Cybersecurity Engineer

Zachary Piper Solutions

Cybersecurity Engineer will architect and deploy SIEM, EDR, and firewall solutions, manage vulnerabilities, and maintain secure cloud and on-prem infrastructure for a classified defense aviation program located in Las Vegas, NV through 100% onsite presence.

• Design, implement, and maintain cybersecurity infrastructure, including SIEM, EDR, and firewall solutions for classified systems
• Conduct vulnerability scanning, risk assessments, and remediation to ensure system integrity and compliance
• Manage and secure hybrid cloud/on-prem architectures, including AWS Gov Cloud and Azure environments
• Document security controls, procedures, and compliance artifacts in alignment with NIST 800-53 and RMF frameworks
• Support audits and ensure adherence to DOE cybersecurity standards such as FISMA and DOE O 205.1C
• Collaborate with engineering and SOC teams to optimize threat detection and incident response capabilities

• 14+ years of total IT experience
• 6+ years of cybersecurity architecture, design, and implementation
• Active DOE Q or Top Secret clearance
• Bachelor's Degree in Computer Science, Cybersecurity, Engineering, or relevant field
• Security+, or Red Hat certification (minimum); CISSP or CISM preferred
• Proficiency with SIEM, EDR, IDS, and endpoint security tools (eg Splunk, Tenable, Crowd Strike)
• Experience with cloud security architectures, especially AWS Gov Cloud or Azure, and familiarity with NIST 800-53, RMF, and eMASS compliance frameworks

• Salary Range: $150,000-$180,000 depending on experience
• Per diem & relocation assistance available
• Benefits:
  Medical, Dental, Vision, 401k Plan, Holidays, PTO, sick leave as required by law

X, individual endpoints, XDR, Extended Detection and Response, NDR, Network Detection and Response, SOC, security operations center, firewall, vulnerabilities, cloud, on-prem, vulnerability, scanning, scan, risk assessment, remediation, system integrity, compliance, hybrid, cloud, on-prem, architectures, AWS, Gov Cloud, Azure, Amazon Web Services, security controls, security procedures, security compliance, NIST 800-53, NIST, RMF, RMF framework, Risk Management Framework, National Institute of Standards and Technology, audit, DOE, Department of Energy, FISMA, Federal Information Security Modernization Act, DHS, Department of Homeland Security, OMB, Office of Management and Budget, Security and Privacy Controls, CUI, Controlled Unclassified Information, information security program, continuous monitoring, JC3, Joint Cybersecurity Coordination Center, threat detection, incident response, incidence response, IT, information technology, cybersecurity architecture, cybersecurity design, cybersecurity implementation, DOE Q, Q clearance, clearance, Top Secret, Top Secret Clearance, TS, TS Clearance, Computer Science, IDS, intrusion detection system, network, networking, NIDS, network-based intrusion detection system, network traffic, Snort, Suricata, Zeek, Bro, Splunk, Tenable, Crowd Strike, HIDS, host-based intrusion detection system, unauthorized logins, file modifications, privilege escalations, OSSEC, Wazuh, Tripwire, suspicious packets, attack signatures, port scams, malware traffic, IPS, intrusion protection system, cloud security architecture, AWS, Gov Cloud, Amazon Web Services, Azure, eMASS

#LI-SW1 #LI-ONSITE