Security Engineer

The Security Engineer (Senior) leads cybersecurity engineering efforts for Department of Defense network modernization programs, covering Risk Management Framework/Authority to Operate (RMF/ATO) package development, vulnerability management, and security architecture design. Key responsibilities include developing and maintaining ATO packages, overseeing vulnerability scanning and remediation, implementing and validating STIG compliance, designing integration of Zero Trust Architecture, and integrating cybersecurity systems and tools. The role also guides Post-Quantum Cryptography, supports TEMPEST compliance for facilities, leads security testing, and serves as the main cybersecurity interface with government security personnel throughout the ATO lifecycle.

Roles and Responsibilities:

Leads cybersecurity engineering efforts for DoD network modernization programs, including Risk Management Framework/Authority to Operate package development, vulnerability management, and security architecture design. Develops and maintains ATO packages for NIPRNet and SIPRNet environments; oversees ACAS vulnerability scanning and remediation activities; implements and validates STIG compliance across all network equipment; designs Zero Trust Architecture integration into network infrastructure; integrates cybersecurity systems and tools; provides Post-Quantum Cryptography design guidance; supports TEMPEST compliance for facility design; leads security testing in the integrated test environment; and serves as the primary cybersecurity interface with government security personnel throughout the ATO lifecycle.

Over 10 years' experience and a M.A./MS degree.

CISSP required; CEH, CASP+ preferred; RMF/ATO, ACAS, STIG, Zero Trust architecture experience

Must have an Active Secret Clearance