Cybersecurity Engineer Federal Experience REQUIRED

Cybersecurity Engineer (GovCon Labor Category) Labor Category: Cybersecurity Engineer FLSA Status: Exempt Clearance Requirement: Secret / Top Secret (TS/SCI as required by task order) Location: Remote Reports To: ISSM / Cybersecurity Program Manager / CISO Position Overview The Cybersecurity Engineer III serves as a senior security architect and technical authority responsible for enterprise cybersecurity engineering, Zero Trust architecture implementation, and oversight of the full NIST RMF / ATO lifecycle across complex federal systems. This role leads security design for cloud, on-premise, hybrid, and high-impact systems and provides expert guidance to ISSOs, engineers, and system owners to ensure continuous compliance with FISMA, NIST, FedRAMP, DISA STIGs, and agency security policies. This position is responsible for security architecture, advanced threat defense, and continuous monitoring strategy to maintain and improve the organization's cybersecurity posture across the enterprise.

Key Responsibilities

• Lead enterprise implementation of security controls aligned to NIST SP 800-53, 800-37, 800-61, 800-171, and Zero Trust Architecture (NIST 800-207)
• Serve as senior lead for RMF lifecycle activities and ATO sustainment across multiple systems
• Architect and engineer secure solutions across AWS GovCloud, Azure Government, and on-prem environments
• Direct development and maintenance of SSPs, POA&Ms, SARs, Security Architectures, and Control Traceability Matrices
• Provide advanced engineering and configuration of:
• SIEM/SOAR (Splunk, Sentinel)
• EDR/XDR (Defender, CrowdStrike)
• Vulnerability Management (Tenable, Nessus, Qualys)
• Firewalls, IDS/IPS, VPNs, NAC solutions
• Lead vulnerability assessments, penetration test remediation, and risk mitigation planning
• Implement and mature continuous monitoring strategies
• Provide oversight and technical leadership for eMASS / Xacta security packages
• Lead incident response, digital forensics, and threat hunting initiatives
• Interpret and apply DISA STIGs, CIS Benchmarks, and configuration baselines
• Mentor junior cybersecurity engineers, ISSOs, and analysts
• Support audits, OIG reviews, and 3PAO/FedRAMP assessments
• Advise leadership on cybersecurity strategy, risk posture, and architecture roadmaps

Required Qualifications

• Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or related field (or equivalent experience)
• 8+ years of progressive cybersecurity engineering experience in federal or highly regulated environments
• Deep expertise in NIST RMF, ATO, FISMA, FedRAMP, and Zero Trust
• Demonstrated experience designing secure architectures for cloud and hybrid federal systems
• Advanced knowledge of network, endpoint, and infrastructure security engineering
• Experience leading security remediation for audit findings and penetration tests
• Ability to obtain and maintain required security clearance

Preferred Certifications (DoD 8570/8140 Compliant)

• CISSP (preferred)
• CISM
• CCSP
• CEH
• Security+
• AWS/Azure Security Specialty

Technical Environment / Tools

• SIEM/SOAR: Splunk, Microsoft Sentinel
• EDR/XDR: CrowdStrike, Microsoft Defender
• Vulnerability Tools: Tenable, Nessus, Qualys
• Cloud: AWS GovCloud, Azure Government
• Compliance: eMASS, Xacta
• ITSM: ServiceNow, Remedy
• OS/Virtualization: Windows Server, Linux, VMware
• Network: Cisco, Palo Alto, IDS/IPS, VPN

Key Competencies

• Security architecture & engineering leadership
• RMF and ATO subject matter expertise
• Zero Trust implementation
• Risk assessment and mitigation strategy
• Incident response and advanced threat analysis
• Documentation and federal compliance reporting
• Technical leadership and mentoring

Typical Duties at This Level

• Acts as technical authority for cybersecurity engineering across programs
• Leads design reviews and security architecture decisions
• Owns continuous monitoring and enterprise security strategy
• Serves as primary interface with ISSMs, AO representatives, and auditors
• Guides teams through ATO, re-authorization, and FedRAMP assessments

Work Environment

Supports mission-critical federal systems requiring strict adherence to federal cybersecurity mandates. Position may require onsite support within secured federal facilities. Apply tot his job Apply To this Job