Cyber Security Engineer
Role details
Job location
Tech stack
Job description
- Drive system-level cybersecurity initiatives across multiple Navy Submarine subsystems.
- Translate high-level security requirements and controls (such as NIST 800-53) into clear, actionable guidance for engineering teams.
- Develop, document, and implement security best practices across multiple subsystems and platforms.
- Assess existing subsystem architectures to identify security gaps and recommend practical, risk-based improvements.
- Coordinate with multiple engineering teams to standardize and implement security solutions in a consistent and scalable manner.
- Lead security initiatives through the full lifecycle, from analysis and design through implementation and validation.
- Configure, harden, and secure Red Hat-based Linux systems, including RHEL, CentOS, and Fedora.
- Implement and tune Linux security tools and controls such as SELinux, USBGuard, firewalld, and related mechanisms.
- Secure containerized environments using technologies such as Podman, Docker, and Kubernetes.
- Contribute to the design and security of on-premises or cloud-like infrastructures, including PKI and secure communications between systems.
- Develop custom security solutions, including scripts and lightweight tools, primarily in Python and, when needed, in C or C++.
- Automate enforcement of security controls and configuration baselines where possible.
- Design solutions to address unique or niche security requirements that fall outside standard patterns.
- Stay current with vulnerabilities, zero-day exploits, and emerging cybersecurity risks relevant to the environment.
- Proactively identify security risks across systems and subsystems and propose effective mitigation strategies.
- Collaborate with cross-functional teams to influence technical direction and ensure security is integrated into system designs.
- Contribute to hardening and securing file sharing and related protocols, such as NFS hardening, where applicable., The role focuses on securing complex, mission-critical Navy Submarine subsystems built primarily on Linux and Red Hat-based platforms. You will work in an engineering-driven environment that emphasizes collaboration across multiple teams, including systems, software, and infrastructure engineers. The technical landscape includes Red Hat-based Linux distributions, container technologies such as Podman, Docker, and Kubernetes, and on-premises or cloud-like infrastructures that rely on PKI and secure communications. The position involves extensive use of security tools like SELinux, USBGuard, and firewalld, as well as scripting and automation with Python and other languages. The work environment values proactive security thinking, continuous learning about emerging threats, and the ability to translate complex security requirements into practical, implementable solutions.
Requirements
- Approximately 5-10+ years of experience in cybersecurity, systems engineering, or Linux administration.
- Strong understanding of Linux operating systems, particularly Red Hat-based environments such as RHEL, CentOS, and Fedora.
- Hands-on experience configuring and securing Linux systems and services.
- Experience with security frameworks and compliance standards, including NIST 800-53 or similar control sets.
- Ability to interpret security controls and requirements and apply them effectively to real-world systems and architectures.
- Experience working across multiple teams and influencing technical direction in a collaborative environment.
- Strong problem-solving mindset with the ability to operate effectively in ambiguous or evolving technical environments.
- Familiarity with implementing and managing Linux security tools such as SELinux, USBGuard, and firewalld.
- Security+ certification or the ability to obtain it within a defined timeframe.
Additional Skills & Qualifications
- Experience with container technologies such as Kubernetes, Podman, and Docker.
- Exposure to cloud or cloud-like architectures, including on-premises or hybrid environments.
- Scripting and programming experience, with Python as the preferred language.
- Additional programming experience in C or C++.
- Familiarity with Rust as a nice-to-have skill.
- Understanding of public key infrastructure (PKI), digital certificates, and secure system-to-system communication.
- Familiarity with Model-Based Systems Engineering (MBSE) concepts and artifacts is a plus but not required.
- Experience with file sharing and security protocols, including hardening of NFS or similar technologies.
- Knowledge of security frameworks, cloud technologies, and modern security architectures.
- Ability to create scripts or lightweight tools to automate and enforce security controls.
Benefits & conditions
This is a Contract position based out of Manassas, VA.
Pay and Benefits
The pay range for this position is $65.00 - $75.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: - Medical, dental & vision - Critical Illness, Accident, and Hospital - 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available - Life Insurance (Voluntary Life & AD&D for the employee and dependents) - Short and long-term disability - Health Spending Account (HSA) - Transportation benefits - Employee Assistance Program - Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type