Cyber Security Engineer

About The Position

Requirements

• Bachelor Degree in an area applicable to this position
• 8+ years of related experience
• Familiarity with DISA ACAS (Tenable.sc), STIG Viewer, SCAP tools
• Hands-on experience with secure baseline development and system hardening
• Ability to analyze IAVAs, CVEs, and vendor bulletins to assess applicability to supported systems
• Active DoD TS/SCI clearance required
• U.S. Citizenship required
• Ability to work closely with system administrators, network engineers, and ISSM/ISSO staff
• Strong understanding of boundary defense and enclave-level cybersecurity principles
• Familiarity with multi-vendor environments (Cisco, Palo Alto, Microsoft, etc.)
• Knowledge of patch management tools and endpoint protection strategies
• IAT Level II certification (e.g. Security+ CE, CCNA Security, CySA+)

Nice To Haves

• CASP+, CISSP, or equivalent
• Experience supporting DoD or Army RMF accreditation efforts
• Experience as an ISSO, ISSM, ISSE, or Security Controls Assessor
• Experience with SIEM tools, HBSS, or firewall policy auditing
• Ability to draft technical documentation for cyber compliance

Responsibilities

• Apply DISA Security Technical Implementation Guides (STIGs) to mission systems, servers, and network devices
• Conduct ACAS vulnerability scans and collaborate with administrators to ensure timely remediation
• Support RMF control implementation and artifact development
• Participate in architecture reviews, providing recommendations for secure configuration and boundary defense
• Review firewall and router configurations, access control lists (ACLs), and network filtering to ensure security compliance
• Collaborate with Change Management and Operations to ensure secure-by-design deployments and patch schedules
• Designs, develops, and recommends integrated security system and physical control solutions that will ensure proprietary/confidential data and systems are protected.
• Assist IA team in established Authorization and Accreditation (A&A) process using a risk mitigation framework (RMF) across the design lifecycle for classified systems obtaining and maintaining Interim Authorization to Test (IATT), Authority to Connect (ATC) and Authorization to Operate (ATO).
• Offers technical engineering services for the support of integrated security systems and solutions, managing information-related risks effectively.
• Works closely with the client during the strategic design process to translate security and business requirements into actionable technical designs.
• Develop comprehensive system test plans (STP) to assess the security posture of the information systems.
• Analyze scan results and security findings to prioritize remediation efforts and implement corrective measures.

Benefits

• Comprehensive benefits and wellness packages
• 401K with company match
• Competitive pay and paid time off
• Full flex work weeks where possible
• A variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave
• Short and long-term disability benefits
• Life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance