Cyber Security Engineer

New
Remote (U.S.)Full-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page

Job Details

Experience
5+ years
Required Skills
AWS

Requirements

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field.
  • 5+ years of cybersecurity engineering experience supporting federal, cloud, healthcare, or other regulated environments.
  • Experience securing AWS cloud environments, including IAM, encryption, logging, monitoring, network security, and vulnerability management.
  • Hands-on experience with AWS security services such as Security Hub, GuardDuty, CloudWatch, CloudTrail, Inspector, AWS Network Firewall, or similar capabilities.
  • Experience supporting RMF, ATO, continuous monitoring, risk management, and federal compliance activities.
  • Familiarity with eMASS, ServiceNow GRC, or similar risk management and authorization systems.
  • Experience developing or supporting SSPs, POA&Ms, SOPs, control narratives, risk assessments, evidence packages, and remediation plans.
  • Working knowledge of NIST RMF, NIST SP 800-53 controls, FISMA, FedRAMP, Zero Trust, and federal cybersecurity requirements.
  • Knowledge of DISA STIGs, secure configuration baselines, system hardening, and vulnerability remediation processes.
  • Familiarity with DevSecOps, secure SDLC practices, automated security scanning, CI/CD security, and environment hardening.
  • Strong communication, documentation, analytical, and problem-solving skills.

Responsibilities

  • Support cybersecurity engineering for the pilot, including cloud security, RMF/ATO support, compliance documentation, and continuous monitoring.
  • Secure AWS-based environments through identity and access management, encryption, logging, monitoring, network security, vulnerability management, and configuration hardening.
  • Configure, monitor, and support AWS security services such as AWS Network Firewall, Security Hub, GuardDuty, CloudWatch, CloudTrail, Inspector, and related capabilities.
  • Support security planning for an AWS Commercial Cloud environment with consideration for future migration to AWS GovCloud or another VA-approved hosting environment.
  • Assist with ATO planning, control implementation, evidence collection, compliance reporting, and approval workflows.
  • Work within eMASS, ServiceNow GRC, or similar risk management systems to support ATO artifacts, information assurance tasking, POA&M tracking, and security documentation.
  • Develop and maintain SSPs, POA&Ms, SOPs, risk assessments, control narratives, security diagrams, and remediation plans.
  • Support vulnerability assessments, DISA STIG hardening, configuration compliance reviews, remediation tracking, and audit readiness activities.
  • Integrate security requirements into architecture, sprint planning, CI/CD processes, testing, and deployment readiness.
  • Collaborate with technical and non-technical stakeholders to translate security requirements into practical engineering, documentation, and compliance actions.
View Full Description & ApplyYou'll be redirected to the employer's site
View details
Apply Now