Cyber Security Engineer

About The Position

Requirements

• BS Degree and 2-4 years of prior experience. Former Military and work experience (5 years or more) may be substituted in lei of a degree.
• Must have an active TS/SCI with ability to obtain/maintain polygraph security clearance
• Active or current Top Secret with SCI eligibility and ability to obtain Polygraph
• At least one DoD 8570.01-M IAT Level II or higher certification e.g., CCNA Security, CySA+, Security+ CE, CISSP (or Associate)
• 1+ years working in the cloud, securely configuring and deploying AWS services
• Demonstrated experience securing Kubernetes platforms (secrets management, RBAC, etc.) and integrating security into CI/CD pipelines and containers; must understand microservices architecture and service mesh.
• 1+ years of experience hardening Linux hosts and applying appropriate DISA STIG
• Demonstrated experience developing A&A packages to obtain and maintain ATO in secure environments.
• Grounded knowledge in compliance frameworks such as NIST SP 800-37, SP 800-53, and CNSSI 1253
• Familiarity with ATO validation across mission-critical programs
• Familiarity with Continuous Monitoring and STIG checklist validations and NIST 800-53 v4 controls

Nice To Haves

• Experience with tools such as Xacta or eMass, performing vulnerability compliance with ACAS, & STIG automation
• Understanding of secure software development practices and code reviews
• Experience with encryption and transport, especially in the Multiple IAT/IAM II or III advanced certifications (e.g. CISSP-ISSAP/ISSEP, CISM, CCSP, Security X/CASP+)
• Cloud certifications such as AWS Solutions Architect (Associate or Professional), AWS Security Specialty
• Kubernetes certifications such as KCNA, CKA, CKS
• Experience with tools such as Xacta or eMass, performing vulnerability compliance with ACAS, & STIG automation
• Prior Linux administration experience and certifications such as Linux+, Red Hat certifications (e.g. RHCSA, RHCE)
• Experience with ICD 503 and related compliance directives, policies, procedures
• Experience with security tool such as Splunk, Nessus, SonarQube, as well as DAST & SAST tools such as Prisma Cloud and SonarQube
• Experience applying Zero Trust framework to secure systems
• Prior network engineering experience
• Experience applying security controls to Generative AI implementations
• Software development/coding experience with programming languages such as Bash, Python, Java, and React
• Experience with DevOpsSec pipelines and tools
• Experience with database systems, search engines, web applications
• Experience in a Linux Red Hat and Centos environment
• Experience with big data applications
• Experience with Jira and Confluence
• Experience working in an Agile environment
• Experience with NIST SP 800-171

Responsibilities

• Develop and maintain security policies, procedures, and best practices for cloud and cloud-native environments
• Perform security assessments, vulnerability management, and risk analysis for cloud-based systems across secure enclaves
• Implement and manage security controls for Kubernetes clusters and containerized applications
• Ensure integration of security measures into CI/CD pipelines and DevSecOps processes
• Conduct security reviews of cloud architectures, service configurations, and system design changes
• Develop and maintain ATO packages and ensure compliance with relevant standards (NIST SP 800-37, SP 800-53, CNSSI 1253, ICD 503)
• Implement and manage continuous monitoring solutions for cloud environments
• Collaborate with development teams to ensure secure coding practices and perform code reviews
• Stay current with emerging cloud security threats, technologies, and best practices

Benefits

• training
• teamwork
• exposure to challenging technical work