Cybersecurity Engineer

About The Position

Requirements

• Experience with DevSecOps platforms
• Experience with classified and unclassified environments
• Experience with cloud and on-premise systems
• Experience with container platforms
• Experience applying DISA STIGs
• Experience with secure network architectures
• Experience securing CI/CD pipelines
• Experience with security controls
• Experience with software supply chain protections
• Experience with Policy-as-Code practices
• Experience with compliance automation
• Experience with AI-enabled tooling
• Experience integrating and authorizing emerging technologies
• Experience with Generative AI platforms
• Experience with AI-enabled development tools
• Experience with CLI-based systems
• Experience with hybrid environments
• Experience with DoD cybersecurity frameworks (RMF, NIST 800-53, CMMC)
• Experience developing ATO packages, SSPs, POA&Ms
• Experience with automated compliance validation
• Experience with continuous authorization readiness
• Experience with vulnerability scanning programs
• Experience with ACAS/Nessus
• Experience with container scanning
• Experience with SBOM tools
• Experience coordinating remediation strategies
• Experience analyzing findings
• Experience with security monitoring
• Experience with incident response efforts
• Experience securing DevSecOps capabilities within classified and restricted environments
• Experience with cross-domain security
• Experience with air-gapped systems
• Experience maintaining security controls
• Experience with accreditation readiness
• Experience with operational assurance

Responsibilities

• Design, implement, and manage secure architectures for DevSecOps platforms, including both classified and unclassified environments. Ensure hardened configurations for cloud, on-premise systems, and container platforms while applying DISA STIGs and secure network architectures.
• Secure CI/CD pipelines by implementing security controls, software supply chain protections, Policy-as-Code practices, and compliance automation. Partner with DevOps engineers to enhance development workflows with secure, AI-enabled tooling.
• Securely integrate and authorize emerging technologies, including Generative AI platforms, AI-enabled development tools, and CLI-based systems within hybrid and mission-critical environments.
• Align systems with DoD cybersecurity frameworks (RMF, NIST 800-53, CMMC) and develop ATO packages, SSPs, POA&Ms, and evidence for security control implementation. Support automated compliance validation and continuous authorization readiness.
• Manage vulnerability scanning programs using ACAS/Nessus, container scanning, and SBOM tools. Coordinate remediation strategies, analyze findings, and support security monitoring and incident response efforts.
• Secure DevSecOps capabilities within classified and restricted environments, ensuring consistent architecture, cross-domain security, and authorized artifact movement between air-gapped systems.
• Maintain robust security controls, accreditation readiness, and operational assurance for DevSecOps platforms, cloud infrastructures, and AI-enabled development systems across mission-critical programs.