Defensive Cyber Engineer (STIGs, POA&M, IAVMs) - Senior

About The Position

Requirements

• U.S. Citizenship is required
• Security Clearance: Secret Eligible
• Required Certifications: DCWF Work Role 521-Cyber Defense Infrastructure Support Specialist — Basic proficiency; must hold ONE OR MORE of the following: CC, A+, CND, GCLD, GDSA, GFACT, Network+
• 3+ years of experience in cybersecurity
• Experience implementing system hardening measures and security configuration baselines in support of defensive cyber operations.
• Experience conducting vulnerability assessments and verifying remediation of identified weaknesses.
• Experience managing or supporting POA&M tracking and closure activities for cybersecurity findings.
• Experience applying and validating STIG and IAVM-directed remediation actions.
• Experience coordinating with system owners and cybersecurity operations personnel to support continuous monitoring efforts.
• Ability to document remediation status, compliance actions, and risk mitigation activities in accordance with established program processes.
• Experience supporting cybersecurity operations in classified and unclassified network environments.

Responsibilities

• Implement and maintain technical security controls to harden systems in accordance with STIGs, IAVMs, and DoD and ARNG cybersecurity policy.
• Apply approved configuration baselines, security patches, and system hardening measures to improve enterprise security posture across ARNG classified and unclassified environments.
• Conduct vulnerability assessments, analyze findings, and validate remediation actions to reduce risk and improve compliance.
• Track POA&M activities through resolution, ensuring deficiencies are documented, monitored, and progressed to closure in coordination with responsible stakeholders.
• Support Task 3 deliverables by contributing to secure baseline configuration, vulnerability management, and continuous compliance validation across the DoDIN-A(NG) area of responsibility.
• Coordinate with system owners, ISSM/ISSO personnel, and SOC teams to align remediation actions with continuous monitoring and operational risk mitigation efforts.
• Update and support cybersecurity compliance artifacts and related records in eMASS as security changes, remediation actions, and control status evolve.
• Work with SOC and monitoring teams that leverage USIEM, EDR, and IDS/IPS data to ensure hardening actions and corrective measures are informed by current threat and incident information.
• Coordinate, as required, with NETCOM Global Cyber Center and DISA DCDC-aligned operations to support defensive cyberspace operations and enterprise vulnerability response activities.