Cyber Security Engineer
New
Remote (U.S.)Full-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- AWS
Requirements
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field.
- 5+ years of cybersecurity engineering experience supporting federal, cloud, healthcare, or other regulated environments.
- Experience securing AWS cloud environments, including IAM, encryption, logging, monitoring, network security, and vulnerability management.
- Hands-on experience with AWS security services such as Security Hub, GuardDuty, CloudWatch, CloudTrail, Inspector, AWS Network Firewall, or similar capabilities.
- Experience supporting RMF, ATO, continuous monitoring, risk management, and federal compliance activities.
- Familiarity with eMASS, ServiceNow GRC, or similar risk management and authorization systems.
- Experience developing or supporting SSPs, POA&Ms, SOPs, control narratives, risk assessments, evidence packages, and remediation plans.
- Working knowledge of NIST RMF, NIST SP 800-53 controls, FISMA, FedRAMP, Zero Trust, and federal cybersecurity requirements.
- Knowledge of DISA STIGs, secure configuration baselines, system hardening, and vulnerability remediation processes.
- Familiarity with DevSecOps, secure SDLC practices, automated security scanning, CI/CD security, and environment hardening.
- Strong communication, documentation, analytical, and problem-solving skills.
Responsibilities
- Support cybersecurity engineering for the pilot, including cloud security, RMF/ATO support, compliance documentation, and continuous monitoring.
- Secure AWS-based environments through identity and access management, encryption, logging, monitoring, network security, vulnerability management, and configuration hardening.
- Configure, monitor, and support AWS security services such as AWS Network Firewall, Security Hub, GuardDuty, CloudWatch, CloudTrail, Inspector, and related capabilities.
- Support security planning for an AWS Commercial Cloud environment with consideration for future migration to AWS GovCloud or another VA-approved hosting environment.
- Assist with ATO planning, control implementation, evidence collection, compliance reporting, and approval workflows.
- Work within eMASS, ServiceNow GRC, or similar risk management systems to support ATO artifacts, information assurance tasking, POA&M tracking, and security documentation.
- Develop and maintain SSPs, POA&Ms, SOPs, risk assessments, control narratives, security diagrams, and remediation plans.
- Support vulnerability assessments, DISA STIG hardening, configuration compliance reviews, remediation tracking, and audit readiness activities.
- Integrate security requirements into architecture, sprint planning, CI/CD processes, testing, and deployment readiness.
- Collaborate with technical and non-technical stakeholders to translate security requirements into practical engineering, documentation, and compliance actions.
View Full Description & ApplyYou'll be redirected to the employer's site