Cyber Security Engineer (Job 1354)

About The Position

Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, Software Engineering, or related field (or equivalent experience)
• 4+ years of experience in cybersecurity, vulnerability management, systems engineering, or related fields
• Strong experience with vulnerability management programs, including risk prioritization using CVSS, threat intelligence, and exploit data (e.g., CVEs, CISA KEV)
• Working knowledge of DevSecOps practices and integrating security into CI/CD pipelines
• Hands-on experience with Microsoft Defender Antivirus (MDAV) and endpoint security solutions
• Experience with vulnerability scanning and assessment tools (e.g., Tenable Nessus, web application scanners)
• Familiarity with cloud environments (AWS, Azure, or GCP) and containerized applications (ARO, Kubernetes)
• Experience with SIEM platforms such as Splunk for detection and analysis
• Strong understanding of security frameworks and compliance standards (NIST SP 800-53, 800-171, 800-37, FedRAMP, FISMA, ISO 27001, CIS Benchmarks, DISA STIGs)
• Knowledge of enterprise security architecture and modern security principles, including Zero Trust
• Working knowledge of AI security risk management frameworks and the ability to translate AI/ML use cases into security controls, review checkpoints, and governance decisions
• Strong analytical, problem-solving, and communication skills
• Must be able to obtain a Public Trust clearance

Nice To Haves

• Related Cyber certification, such as CYSA, CISSP, or equivalent
• Cloud security certifications (Azure, AWS, or GCP)
• Azure Security Engineer Associate or similar
• DevSecOps or secure development certifications
• Vulnerability management or threat intelligence-related certifications
• Proficiency in scripting/automation (PowerShell, Python, Bash, etc.)

Responsibilities

• Integrate Zero Trust Architecture into enterprise environments through gap analysis, security maturity assessments, and risk-based control implementation
• Lead and support vulnerability management efforts, including identification, prioritization, and remediation of vulnerabilities based on risk, exploitability, and business impact
• Analyze and operationalize threat intelligence sources, including CVE databases and CISA KEV catalog, to prioritize remediation and strengthen defenses against actively exploited vulnerabilities
• Perform vulnerability assessments using tools such as Tenable Nessus and web application scanners, and triage findings to reduce false positives/negatives
• Utilize Microsoft Defender Antivirus (MDAV) and endpoint detection tools to monitor, detect, and respond to threats across endpoints
• Collaborate with DevSecOps, infrastructure, and development teams to incorporate security controls and automated scanning (SCA, SAST, DAST) into CI/CD pipelines and SDLC practices
• Develop and maintain SIEM solution, such as Splunk, for queries, dashboards, and reports to identify trends, detect anomalies, and highlight control gaps
• Support continuous monitoring and improve detection capabilities across hybrid enterprise environments, including on-premises, cloud, and containers.
• Contribute to enterprise security architecture, including identity and access management and cloud security design
• Develop clear technical documentation, including assessment reports, mitigation strategies, and implementation guidance
• Stay current on emerging threats, vulnerabilities, federal cybersecurity directives, and industry best practices

Benefits

• Personal Time Off (PTO)
• medical
• dental
• vision
• supplemental life with AD&D
• short and long-term disability
• flexible spending accounts
• parental leave
• legal services
• 401(k) Retirement Plan with matching component
• training
• e-learning suite
• professional and technical certification preparation
• education assistance at accredited institutions