer evolving and complex needs. Our talented employee-owners provide agile, scalable services and solutions that solve operational gaps, operate critical systems, and protect and secure the enterprise – across the organization and around the world. Foxhole is seeking a Senior Computer Systems Engineer/Architect to support DoD partner. This position focuses on using relevant experience, strong problem solving, and customer service skills to ensure the appropriate operational security engineering activities are maintained for information system, integration points, and program by implementing and maintaining security controls in close coordination with the Government. Design, implement, and sustain security architecture across AWS GovCloud spanning Stage/Dev/Test/Pre-Production/Production tiers, ensuring each tier maintains appropriate security boundaries, access controls, and compliance posture through program lifecycle Execute and maintain RMF activities across all system components, including development and upkeep for SSP, SAR, and POAM documentation Implement, validate, and continuously maintain DISA STIG compliance across all infrastructure components, including GovCloud services, workloads, Oracle database environments, and application servers Engineer and operate security controls, including network segmentation, isolation, scanning, data protection in accordance with DoD policies, guides, and regulations Participate in Agile sprint planning, backlog grooming, and sprint reviews as an embedded security engineering contributor, ensuring security activities are sized and tracked Support pre-production deployment rehearsals and production cutover events by validating security posture, confirming POAM closure status, and providing go/no-go security assessment inputs Document cybersecurity architecture decisions, security engineering procedures, and compliance evidence, contributing to SOP development and technical documentation support Maintain Terraform IaC security configurations for GovCloud environment provisioning, ensuring that all infrastructure definitions reflect current STG and security baseline requirements
Requirements
- At least 7 years of experience in cybersecurity, AWS cloud security, scanning technologies, and RMF processes
- Proficiency with ACAS vulnerability scanning and eMASS in a DoD program context
- Experience integrating SAST/DAST tools into a CI/CD pipeline in an Agile/DevSecOps environment
- Hands-on experience with DISA STIG hardening of Linux, AWS, and containerized environments
- Familiarity with security best practices and compliance requirements.
- Excellent troubleshooting and problem-solving skills
- CompTIA Securty+ CE, or equivelant
- Active DoD Secret Clearance
- Continental travel may be required
Nice To Haves
- Bachelor’s (BS) degree in relevant field – strongly preferred but not required
- Certifications such as CISSP, CISM, or similar cert is preferred
- Direct experieince with Kubernetes/EKS security hardening
- Terraform IaC experience in AWS
- Experience supporting FedRAMP accreditations is a plus
- Zero Trust architecture implementation experience
- Knowledge of computer network defense process and procedures
- Familiarity with Oracle database STIG controls and hardening
Responsibilities
- Design, implement, and sustain security architecture across AWS GovCloud spanning Stage/Dev/Test/Pre-Production/Production tiers, ensuring each tier maintains appropriate security boundaries, access controls, and compliance posture through program lifecycle
- Execute and maintain RMF activities across all system components, including development and upkeep for SSP, SAR, and POAM documentation
- Implement, validate, and continuously maintain DISA STIG compliance across all infrastructure components, including GovCloud services, workloads, Oracle database environments, and application servers
- Engineer and operate security controls, including network segmentation, isolation, scanning, data protection in accordance with DoD policies, guides, and regulations
- Participate in Agile sprint planning, backlog grooming, and sprint reviews as an embedded security engineering contributor, ensuring security activities are sized and tracked
- Support pre-production deployment rehearsals and production cutover events by validating security posture, confirming POAM closure status, and providing go/no-go security assessment inputs
- Document cybersecurity architecture decisions, security engineering procedures, and compliance evidence, contributing to SOP development and technical documentation support
- Maintain Terraform IaC security configurations for GovCloud environment provisioning, ensuring that all infrastructure definitions reflect current STG and security baseline requirements
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
