Cyber Security Analyst/Engineer

We are seeking a skilled Cyber Security Engineer to support the Manpower and Reserve Affairs (M&RA) IT Support Services (ITSS) program at Marine Corps Base Quantico, VA. This combined role is responsible for both cyber security operations and systems hardening across the enterprise IT environment and AWS GovCloud infrastructure - including F5 BIG-IP and Palo Alto Networks platforms. The position directly supports M&RA's Zero Trust strategy and DoD compliance requirements. Required Skills Cyber Security & Compliance

• Conduct Information Systems Continuous Monitoring (ISCM) planning and implementation.
• Perform cyber security assessments per DoD policy and regulations.
• Conduct Information Assurance Vulnerability Management (IAVM) and assist with Security Incident Response (IR) planning and execution.
• Coordinate with MCCOG on management, reporting, and monitoring of MDE for endpoint security.
• Support DIARMF processes in accordance with NIST SP 800-171 requirements.
• Maintain and annually reevaluate internal Cyber Security Policies and SOPs.
• Ensure safeguarding of Covered Defense Information and cyber incident reporting per DFARS 252.204-7012.
• Provide Risk Analysis and Management functions.

Systems Hardening

• Implement and maintain system hardening configurations in accordance with DoD STIGs and RMF requirements.
• Conduct vulnerability scans using ACAS/Tenable Security Center and Nessus; analyze findings and coordinate remediation.
• Support patch management and security hardening initiatives across enterprise and cloud platforms.
• Develop and maintain system documentation, diagrams, SOPs, and change management records.

F5, Palo Alto & AWS GovCloud

• Administer, configure, and maintain F5 BIG-IP Advanced Web Application Firewall (AWAF), including ASM, LTM, and APM modules.
• Implement and enforce firewall policies, NAT rules, and application delivery services in Palo Alto NGFW.
• Monitor and act on security alerts across the AWS GovCloud environment.
• Support 24/7 incident alerting, DDoS mitigation, intrusion detection, and vulnerability scanning integrated into managed security operations.
• Troubleshoot network connectivity, load balancing, and security-related issues.
• Ensure all cloud environment management is performed using Government-authorized equipment, with exceptions approved in advance by the COR.
• Participate in incident response and cybersecurity operations.
• Coordinate with network engineers, system administrators, ISSOs, and government stakeholders.

• Bachelor's Degree in Cyber Security, Computer Science, or similar
• Active Secret Clearance required; Top Secret preferred.
• 2+ years of experience in DoD network and security administration.
• Must obtain and maintain certification per DoD 8140.01 / DoDM 8140.03 prior to start date.
• CompTIA Security+ required; CCSP or CASP+ preferred.
• Hands-on experience with F5 BIG-IP (LTM/GTM preferred) and Palo Alto firewalls/Panorama.
• Hands-on experience with ACAS/Tenable.sc/Nessus.
• Strong understanding of TCP/IP, routing, switching, DNS, VPNs, and network segmentation.
• Familiarity with Zero Trust concepts, STIGs, RMF, and DISA security requirements.
• Experience with vulnerability remediation and compliance reporting.
• Familiarity with Windows and Linux server environments.

Desired Skills

• Palo Alto PCNSA or PCNSE
• F5 Certified Administrator
• ACAS Certified Administrator
• AWS Cloud Certification (CP, SysOps, or SA)
• Knowledge of scripting/automation: PowerShell, Python, or Bash
• Experience with virtualization and cloud technologies