Cyber Security Specialist Senior - Security

York Spaces Systems•Greenwood Village, CO

About The Position

We are seeking an experienced Senior Cybersecurity Specialist to strengthen daily security operations and support ongoing CMMC Level 2 (NIST SP 800171) compliance and audit readiness efforts across the organization. This role plays a key part in maintaining a reliable security posture, executing technical security controls, and supporting CMMC audit readiness within a Controlled Unclassified Information (CUI) environment. This is a hands-on operational role requiring strong technical depth, sound judgment, and the ability to support both security operations and compliance initiatives in a fast-paced, regulated environment. The Senior Cybersecurity Specialist will work closely with IT, engineering, and business units to ensure security controls are effectively implemented, maintained, and aligned with CMMC expectations.

Requirements

6+ years of experience in cybersecurity operations, security engineering, or security analysis.
Demonstrated experience directly owning and operating security tools and workflows.
Hands-on experience with: Endpoint security / EDR platforms Identity and access management controls Vulnerability or exposure management programs Security incident detection and response workflows Security monitoring, logging, and detection platforms (SIEM, centralized logging, or EDR-based solutions)
Strong understanding of endpoint security, identity and access controls, vulnerability management, and incident response.
Experience working with security telemetry, logs, and alerts to investigate and respond to security events.
Proven ability to independently manage security tooling, priorities, and operational workflows with minimal oversight.
Ability to triage and prioritize security issues in a fast-paced operational environment.
Experience owning security operations functions in a production environment.
Ability to obtain and maintain a U.S. Government security clearance

Nice To Haves

Exposure to NIST SP 800171 or CMMC frameworks.
Experience supporting audit preparation or evidence collection.
Background operating within highly regulated environments such as defense, healthcare, or financial services.
Experience with Microsoft-centric enterprise environments, including identity, endpoint management, and security tooling.
Certifications such as CISSP, CISM, Security+, or equivalent.

Responsibilities

Lead day-to-day security operations, including alert triage, incident response, and ticket management.
Administer, operate, and continuously improve core security capabilities, including endpoint protection, identity and access controls, network security, and vulnerability management.
Maintain and operate security monitoring and detection platforms such as SIEM, EDR, and centralized logging solutions.
Monitor, analyze, and respond to security alerts, ensuring timely remediation and proper escalation.
Drive vulnerability and exposure management processes, including prioritization and remediation coordination.
Ensure the operational effectiveness of security controls and identify opportunities for enhancements.
Collaborate with IT and engineering teams to enforce secure configurations and support secure operational practices.
Take ownership of assigned security workflows and drive issues through to full resolution.
Support CMMC Level 2 and NIST SP 800-171 compliance efforts by contributing to evidence collection, control validation, and implementation documentation.
Assist in audit readiness activities, including preparation for internal and external assessments.
Help ensure technical controls and configurations align with CMMC expectations and compliance requirements.
Contribute to the development and refinement of policies, procedures, and security documentation.
Help translate control requirements into practical implementation guidance for technical and business stakeholders.
Work across business, IT, and engineering teams to identify and address security and compliance gaps.