Cyber Security Engineer (St. Louis, MO / Springfield, VA)
About The Position
At geocgi we pride ourselves on not losing our focus. We started out and remain GIS experts (or geeks. . . depending on your perspective). Since 2006, we’ve evolved into a world-class and world-wide service provider of multiple disciplines. We are a talented, hardworking group that share values and characteristics that drive client, professional, and personal success. Geocgi is seeking Cyber Security Engineers (Junior, Mid, and Senior levels) to support mission critical systems in secure environments for the National Geospatial-Intelligence Agency (NGA) and key partners, including Esri. In this role, you will help secure enterprise environments, ensure compliance with DoD standards, and support the authorization and continuous monitoring of systems in a high-security environment. The primary onsite location will be either the NGA office at 2301 Cass Ave, St. Louis, Missouri or the NGA office at 7500 GEOINT Drive, Springfield, Virginia. Junior: 1–5 years of experience supporting cybersecurity or information assurance activities, with exposure to RMF, vulnerability management, or system hardening Mid-Level: 3–10+ years of experience implementing RMF processes, ATO packages, and vulnerability/compliance management, with the ability to work independently across systems Senior: 5–10+ years of experience leading cybersecurity efforts, ATO strategy, system accreditation, and security architecture, with responsibility for guiding teams and advising stakeholders
Requirements
- U.S. Citizen with Active Top Secret Clearance (SCI eligible) or current within the last 2 years.
- Bachelor’s degree in Computer Science, Engineering, GIS, or related field (or equivalent experience).
- DoD 8570 IAT Level II or higher certification (Security+, CySA+, CISSP, etc.).
- Experience with RMF, A&A, POA&M, and ATO processes (XACTA/eMASS).
- Hands-on experience with vulnerability scanning tools (ACAS, IAVM).
- Experience securing Linux and Windows systems, including STIGs and patching.
- Knowledge of NIST 800-series frameworks and security best practices.
- Strong analytical, communication, and collaboration skills.
Nice To Haves
- Experience working in classified or secure DoD environments.
- Familiarity with XACTA, eMASS, or similar ATO tools.
- Experience supporting federal or defense programs.
- Knowledge of DevSecOps practices.
- Experience with cloud security (AWS/Azure).
- Advanced certifications (CISSP, CASP+, etc.).
Responsibilities
- Support and implement Risk Management Framework (RMF) processes.
- Develop and maintain ATO documentation (A&A, POA&M, SSPs, etc.) using tools such as XACTA or eMASS.
- Perform and support vulnerability scanning and compliance tracking (ACAS, IAVM).
- Apply and validate STIGs, patches, and system hardening across Windows and Linux systems.
- Monitor system compliance and assist with security audits and assessments.
- Support incident response activities and remediation efforts.
- Collaborate with system administrators, developers, and stakeholders to ensure security requirements are met.
- Maintain documentation and provide reporting on system security posture.
- Contribute to continuous improvement of security processes and controls.
Benefits
- Competitive salaries, commensurate with experience and leading Federal Contractors in the geospatial industry.
- Opportunities for upward mobility in a dynamic fast paced environment within a small company.
- Merit-based spot and end of year bonuses.
- Safe Harbor 401(k) plan with immediate vesting.
- Flexible work hours and PTO.
- Complete Medical, Dental, and Vision coverage for individuals.
- Company paid training, certifications, and professional growth and development.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Entry Level
