Senior Cybersecurity & Compliance Engineer

About The Position

Requirements

• Bachelors degree in Cybersecurity, IT, or Engineering
• 3–5 years of experience in DoD RMF (DoDI 8510.01 / NIST SP 800-53)
• Hands-on experience with eMASS or XACTA
• DoD 8140/8570 Compliance
• Mandatory IAT Level II certification; this position is a "Privileged Use" role
• Must hold a current Security+ CE or equivalent baseline certification
• SRC IS A CONTRACTOR FOR THE U.S. GOVERNMENT. THIS POSITION WILL REQUIRE U.S. CITIZENSHIP AS WELL AS A U.S. GOVERNMENT SECURITY CLEARANCE AT THE TOP SECRET / SCI LEVEL.

Nice To Haves

• Manage full-spectrum Assessment and Authorization (A&A) through all six steps of the RMF process in support of the Command-ISSM
• Directly develop and maintain a robust library of RMF artifacts, including System Security Plans (SSP), POA&Ms, and Security Assessment Reports (SAR) via eMASS and XACTA
• Experience providing cybersecurity oversight for IT, OT, and FRCS within high-security SCIF and SAP-F environments
• Conduct advanced vulnerability management activities, including ACAS/Nessus scan coordination, log analysis, and remediation validation
• Engineer the integration of Cyber Network Defense (CND) tools such as Trellix (HBSS/ePO) and endpoint protection platforms
• Ability to conduct technical reviews of network diagrams and system architectures to identify and mitigate compliance gaps early in the design phase
• Ability to implement Supply Chain Risk Management (C-SCRM) protocols for critical infrastructure entering secure facilities

Responsibilities

• Defining Confidentiality, Integrity, Availability (CIA) thresholds as measurable KPPs
• Ensuring compliance with DoDI 8510.01 (RMF), NIST SP 800-53, DoD Cloud SRG, and enclave-specific requirements (NIPRNet, SIPRNet, JWICS)
• Advising on requirements gathering tools (Excel, DOORS, or recommended alternative) to support traceability and secure data handling
• Identifying and advises on trade-offs between performance and cybersecurity (e.g., resilience vs. confidentiality)
• Ensuring reciprocity and leverages NIWC/SETA prior requirements work where applicable

Benefits

• SRC offers a generous benefit package, including medical, dental, and vision plans, 401(k) with a company match, life insurance, vacation and sick paid time off accruals starting at 10 days of vacation and 5 days of sick leave annually, 11 paid holidays, tuition reimbursement, and a work environment that encourages excellence and more.