Cybersecurity Engineer

About The Position

Requirements

• Mission-Driven Professional: Collaborative contributor motivated by the opportunity to develop cutting-edge solutions that protect and serve both the nation and the world.
• U.S. Citizenship and ability to obtain/maintain a DoD Secret clearance.
• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or related technical discipline.
• 14+ years of experience in system or network cybersecurity within a DoD, aerospace, or defense communications environment.
• Deep understanding of NIST SP 800-53, RMF (DoDI 8510.01), Zero Trust Architecture, and DoD STIGs.
• Experience securing SATCOM, RF, or tactical communications systems.
• Hands-on experience with vulnerability assessment tools (e.g., ACAS, Nessus, OpenSCAP, SCAP Compliance Checker).
• Knowledge of network protocols (e.g., IPSec, TLS, GRE, SNMPv3, SSH) and secure routing configurations.
• Ability to produce and maintain security documentation (SSP, POA&M, SCTM, etc.).

Nice To Haves

• Current DoD 8570.01-M IAT Level II or III certification (e.g., Security+, CASP+, CISSP).
• Experience working with DoD SATCOM programs or systems operating in IL4/IL5/IL6 environments.
• Familiarity with containerized or virtualized environments (Docker, Kubernetes, VMware) and their security implications.
• Experience with AWS GovCloud, Cross Domain Solutions (CDS), and automated compliance pipelines.
• Active DoD Secret or TS/SCI clearance.

Responsibilities

• Cybersecurity Architecture & Design
• Define and implement cybersecurity architecture and control baselines for the SATCOM rack and associated terminals.
• Develop security design artifacts in coordination with the customer.
• Identify, assess, and mitigate cybersecurity risks across hardware, software, and network layers.
• Apply Zero Trust principles for authentication, access control, and data flow segmentation.
• Participate in system design reviews to ensure security-by-design is embedded into all configurations.
• RMF Compliance & ATO Support
• Develop and maintain RMF documentation (SSP, POA&M, RAR, CONOPS) to achieve and sustain Authority to Operate (ATO).
• Interface with Information System Security Managers (ISSM) and government cybersecurity teams to ensure compliance alignment.
• Conduct STIG scans and vulnerability remediation across OS, firmware, and network devices.
• Prepare for and support Security Test & Evaluation (ST&E) and penetration testing events.
• Implementation & Hardening
• Configure and harden operating systems, routers, modems, and switches in accordance with DOD STIGs and vendor best practices.
• Automate vulnerability and configuration management through scripts, scanning tools (ACAS, Nessus, OpenSCAP), and CI/CD integration where applicable.
• Testing & Verification
• Support cybersecurity testing during system integration and verification phases.
• Validate network segmentation, firewall rules, and encryption paths during integration events.
• Analyze test results, document residual risk, and verify implementation of mitigation actions.
• Participate in field testing and demonstrations, ensuring configurations remain compliant during deployment.
• Documentation & Continuous Monitoring
• Maintain complete cybersecurity documentation within configuration control.
• Implement continuous monitoring strategies to maintain ATO and respond to evolving threats.
• Support incident response procedures and reporting.

Benefits

• Generous PTO package with yearly tenure increases
• Flex time provides you with the flexibility needed
• 6 Company-Paid Holidays + 5 Float days to use when you wish per year
• Up to 4% match on 401(k) employee contributions, employer and employee contributions immediately vested
• Up to $5,250 per year on Education and Certification Assistance
• Low-cost medical plans that include company-sponsored HSA
• No-cost life insurance
• Employee Assistance Program (EAP)
• And much more!