Sr Cybersecurity Engineer - US Federal

Workday•Reston, VA

3d•Hybrid

About The Position

This role supports one or more direct or indirect contracts with the U.S. Federal Government, requiring all personnel working on these contracts to be United States citizens. The position involves designing, engineering, and maintaining core security stack systems (Vulnerability Management, SIEM, and SOAR) within a native AWS environment. Responsibilities include securing, managing, and monitoring Kubernetes clusters and containerized workloads, ensuring tooling scales with infrastructure. The role utilizes Infrastructure as Code tools like Terraform, CloudFormation, or CDK for deployment and management, and leverages Python for tool integration and custom logic. A key aspect is using AI tools and LLMs to enhance development, optimize code, and automate tasks. The engineer will transform security telemetry into actionable, visual insights through dashboard creation and integrate security tooling into the developer workflow.

Requirements

Deep experience engineering within AWS (Compute, Storage, Networking, and Security services).
Strong hands-on experience with Kubernetes (K8s) and Docker.
Understanding of how to secure containerized environments and manage their lifecycle.
Advanced skills in Python.
Proven experience with Infrastructure as Code (IaC) (e.g., Terraform).
Comfort and proficiency in using AI tools to complement daily functions.
Ability to synthesize data and present it visually to stakeholders.
Must be a United States citizen (naturalized or native) due to federal government security requirements.
Ability to obtain and maintain a U.S. government issued security clearance.

Nice To Haves

An active TS/SCI w/CI Poly is preferred.
Experience building or maintaining GitLab CI, GitHub Actions, or Jenkins pipelines.
Specific experience with Amazon Elastic Kubernetes Service (EKS).
Experience securing large-scale, customer-facing SaaS products.
May be required to be on site at client locations in the DC, MD, and VA (DMV) area.

Responsibilities

Design and maintain the lifecycle of our core security stack (Vulnerability Management, SIEM, and SOAR) in a native AWS environment.
Secure, manage, and monitor Kubernetes clusters and containerized workloads.
Ensure our tooling scales alongside our containerized infrastructure.
Use tools like Terraform, CloudFormation, or CDK to deploy and manage security infrastructure, ensuring our environments are version-controlled and immutable.
Leverage Python to bridge the gaps between commercial tools.
Actively use AI tools and LLMs as a "force multiplier" to accelerate development, optimize code, and automate repetitive tasks.
Transform complex security telemetry into actionable, visual insights.
Build dashboards that show our partners exactly where we stand and where the gaps remain.
Work to integrate security tooling into the developer workflow, ensuring our engineering is as agile as the product it protects.