Cybersecurity Engineer

About The Position

Requirements

• Current Secret security clearance with the ability to obtain and maintain a Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI).
• A minimum of 3 years of experience in cybersecurity engineering, security operations, or a closely related discipline within a federal, defense, or government contracting environment, with demonstrated proficiency implementing NIST SP 800-53 security controls, Zero Trust enforcement mechanisms, and continuous monitoring capabilities across multi-enclave cloud and application environments.
• Active IAT Level III certification, satisfied by one of the following: CompTIA CASP+ CE, ISC² CISSP (or Associate), GIAC GCED, GIAC GCIH, or Cisco CCNP Security.
• Strong problem-solving and decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
• Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).

Responsibilities

• Implements cybersecurity architecture, defensive monitoring capabilities, and enclave-specific protections supporting War Data Platform (WDP) Core Integration operations across Unclassified, Secret, and Top Secret domains powering mission execution for Combatant Commands, Joint Staff elements, and strategic decision makers.
• Deploys and configures NIST SP 800-53 security controls, identity and access management services, continuous monitoring sensors, Zero Trust enforcement mechanisms, and cross-domain cybersecurity components consistent with DoW cybersecurity directives and CDAO governance.
• Conducts recurring vulnerability assessments, penetration-test follow-up activities, and automated scanning operations using platforms such as Nessus, ACAS, Splunk Enterprise Security, Elastic Security, and cloud-native threat-detection tools to identify, analyze, and remediate configuration weaknesses across WDP Core Integration cloud, data, and application ecosystems.
• Supports incident response operations by performing log analysis, event correlation, triage actions, and threat-hunting tasks within multi-classification environments, producing technical findings, mitigation actions, and post-incident reports for enterprise leadership.
• Develops and maintains cybersecurity documentation, Body-of-Evidence artifacts, system security plans, standard operating procedures, and RMF compliance updates required for Authorizing Official review.
• Collaborates with DevSecOps, infrastructure, and platform engineering teams to integrate secure coding practices, encryption configurations, automated guardrails, and enclave boundary protections.
• Strengthens operational resilience by monitoring emergent threats, validating countermeasures, and contributing technical recommendations that advance WDP Core Integration cybersecurity maturity and mission readiness.
• Performs other duties as assigned.