Senior Cybersecurity Engineer (Must have Top Secret with Fully Scope Poly Clearance)

Morgan, Inc.
Reston, United States of America
5 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Reston, United States of America

Tech stack

Kubernetes Security
Microsoft Active Directory
Amazon Web Services (AWS)
User Authentication
Cloud Computing Security
Computer Security
Information Systems
Continuous Integration
Digital Signature
Hardware Security Module
Identity and Access Management
Key Management
Lightweight Directory Access Protocols (LDAP)
Public Key Infrastructure
Role-Based Access Control
Cloud Services
Zero Trust Network Access
Systems Integration
Software Vulnerability Management
Delivery Pipeline
Customer Identity Access Management
Kubernetes
Infrastructure Automation Frameworks
Information Technology
Devsecops

Job description

Public Key Infrastructure (PKI)

  • Design, implement, and maintain enterprise PKI solutions supporting authentication, encryption, digital signatures, and secure communications.
  • Manage certificate lifecycle operations, including:
  • Certificate issuance
  • Renewal
  • Rotation
  • Revocation
  • Recovery
  • Integrate and manage Hardware Security Modules (HSMs) and enterprise key management systems.
  • Ensure compliance with federal cryptographic standards and security requirements.
  • Support enterprise Certificate Authority (CA) architecture and trust models.

Identity & Access Management (IAM)

  • Design and implement automated identity lifecycle management solutions.
  • Support Identity Governance and Administration (IGA) platforms and workflows.
  • Develop provisioning and deprovisioning automation.
  • Implement role-based (RBAC) and attribute-based access control (ABAC) models.
  • Integrate identity services with enterprise directories, applications, cloud services, and mission systems.
  • Support identity federation and privileged access management initiatives.

Cybersecurity Engineering

  • Architect and implement security controls aligned with Zero Trust principles.
  • Perform security assessments, risk analyses, and vulnerability remediation activities.
  • Support RMF compliance, security accreditation efforts, and continuous monitoring initiatives.
  • Develop cybersecurity architectures for cloud, hybrid, and on-premises environments.
  • Conduct security validation testing and operational readiness activities.

Systems Integration & Automation

  • Integrate PKI, IAM, security, and authorization services with enterprise environments.
  • Develop automation pipelines and Infrastructure-as-Code (IaC) solutions.
  • Support DevSecOps implementation and CI/CD processes.
  • Collaborate with architects, engineers, security teams, and government stakeholders to ensure successful deployment and sustainment.

Requirements

Morgan Wendellman is seeking an experienced Senior Cybersecurity Engineer to support enterprise-wide Identity, Credential, and Access Management (ICAM), Public Key Infrastructure (PKI), and Zero Trust modernization initiatives within highly classified government environments.

The successful candidate will play a critical role in designing, implementing, integrating, and securing enterprise identity and cryptographic trust services supporting mission-critical systems. This position requires deep expertise in PKI, IAM, cybersecurity engineering, automated certificate lifecycle management, authorization services, and secure enterprise architectures. The ideal candidate will possess extensive experience operating in TS/SCI and compartmented environments while supporting large-scale federal cybersecurity initiatives., * Active TS/SCI with Full Scope Polygraph (FSP) clearance.

  • Minimum 10 years of cybersecurity engineering experience supporting federal or intelligence community programs.
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or related field.
  • Demonstrated expertise in:
  • Public Key Infrastructure (PKI)
  • Identity and Access Management (IAM)
  • Identity Governance and Administration (IGA)
  • Zero Trust Architecture
  • Authentication and Authorization Systems
  • Certificate Lifecycle Management
  • Cryptographic Key Management
  • Security Architecture
  • Cybersecurity Compliance Frameworks
  • Experience implementing and supporting:
  • Certificate Authorities (CAs)
  • Hardware Security Modules (HSMs)
  • LDAP / Active Directory
  • SSO and Federation Technologies
  • RBAC and ABAC Models
  • Enterprise Identity Platforms
  • Privileged Access Management (PAM)

Preferred Qualifications

  • Experience supporting NSA, DoD, Intelligence Community, or other classified programs.
  • Experience with ICAM modernization initiatives.
  • Knowledge of NIST 800-53, NIST Zero Trust Architecture, CNSSI guidance, and DoD cybersecurity requirements.
  • Experience integrating security solutions across cloud, hybrid, and on-premise environments.
  • Familiarity with DevSecOps, Kubernetes, container security, automation frameworks, and CI/CD pipelines.
  • Understanding of mission-focused access control and need-to-know authorization models.

Preferred Certifications

One or more of the following:

  • CISSP
  • CCSP
  • Security+
  • CASP+
  • Certified Identity and Access Manager (CIAM)
  • Certified Information Systems Auditor (CISA)
  • Microsoft Identity and Access Administrator
  • AWS Security Specialty
  • Certified PKI Professional (CPKI)
  • Certified Cloud Security Professional (CCSP)

Desired Skills

  • Strong analytical and problem-solving abilities.
  • Excellent written and verbal communication skills.
  • Ability to work effectively in highly classified and mission-critical environments.
  • Experience leading technical teams and mentoring junior engineers.
  • Strong understanding of enterprise-scale cybersecurity operations.

Benefits & conditions

Compensation: Competitive salary commensurate with experience, clearance level, certifications, and technical expertise.

Apply for this position