Job Description
Job Description
Position Overview
We are seeking a Mid-Level Cyber Security Engineer to provide expert cyber domain guidance across compliance, vulnerability assessment, cyber defense, and incident response activities. This position supports a highly technical environment requiring hands‑on security engineering, risk assessment, and continuous monitoring across systems with varying classification levels. The ideal candidate brings strong technical depth, excellent communication skills, and the ability to lead or guide other technical staff in cyber‑related initiatives.
This role is 100% onsite in Washington, DC and requires the ability to obtain a Public Trust clearance.
Key Responsibilities
Cyber Security Engineering & Analysis
- Conduct and review complex cybersecurity assessments
- Identify system vulnerabilities and areas of non‑compliance with cybersecurity standards
- Recommend mitigation strategies and risk‑reduction approaches
- Perform research, evaluation, and development in advanced cybersecurity areas
Security Operations & Monitoring
- Perform and maintain vulnerability scans, generating clear reports for leadership
- Track and report Information Assurance Vulnerability Management (IAVM) compliance
- Support incident response teams with domain-specific expertise
- Maintain a library of security audit tools and related testing processes
Risk Management & Compliance
- Review and update Authorization to Operate (ATO) documentation
- Manage and report Plan of Action & Milestones (POA& M) compliance
- Review Certification & Accreditation (C& A) documentation for compliance and completeness
- Ensure systems adhere to agency standards, regulatory frameworks, and RMF requirements
Technical Leadership & Collaboration
- Provide cybersecurity guidance to penetration testers, analysts, incident handlers, and support teams
- Lead or support integration of cyber requirements into IT and communication systems
- Assist with managing networks and systems across multiple classification environments
- Coordinate with cross‑functional engineering teams and mentor technical staff
Required Qualifications
Candidates must meet ONE of the following education/experience combinations:
- Bachelor’s degree + 12+ years of related experience
- Master’s degree + 10+ years of related experience
- Ph.D. degree + 7+ years of related experience
- 15+ years of related experience without a degree
Technical Requirements
- Experience conducting site surveys for IT equipment (racks, desktop PC environments)
- Experience installing IT hardware in 24/7 operational environments
- Strong understanding of:
- Cybersecurity assessments
- Incident response
- Risk & vulnerability assessment
- Cyber threat analysis
- Experience with the Risk Management Framework (RMF)
- Familiarity with cloud technologies (AWS, Azure, or similar) is preferred
Certifications (at least one required)
- Security+ CE
- CySA+
- CCNA Security
- SSCP
- CISSP (or Associate)
Preferred Qualifications
- Experience supporting federal, or civilian government environments
- Experience with cloud security and emerging threat landscapes
- Prior work coordinating or supervising multi‑disciplinary teams