Intermediate Cybersecurity Automation & Assessment Engineer

MITRE Corporation
San Diego, United States of America
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Junior
Compensation
$ 130K

Job location

San Diego, United States of America

Tech stack

Microsoft Windows
Artificial Intelligence
Software System Penetration Testing
Automation of Tests
Bash
Burp Suite
CompTIA Security+
Computer Security
DNS
Python
Kali Linux
Linux System Administration
Log Analysis
NMap
Powershell
Runbook
Security Information and Event Management
Systems Integration
TCP/IP
Wireshark
Virtual Local Area Networks
Software Vulnerability Management
Scripting (Bash/Python/Go/Ruby)
Large Language Models
Mitre Att&ck
Software Troubleshooting
QRadar
Firewalls (Computer Science)
Information Technology
Nessus
CIS Benchmarks
Splunk
Security Orchestration, Automation & Response
Vulnerability Analysis

Job description

The Security Automation and Cyber Assessments department within the Cyber Solutions Innovation Center is seeking an Intermediate level Cybersecurity Automation & Assessment Engineer to lead the department's contributions across our portfolios. The department supports all of MITRE by providing a variety of cyber assessment products plus overall cyber engineering skills. The Intermediate Cybersecurity Assessment Engineer position will be a core member of the department and government technical team and serve as the first-line support for various sponsors. The position requires direct contributions to our diverse work programs., * Develop and maintain automation tools and scripts using Python, PowerShell, Bash, or similar languages to improve assessment and operational workflows.

  • Perform cybersecurity assessments, vulnerability analyses, and compliance evaluations across systems, applications, and networks.
  • Design and implement automated data collection, validation, and reporting capabilities to improve assessment efficiency.
  • Analyze logs and security events using SIEM and endpoint security tools to identify risks, anomalies, and opportunities for automation.
  • Support vulnerability management by validating findings, prioritizing remediation efforts, and tracking corrective actions.
  • Collaborate with cross-functional teams to integrate automation solutions and improve security processes.
  • Create and maintain technical documentation, assessment reports, and standard operating procedures.
  • Evaluate and implement emerging technologies, including AI-enabled automation and large language models (LLMs), to enhance assessment capabilities and operational effectiveness.

Requirements

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related technical field with 2-5 years of relevant experience, or equivalent combination of education and experience.
  • Experience developing automation solutions using Python, PowerShell, Bash, or similar scripting languages to improve operational efficiency and reduce manual effort.
  • Experience performing security assessments, vulnerability analysis, or compliance reviews using industry frameworks such as NIST, ISO 27001, CIS Controls, or similar.
  • Familiarity with SIEM and endpoint security platforms (e.g., Splunk, Microsoft Defender, CrowdStrike, Sentinel, QRadar) for log analysis and incident investigation.
  • Knowledge of enterprise networking concepts including TCP/IP, DNS, firewalls, VLANs, and Windows/Linux administration.
  • Experience documenting technical procedures, developing runbooks, and communicating technical findings to both technical and non-technical stakeholders.
  • Demonstrated analytical and problem-solving skills with the ability to troubleshoot complex technical issues independently and collaboratively.
  • Ability to obtain and maintain a U.S. Government security clearance, if required.
  • Per the U.S. Government's eligibility requirements, you must be a U.S Citizen to be considered for a security clearance.
  • This position requires a minimum of 50% hybrid on-site, * Master's degree in Cybersecurity, Computer Science, Engineering, or a related technical field.
  • 5 years of experience conducting cybersecurity assessments, penetration testing, vulnerability analysis, or systems security engineering activities.
  • Experience using cybersecurity assessment and testing tools such as Kali Linux, Burp Suite, Wireshark, Nessus, Nmap, or similar technologies.
  • Experience supporting offensive and defensive cybersecurity operations, including vulnerability assessment and penetration testing activities.
  • Experience securing, integrating, administering, or assessing enterprise IT environments, networks, cloud platforms, or mission systems.
  • Knowledge of cybersecurity standards such as NIST RMF, MITRE ATT&CK, STIGs, or CIS Benchmarks.
  • Relevant cybersecurity certifications such as CISSP, GPEN, GCIA, GSEC, or comparable credentials.

About the company

Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. That's because MITRE people are committed to tackling our nation's toughest challenges-and we're committed to the long-term well-being of our employees. MITRE is different from most technology companies. We are a not-for-profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do. The R&D centers we operate for the government create lasting impact in fields as diverse as cybersecurity, healthcare, aviation, defense, and enterprise transformation. We're making a difference every day-working for a safer, healthier, and more secure nation and world. Our workplace reflects our values. We offer competitive benefits, exceptional professional development opportunities for career growth, and a culture of innovation that embraces adaptability, collaboration, technical excellence, and people in partnership. If this sounds like the choice you want to make, then choose MITRE - and make a difference with us. MITRE Technology and Engineering creates solutions using threat-informed cybersecurity approaches to enhance the security, safety, and resiliency of critical cyber systems and infrastructure. The Security Automation and Cyber Assessments department serves as MITRE's resource for cyber risk evaluation and security innovation. Our team is dedicated to advancing the field of cybersecurity by combining deep expertise in risk assessment with cutting-edge automation technologies. This dual focus enables us to address the evolving needs of our sponsors, ensuring scalable and effective cybersecurity solutions that meet today's challenges and anticipate tomorrow's threats. Our work is defined by innovation, exemplified through initiatives like SAF, ECHO, and ACT, which demonstrate our commitment to developing transformative tools and methodologies. By leveraging automation, we empower organizations to enhance their security posture efficiently and effectively, positioning them to stay ahead in an increasingly complex cyber landscape. The Security Automation and Cyber Assessments department reflects MITRE's leadership in cybersecurity, making our value clear to sponsors and internal stakeholders alike. We don't just assess risks; we innovate solutions that drive the future of cybersecurity.

Apply for this position