Sr. Engineer, Cybersecurity Engineering

About The Position

Requirements

• Deep technical expertise in cybersecurity.
• Disciplined systems engineering skills.
• Experience with V-Model framework.
• Experience with multidisciplinary teams.
• Experience with NEI 08-09 and CIS benchmark controls.
• Experience architecting platform environments of 20–30 Windows servers and workstations within an Active Directory domain.
• Experience defining Group Policy-based security controls, virtualized cluster layouts, storage systems, Linux-based security appliances, network switches, and firewalls.
• Experience producing and maintaining design documentation (virtual and network design plans, network architecture diagrams, configuration specifications, cybersecurity control mapping matrices).
• Experience with server and network deployment.
• Experience with COTS solution integrations, system hardening, vulnerability analysis, documentation, and patching.
• Experience with configuration management.
• Experience with verification and validation of functional and cybersecurity capabilities.
• Experience with development and execution of cybersecurity test procedures.
• Experience with vulnerability assessments and security scans.
• Experience with onsite deployment, physical installation, network commissioning, Active Directory integration, and system configuration.
• Experience with Site Acceptance Testing (SAT).
• Experience training personnel on system operation, cybersecurity maintenance, and configuration management.
• Experience delivering turnover packages.

Responsibilities

• Translate customer cybersecurity needs into traceable system-level and component-level specifications using the Standard V-Model, while collaborating with Project Engineering Leads.
• Contribute to engineering cost estimates based on project requirements and communicate requirements-related issues and risks clearly to program leadership and customers.
• Design cybersecurity architectures for AIM SCS and COTS-based command-and-control solutions, encompassing network segmentation, access control, encryption, secure communications, and integration of physical security subsystems, with all design decisions traceable to applicable NEI 08-09 and CIS benchmark controls.
• Architect platform environments of 20–30 Windows servers and workstations within an Active Directory domain—defining Group Policy-based security controls, virtualized cluster layouts, storage systems, Linux-based security appliances, network switches, and firewalls.
• Produce and maintain design documentation—including virtual and network design plans, network architecture diagrams, configuration specifications, and cybersecurity control mapping matrices—with full traceability to system requirements.
• Stand up, configure, and deliver environments of 20–30 servers and workstations within an Active Directory domain.
• Perform server and network deployment through the entire product delivery lifecycle to prioritize deliverables, validate product feature sets, and maintain schedule and budget alignment.
• Execute COTS solution integrations by applying system hardening, vulnerability analysis, documentation, and patching.
• Bring systematic, analytical thinking to the diagnosis and resolution of integration issues drawing on creative and innovative problem-solving and documenting resolution paths.
• Maintain configuration management records throughout the build, documenting all decisions, changes, and deviations to provide a complete audit trail.
• Verify product feature sets to confirm that functional and cybersecurity capabilities meet acceptance criteria prior to formal test completion.
• Collaborate on development and execution of cybersecurity test procedures mapped through a Requirements Traceability Matrix (RTM), validating component and system-level compliance with all applicable requirements.
• Support Acceptance Testing, conducting vulnerability assessments and security scans, dispositioning all findings.
• Support onsite deployment at customer sites performing physical installation, network commissioning, Active Directory integration, and system configuration in accordance with site-specific cybersecurity commissioning procedures.
• Conduct Site Acceptance Testing (SAT) in coordination with customer security, IT/OT, and operations staff —to diagnose and resolve site-specific integration challenges in real time and communicate technical status, test results, and issue dispositions to applicable stakeholders.
• Train facility personnel on system operation, cybersecurity maintenance, and configuration management practices. Deliver thorough turnover packages.