Senior Cybersecurity Engineer

Position Responsibilities:

• Security control implementation: Implement and operate security controls across identity, network, compute, storage, key management, endpoint security, logging, and monitoring within the CUI boundary. 
• Access and privilege management: Administer role-based access, privileged access workflows, MFA/conditional access enforcement, service account governance, and secrets/cert lifecycle tasks. 
• Configuration baseline and hardening: Apply and maintain secure configuration baselines for in-scope systems and services. Investigate drift, remediate misconfigurations, and document exceptions with approvals. 
• Logging and detection operations: Ensure required logging is enabled and flowing to centralized monitoring. Help tune detections, investigate alerts, and support incident response procedures specific to the CUI environment. 
• Vulnerability and patch execution: Run vulnerability scans (or validate results), track remediation, coordinate patching, and verify closure. Manage remediation SLAs and support risk-based prioritization. 
• Change control support: Participate in change reviews for CUI-scoped systems, assess security impact, implement approved changes, and validate post-change security posture. 
• Evidence collection and audit readiness: Produce and maintain audit evidence (config snapshots, access reviews, logging verification, vulnerability reports, change records). Keep evidence organized, complete, and easy to validate. 
• Automation and reliability: Build lightweight automation to reduce manual work (repeatable deployments, configuration validation, evidence collection) and improve consistency without introducing risk. 
• Partner enablement: Support IT and delivery teams working inside the boundary by providing secure implementation guidance, troubleshooting, and clear “how-to” documentation. 

What success looks like:

• First 30–60 days: You can operate the environment safely, understand the boundary, and execute core security tasks (access, logging, vuln/patch, evidence) with minimal supervision. 
• By 90 days: Control operations are predictable: low drift, reliable logging, consistent remediation cadence, and clean evidence artifacts that map to control outcomes. 
• By 6–12 months: You’ve helped reduce manual effort through repeatability and automation, improved control health metrics, and strengthened day-to-day operational resilience. 

Required Qualifications:

• 4+ years in security engineering, cloud engineering, or security operations with hands-on responsibility for implementing controls. 
• Experience working in regulated or compliance-driven environments (CMMC, NIST 800-171, NIST 800-53, FedRAMP-aligned environments, SOC 2, ISO 27001, or similar). 
• Strong fundamentals in identity and access management, network segmentation concepts, encryption/key management basics, and centralized logging/monitoring. 
• Experience executing vulnerability management and patch workflows (scan, prioritize, remediate, validate). 
• Ability to write clear operational documentation and produce defensible evidence artifacts. 
• Strong collaboration skills with the ability to work across Security, IT, and delivery teams. 

Preferred qualifications:

• Experience supporting a CMMC assessment or maintaining controls mapped to NIST 800-171. 
• Familiarity with incident response processes and maintaining chain-of-custody and evidence handling in regulated contexts. 
• Experience with infrastructure-as-code or scripting for automation (e.g., Terraform/Bicep equivalents, PowerShell, Python). 
• Security certifications (one or more): Security+, SSCP, GSEC, or cloud/security engineering equivalents.