Cybersecurity Engineer (CSfC Specialist) (TS)
About The Position
Koniag Management Solutions, LLC (KMS), a Koniag Government Services (KGS) company, is hiring a Cybersecurity Engineer-Commercial Solutions for Classified (CSfC). This role requires an active Top Secret/SCI clearance with the ability to obtain additional security requirements. We offer competitive compensation and an extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more. We are seeking a Cybersecurity Engineer specializing in Commercial Solutions for Classified (CSfC) to design, implement, and maintain secure communication architectures using layered commercial products meeting NSA’s CSfC standards. This role requires deep expertise in Data‑at‑Rest (DAR) and Data‑in‑Transit (DiT) compliant architectures, as well as strong hands-on experience deploying, integrating, and assessing CSfC components in secure operational environments. The candidate will support mission operations at Joint Base Anacostia–Bolling and must maintain an active TS/SCI clearance.
Requirements
- Active TS/SCI clearance.
- Minimum of 7 years of cybersecurity experience, including at least 3 years of hands-on experience with NSA Commercial Solutions for Classified (CSfC) capability packages.
- DoD 8140 work role qualification: 521 – Cyber Defense Infrastructure Support Specialist.
- Bachelor’s degree in Cybersecurity, Computer Science, or a related field (preferred but not required).
- At least one of the following required certifications: Security+ SSCP CySA+ PenTest+ CASP+ GCIH CISSP GSLC CISSP (or CASP+ + GCIH combination)
- Strong understanding of: CSfC standards and capability package guidance
- DAR and DiT architecture design
- Encrypted tunneling technologies (IPsec, TLS, VPN)
- Enterprise SIEM monitoring and security event analysis
- Security controls implementation and compliance reporting
- TS/SCI security clearance required, candidate will not be considered without.
Nice To Haves
- GCIH
- GCIA
- CASP+
- EDR vendor certifications (Microsoft Defender, CrowdStrike, or similar)
- Experience designing and deploying NSA-compliant CSfC solutions in DoD or IC environments.
- Experience integrating and automating security monitoring across heterogeneous environments.
- Familiarity with risk management frameworks, secure configuration baselines, and accreditation processes.
Responsibilities
- Design, implement, and maintain secure communication solutions using layered commercial technologies aligned with NSA CSfC standards.
- Serve as the subject matter expert for CSfC capability packages, including solution design, documentation, configuration, and compliance validation.
- Develop and maintain DAR and DiT architectures that conform to NSA guidelines and aligned security frameworks.
- Integrate encrypted tunneling solutions within enterprise and tactical environments.
- Support SIEM monitoring, event correlation, and security incident response activities.
- Conduct risk assessments, vulnerability analysis, and compliance checks on CSfC‑related systems.
- Create and maintain engineering documentation, configuration guides, diagrams, and accreditation artifacts.
- Coordinate with system owners, cybersecurity teams, and government stakeholders to ensure CSfC solutions meet mission and security requirements.
- Support lifecycle management, including upgrades, patching, and modernization of CSfC solutions.
Benefits
- health, dental and vision insurance
- 401K with company matching
- flexible spending accounts
- paid holidays
- three weeks paid time off
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
