Digital Engineering Cybersecurity Engineer
Listed on 2026-06-28
-
Engineering
Cybersecurity, Systems Engineer -
IT/Tech
Cybersecurity, Systems Engineer
Position Summary
10x National Security is seeking a Senior Digital Engineering Cybersecurity Engineer to secure the Army’s digital-engineering ecosystem, its underlying infrastructure, and the engineering data it creates and exchanges. The engineer will integrate cybersecurity into MBSE, CAD, PLM, modeling and simulation, digital-model repositories, collaboration services, cloud or on-premises infrastructure, and lifecycle data workflows.
This is a system-security engineering and acquisition cybersecurity position, not a generic help-desk, compliance-only, or SOC-monitoring role. The successful candidate must be able to understand engineering architectures and data flows, identify mission and technical risks, design practical controls, and support authorization without making the digital-engineering environment unusable.
Primary Responsibilities- Develop and maintain the cybersecurity architecture for digital-engineering platforms, model repositories, PLM and CAD services, simulation environments, data exchanges, collaboration capabilities, and supporting cloud or on-premises infrastructure.
- Document system boundaries, data flows, trust boundaries, interfaces, users, administrative paths, external services, model exchanges, and protection requirements.
- Apply Zero Trust, least privilege, separation of duties, strong identity, multifactor authentication, role- or attribute-based access control, encryption, network segmentation, secure administration, auditing, and continuous monitoring.
- Integrate Risk Management Framework activities into system planning, engineering, deployment, operation, and sustainment.
- Develop or support system categorization, control selection, control implementation statements, security plans, architecture diagrams, assessment evidence, POA&Ms, continuous‑monitoring plans, and authorization packages.
- Enter, maintain, and validate cybersecurity information and evidence in eMASS or other Government-designated systems.
- Perform threat modeling and security engineering focused on risks created by aggregated technical data, collaborative engineering, model manipulation, unauthorized changes, supplier access, plug‑ins, scripts, software dependencies, and engineering-data exfiltration.
- Establish secure configuration, vulnerability‑management, patch‑management, logging, endpoint‑protection, and incident‑response practices for the digital‑engineering environment.
- Apply DISA Security Technical Implementation Guides and Security Requirements Guides where applicable and document deviations or compensating controls.
- Integrate software‑supply‑chain controls, dependency analysis, source‑code scanning, container or image scanning, software bills of materials, signing, provenance, and artifact integrity where the environment includes custom software or automation.
- Protect CUI, proprietary information, Government technical data, intellectual property, and classified information through appropriate marking, access, storage, transmission, release, and auditing controls.
- Automate evidence collection, control validation, configuration checks, and compliance reporting where practical.
- Coordinate with the Authorizing Official, Security Control Assessor, ISSM, ISSO, network operators, data owners, system owners, program managers, engineers, vendors, and other Government stakeholders.
- Support cybersecurity assessments, technical reviews, penetration testing, vulnerability remediation, authorization activities, and continuous monitoring.
- Develop security procedures and role‑based guidance so that engineers and modelers can work securely without bypassing required controls.
- Brief Government leadership on cybersecurity posture, engineering risks, authorization dependencies, and prioritized remediation actions.
- Bachelor’s degree in cybersecurity, computer science, information systems, systems engineering, electrical or computer engineering, or a related discipline. Equivalent directly relevant experience may be considered.
- At least seven years of cybersecurity or system‑security engineering experience, including at least three years supporting DoD systems, RMF, or acquisition cybersecurity.
- Working…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).