Mission Security Engineer

About The Position

Requirements

• 3–5 years of combined experience in a technical IT field, security engineering, DevSecOps, and/or software development
• Active Top Secret clearance with SCI eligibility required
• DoD 8140 IAT Level II certification (Security+, CySA+, or equivalent) required
• Experience implementing or utilizing NSA Type 1 cryptographic solutions in operational systems
• Experience with RMF processes and achieving ATOs for complex systems
• Working knowledge of NIST SP 800-53 security controls and how they map to technical implementation
• Hands-on experience implementing STIGs at the OS, container, platform, and application level
• Familiarity with space system architectures including satellite operations, ground segments, and TT&C systems
• Bachelor's degree in Computer Science, Cybersecurity, Engineering, or related field (or equivalent experience)

Nice To Haves

• Active TS/SCI clearance with polygraph
• Direct experience securing C2 systems, space systems, or other DoD mission systems
• Experience supporting DoD or IC customers through ATO, re-ATO, or continuous authorization
• Direct experience within IL-5 or IL-6 impact level cloud environments
• Knowledge of cloud security control inheritance and shared responsibility models within DoD IL-5 or IL-6 environments
• Familiarity with Cross Domain Solutions (CDS), data guards, or other information flow control technologies
• Experience with FedRAMP High, CMMC, or DoD IL-5/IL-6 authorizations
• Experience integrating security tooling (e.g., SIEMs, vulnerability scanners, audit/logging systems) into development workflows
• Understanding of zero trust architectures and modern identity solutions applied to classified environments

Responsibilities

• Implement end-to-end security controls for ground-based C2 systems, spacecraft hardware and software platforms, spanning firmware, embedded systems, cloud-native applications, and operational technology
• Ensure security architectures enable effective monitoring, logging, and incident response without compromising operational tempo
• Implement security controls and zero trust architecture throughout the product development lifecycle, minimizing RMF findings through strong upfront engineering
• Implement and validate DISA STIG requirements at the OS, container, platform, and application layers within products as they are developed
• Integrate RMF controls into CI/CD pipelines through DevSecOps practices including Infrastructure as Code (IaC), automated security scanning, and continuous monitoring tooling
• Identify and remediate findings from STIGs, vulnerability scans, penetration testing, and SCA activities to maintain ATO posture
• Support all RMF Steps 1–6, with emphasis on control implementation, assessment preparation, and remediation for DoD and IC programs
• Ensure compliance with NIST 800-53, CNSSI 1253, ICD 503, JSIG, and other applicable frameworks for National Security Systems (NSS) handling classified information up to TS/SCI
• Support cloud Provisional Authorization (PA) and inherited control models across classified cloud environments (e.g., Impact Level (IL)-6 Cloud Service Providers (CSPs))
• Contribute technically to security artifacts including SSPs, SAPs, SARs, and POA&Ms
• Serve as a credible technical voice with government ISSOs, ISSEs, and third-party assessors during ATO and reauthorization activities

Benefits

• Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave