Cybersecurity Engineer

About The Position

Requirements

• 5 years with BS/BA; 3 years with MS/MA; 0 years with PhD
• Clearance: Active TS/SCI clearance.
• Candidate must meet ONE of the following: Bachelor’s degree in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, or Software Engineering; OR Relevant DoD/military training (examples: DISA (652) Training; Security Architect (Intermediate) Playlist); OR Relevant professional certification or equivalent experience (examples: GMON, SecurityX/CASP+, CCSP, CISSO, Cloud+, CSSLP, FITSP‑D, GCSA, GSEC).
• Cybersecurity engineering, system hardening, or vulnerability remediation experience.
• Hands‑on experience with ACAS and Forescout (or equivalent vulnerability/NAC tools) and eMASS evidence workflows.
• Practical knowledge of STIGs, SRGs, RMF control implementation, and NIST SP 800‑53 mapping.
• Experience configuring and supporting endpoint, DLP, and network security tools and documenting secure settings.
• Familiarity with DoD enclave considerations (NIPR/SIPR/Army 365) and ability to verify cross‑domain security requirements.
• Strong documentation skills and ability to produce audit‑quality evidence and remediation records.

Nice To Haves

• Prior DoD/ARNG/CCRI support experience.
• Experience with system authorization artifacts, POA&Ms, and RMF package preparation.
• Scripting or automation skills for remediation and evidence collection (PowerShell, Python).

Responsibilities

• Implement and maintain STIGs, RMF controls, and NIST SP 800‑53 security baselines across systems, networks, and applications.
• Apply remediation actions from vulnerability scans (ACAS, Forescout), track findings, and upload evidence and status into eMASS.
• Configure and support deployment of security tooling (AV/EDR, DLP, Forescout, ACAS) and document secure settings and operational procedures.
• Support system hardening, control implementation, and validation activities to improve CCRI/RMF readiness.
• Participate in security reviews for projects: identify vulnerabilities, update eMASS artifacts, and validate compliance with DoD cybersecurity directives.
• Verify cybersecurity requirements and configurations for circuits and Army 365/DEE services across enclaves.
• Assist with security evidence collection, POA&M updates, and remediation verification with ISSOs/ISSMs and system owners.
• Contribute to cybersecurity‑by‑design efforts by updating control documentation and supporting security assessments and testing.
• Produce configuration change records, remediation reports, and technical notes to support auditability and operational continuity.