Top Cybersecurity Jobs

As a Cyber Awareness and Training Lead, you will design cybersecurity tabletop exercises, provide incident management guidance, drive examinations, educate members, and consult on high-stakes issues to enhance industry cyber resilience.

The Senior Cybersecurity Engineer leads the implementation of security technologies, manages cybersecurity platforms, and collaborates with teams to enhance the organization's security posture.

The Cybersecurity Engineer will support incident response and monitoring for threats, triaging alerts, investigating suspicious activities, and developing response playbooks while coordinating with internal teams and external partners to enhance cybersecurity measures.

Support NICHD information assurance by monitoring security tools, triaging alerts, investigating incidents, tracking vulnerability remediation, maintaining FISMA compliance and dashboards, processing ServiceNow requests, supporting ATO/FISMA recertification, and collaborating on security operations and reporting.

Perform hands-on implementation, operation, and improvement of Identity and Access Management solutions. Provide IAM technical expertise, evaluate authentication/authorization policies, govern IAM platforms, support user provisioning/SSO/MFA/PAM, triage incidents, produce metrics/audit reports, and collaborate with application/infrastructure teams. Participate in project delivery and a scheduled 24x7 on-call rotation.

Lead development, revision, and maintenance of enterprise- and government-level cybersecurity policies, standards, procedures, and guidelines. Ensure compliance with federal frameworks (NIST, FISMA, DoD, CMMC), perform gap analyses, collaborate with SMEs and legal teams, maintain document control, support ATO and audit processes, and recommend policy updates to strengthen security posture.

Hands-on security engineer responsible for detection, triage, investigation, incident response, remediation, and continuous improvement across endpoint, identity, email, network, cloud, and hybrid environments. Tune SIEM/EDR, reduce false positives, develop IR playbooks, partner with IT to remediate root causes, and support vulnerability management and risk-based decisions.

Lead security operations, incident response, and vulnerability management across cloud and on-prem systems. Design and enforce security architecture (Zero Trust, IAM, PKI), support infrastructure and business continuity, and collaborate with stakeholders to implement cloud security and secure AI practices.

The Senior Analyst will implement and manage a Cybersecurity Continuous Control Monitoring program, focusing on control testing, risk identification, and audit coordination to enhance cybersecurity measures and ensure compliance with regulatory frameworks.

Design, build, and maintain the customer identity and access management (CIAM) platform using ForgeRock and Ping Identity. Develop automation for data collection, incident response, threat hunting, and fraud detection. Implement authentication/authorization frameworks, cloud IAM integrations, zero-trust and passwordless approaches, and AI/ML-driven DevSecOps capabilities to detect and prevent identity fraud and scale customer authentication experiences.

Lead cybersecurity for Vision Commercial: advise projects, drive security adoption, manage assessments and remediation, support incident investigations, ensure compliance with standards, and establish security analytics to protect customer, patient, and business data across commercial platforms.

Build and scale cybersecurity GRC across IT and OT: identify and manage risks, design and maintain control frameworks, support audits (SOC 2, ISO 27001), manage third-party risk, and drive control adoption and reporting to leadership.

Lead financial and workforce analysis for Global Information Security technology projects, managing vendor contracts, headcount tracking, forecasting, accruals, and monthly reporting to senior leadership. Partner with product, finance, and COO teams to model contractual obligations, monitor spend and trends, and support an annual transformation budget of ~$110M.

The Senior Manager of Cybersecurity Defense leads a CSIRT team handling incident response, develops response frameworks, coordinates cross-functional operations, and mentors team members.

Serve as the division Information Assurance (IA) lead: implement and maintain cybersecurity program, ensure AF/DoD RMF and AFSSI 8522 compliance, onboard/offboard users, manage IA documentation and training, run IRP drills, open and track Remedy tickets, liaison with CSTs/base comms, manage PKI/CAC issues, maintain SharePoint and device security, and support inspections and assessments.

Serve as the primary cybersecurity liaison between DoD stakeholders and the EITaaS Wave 1 cybersecurity team. Facilitate stakeholder engagement, risk assessments, incident response coordination, policy implementation, security training, and threat intelligence sharing. Apply expertise in Active Directory hardening, OU design, Intune configuration, STIG compliance, and reporting to improve cybersecurity posture and ensure regulatory alignment.

Lead enterprise cybersecurity architecture across domains (network, endpoint, cloud, IAM, data protection, AI security). Define standards, roadmaps, and reference architectures; evaluate technologies and vendors; run proofs-of-concept; govern decisions; mentor solution architects; and collaborate with stakeholders to reduce risk, technical debt, and fragmentation.

Lead RMF A&A activities, develop and review security documentation (SSMPs, PPPs, OPSEC), perform vulnerability/risk assessments, implement STIG and PKI controls, manage classified material and user accounts, support DoD cloud security, integrate cybersecurity into system design, and deliver training and compliance for program lifecycle and acquisition artifacts.

Lead cybersecurity engineering for DoD programs: author and review security documentation, manage RMF/A&A activities and eMASS packages, design secure network/system architectures, assess and mitigate vulnerabilities (ACAS/STIG), support CSfC/CDS/NSA approvals, advise acquisition/security decisions, and deliver training while coordinating with U.S. and international partners.

Lead OT cybersecurity architecture and CRA compliance for GMP pharmaceutical manufacturing. Design and harden Rockwell PLC and Ignition SCADA environments, perform risk and gap assessments (IEC 62443, ISA‑95, NIST), support CSV/validation and FDA 21 CFR Part 11 data integrity, and guide remediation, incident response, and stakeholder engagement across multi‑site manufacturing.

Design and develop offensive cyber software and hardware solutions, perform reverse engineering and non-traditional penetration testing, build offensive cyber curriculum, operate in virtualized environments, and travel up to 50% to support client training exercises. Requires TS/SCI clearance.

Design and implement offensive cyber software/hardware solutions, perform reverse engineering and non-traditional penetration testing, develop offensive cyber training curriculum, work in virtualized environments, and travel to support client training exercises.

The Director of Cybersecurity Governance, Risk, and Compliance will lead the GRC team, implement cybersecurity practices, and manage compliance with policies, while enhancing cybersecurity awareness across the organization.

The DLP Engineer is responsible for designing and assessing data loss prevention programs and configurations, specifically for email and endpoint protection. They will develop test plans, configure policies, and monitor alerts while coordinating with stakeholders to ensure secure information exchange.

The role involves providing cybersecurity expertise, developing security solutions, and enhancing incident response capabilities while supporting operations and maintaining security best practices.