Cybersecurity Engineer

About The Position

Requirements

• Minimum of 8 years with BS/BA; Minimum of 6 years with MS/MA; Minimum of 3 years with PhD
• Clearance: Active TS/SCI clearance.
• Candidate must meet ONE of the following: Master’s degree or Ph.D. in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, Software Engineering, or a related field; OR Relevant DoD/military training (examples: Security Architect (Advanced) Playlist) with documented enterprise security engineering experience; OR Relevant professional certification or equivalent experience (examples: CCNP Enterprise, CISM, CISSP‑ISSAP, CISSP‑ISSEP, GCIA, GDSA, GICSP).
• Cybersecurity engineering/architecture experience with at least 3 years in senior security engineering or architecture roles supporting enterprise or DoD environments.
• Deep knowledge of RMF/ATO processes, NIST SP 800‑53 control families, DISA STIG/SRG application, and CCRI readiness criteria.
• Hands‑on expertise with Forescout, ACAS, eMASS, enterprise AV/EDR, DLP, SIEM/SOAR, vulnerability management, and security automation/orchestration.
• Proven ability to produce security architecture artifacts, threat models, CONOPS, remediation plans, and executive briefings.
• Strong skills in system hardening, control implementation validation, and cross‑domain security configuration.

Nice To Haves

• Prior DoD/Army/ARNG enterprise security engineering or CCRI support experience.
• Experience with cloud security architectures, Zero Trust implementations, and integration of security into CI/CD/DevSecOps.
• Experience advising senior leadership on portfolio risk, remediation prioritization, and architecture tradeoffs.

Responsibilities

• Lead enterprise cybersecurity engineering: design, implement, and sustain security controls across systems, networks, applications, and infrastructure aligned to NIST SP 800‑53, STIGs, and SRGs.
• Oversee STIG compliance, RMF control implementation, vulnerability remediation, and CCRI/RMF readiness activities across NIPR/SIPR and cloud enclaves.
• Design security architectures and integrate enterprise security tooling (AV/EDR, DLP, Forescout, ACAS, SIEM/SOAR) into mission systems and DevSecOps pipelines.
• Direct cybersecurity‑by‑design practices for modernization, innovation, and special project proposals; conduct security design reviews and threat modeling.
• Validate cybersecurity requirements for circuits, Army 365/DEE services, and cross‑domain solutions; ensure configurations meet policy and releasability requirements.
• Manage advanced remediation planning, architecture improvements, and system hardening strategies to reduce exploitable risk and improve resilience.
• Lead integration of eMASS/RMF workflows for evidence collection, continuous monitoring, and authorization package support.
• Provide technical leadership and decision‑grade briefings to program and senior leadership on cyber posture, risks, COAs, and remediation priorities.
• Mentor engineering teams and establish standards, automation, and QA practices for secure configuration and monitoring.