Cybersecurity Engineer

About The Position

Requirements

• Experience with modern vulnerability management and endpoint security platforms (e.g., MECM, Tanium, Intune) and industry-standard scanning tools such as ACAS, Nessus, Qualys, Forescout, and Eyeinspect
• Proficiency in conducting comprehensive vulnerability assessments across networks, systems, databases, applications, and enterprise environments
• Strong knowledge of DoD cybersecurity requirements, including implementation and documentation of STIGs, TCG configuration guides, IAVMs, and Cyber Task Orders
• Hands-on experience supporting DoD inspections and assessments (e.g., CCRI, CORA, Blue Team) and maintaining audit readiness
• Ability to develop, maintain, and validate RMF artifacts, POA&M entries, and cybersecurity documentation to support compliance and risk management
• Experience leveraging automation and scripting (e.g., PowerShell, Python) to perform vulnerability remediation, compliance checks, and workflow optimization at scale
• Solid understanding of network security principles, secure configuration baselines, system hardening, patch management, and enterprise change management processes
• Strong analytical, reporting, and communication skills, including the ability to generate audit-ready reports, produce data-driven insights, and translate technical findings into actionable recommendations for both technical and non-technical stakeholders
• Seven (7) years experience in Cybersecurity
• IAT II or higher certification
• Forescout training module/course completion
• ACAS training module/course completion
• Tanium training module/course completion
• Minimum Clearance Secret

Nice To Haves

• Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations
• Candidate must communicate effectively with team members, team lead, management, and government customer
• Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision

Responsibilities

• Performs a range of routine project tasks focused on specialized cybersecurity challenges, including the integration of electronic processes and methodologies to address complex system and technology issues.
• Analyzes information security requirements and applies structured, analytical approaches to resolve problems related to workflow, organization, and planning.
• Provides security engineering support across the full system lifecycle, including planning, design, development, testing, demonstration, and integration of information systems.
• Leverages knowledge of DoD security regulations and frameworks-such as SCAP, DISA STIGs, TCG standards, and DoD Cyber Task Orders-to ensure compliance and effectiveness.
• Develops cybersecurity artifacts and Risk Management Framework (RMF) documentation to support accreditation and ongoing system security.

Benefits

• ESM provides equal employment opportunity to all individuals regardless of race, color, creed, religion, gender, age, sexual orientation, national origin or ancestry, disability, genetic information, veteran status, gender identification or any other characteristic protected by state, federal or local law.