Cybersecurity Engineer

About The Position

Requirements

• Seven (7) years experience in Cybersecurity
• Experience with modern vulnerability management and endpoint security platforms (e.g., MECM, Tanium, Intune) and industry-standard scanning tools such as ACAS, Nessus, Qualys, Forescout, and Eyeinspect
• Proficiency in conducting comprehensive vulnerability assessments across networks, systems, databases, applications, and enterprise environments
• Strong knowledge of DoD cybersecurity requirements, including implementation and documentation of STIGs, TCG configuration guides, IAVMs, and Cyber Task Orders
• Hands-on experience supporting DoD inspections and assessments (e.g., CCRI, CORA, Blue Team) and maintaining audit readiness
• Ability to develop, maintain, and validate RMF artifacts, POA&M entries, and cybersecurity documentation to support compliance and risk management
• Experience leveraging automation and scripting (e.g., PowerShell, Python) to perform vulnerability remediation, compliance checks, and workflow optimization at scale
• Solid understanding of network security principles, secure configuration baselines, system hardening, patch management, and enterprise change management processes
• Strong analytical, reporting, and communication skills, including the ability to generate audit-ready reports, produce data-driven insights, and translate technical findings into actionable recommendations for both technical and non-technical stakeholders
• IAT II or higher certification
• Forescout training module/course completion
• ACAS training module/course completion
• Tanium training module/course completion
• Secret clearance

Nice To Haves

• Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations
• Candidate must communicate effectively with team members, team lead, management, and government customer
• Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision

Responsibilities

• Performs a range of routine project tasks focused on specialized cybersecurity challenges, including the integration of electronic processes and methodologies to address complex system and technology issues.
• Analyzes information security requirements and applies structured, analytical approaches to resolve problems related to workflow, organization, and planning.
• Provides security engineering support across the full system lifecycle, including planning, design, development, testing, demonstration, and integration of information systems.
• Leverages knowledge of DoD security regulations and frameworks-such as SCAP, DISA STIGs, TCG standards, and DoD Cyber Task Orders-to ensure compliance and effectiveness.
• Develops cybersecurity artifacts and Risk Management Framework (RMF) documentation to support accreditation and ongoing system security.
• Conducts comprehensive vulnerability assessments across networks, systems, databases, applications, and enterprise environments.
• Supports DoD inspections and assessments (e.g., CCRI, CORA, Blue Team) and maintains audit readiness.
• Develops, maintains, and validates RMF artifacts, POA&M entries, and cybersecurity documentation to support compliance and risk management.
• Leverages automation and scripting (e.g., PowerShell, Python) to perform vulnerability remediation, compliance checks, and workflow optimization at scale.
• Performs other duties as assigned.