×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Cyber Security Engineer, Senior

Job in Rockville, Montgomery County, Maryland, 20849, USA
Listing for: Hirebridge
Full Time position
Listed on 2026-01-01
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 120000 - 180000 USD Yearly USD 120000.00 180000.00 YEAR
Job Description & How to Apply Below

Location
:
Rockville, MD (Hybrid) (2 Days Onsite)

Position Title: Cyber Security Engineer, Senior

Clearance: Secret

Required: US Citizenship

Position Summary: The Cyber Security Engineer role provides hands‑on cybersecurity engineering support for vulnerability assessment, risk management, compliance, and continuous authorization activities in accordance with DoD, Air Force, and federal security standards.

The Cyber Security Engineer works closely with Dev Sec Ops  engineers, system administrators, procurement staff, and Government stakeholders to integrate security controls throughout the software lifecycle, support Risk Management Framework (RMF) and Continuous Authority to Operate (C-ATO) processes, and maintain a strong, auditable security posture across cloud, containerized, and SaaS environments.

Key Responsibilities Security Engineering & Vulnerability Management
  • Conduct software security testing across COTS, FOSS, and custom‑developed tools prior to onboarding and throughout sustainment within the Client's Dev Sec Ops  environment.
  • Perform continuous vulnerability monitoring using Government‑approved scanning tools, including scheduled and on‑demand scans aligned with patch cycles and deployment events.
  • Integrate automated security testing into CI/CD pipelines in coordination with Dev Sec Ops  engineers to enable early detection of vulnerabilities.
  • Analyze scan results to identify, prioritize, and document vulnerabilities based on CVSS scoring, exploitability, system exposure, and mission impact.
  • Track vulnerabilities through remediation, validation, and closure, ensuring findings are properly dispositioned and documented.
  • Support patch validation and remediation activities, verifying that fixes do not introduce regressions or break security controls.
  • Assess software dependencies and third‑party components for known vulnerabilities and supply‑chain risk.
  • Validate secure configuration baselines following installations, upgrades, and patches.
Risk Management Framework and Authorization Support
  • Support RMF activities asystem categorization, control selection, control implementation, assessment, and continuous monitoring.
  • Develop, update, and maintain security accreditation artifacts, including:
    • System Security Plans (SSPs)
    • Security Assessment Reports (SARs)
    • Plans of Action & Milestones (POA&Ms)
  • Map implemented technical and procedural controls to NIST control families and document inheritance where applicable.
  • Provide cybersecurity input to support Continuous Authorization to Operate (C-ATO) processes for enterprise software tools.
  • Support security assessments, audits, and reviews by Government cybersecurity organizations.
  • Maintain RMF documentation in approved security documentation and collaboration systems.
  • Ensure security artifacts remain current, consistent, and audit‑ready throughout the contract lifecycle.
Compliance and Standards Alignment
  • Apply and interpret cybersecurity requirements from:
  • Support FedRAMP compliance activities for cloud‑hosted and SaaS tools, including:
  • Validate that integrated tools comply with DoD security, privacy, and data protection requirements prior to approval and deployment.
  • Review software configurations to ensure alignment with approved security baselines and accreditation boundaries.
  • Identify compliance gaps and recommend technical and procedural mitigations.
  • Support ongoing continuous monitoring activities required under RMF and C-ATO models.
Security Reporting and Coordination
  • Produce security posture reports summarizing vulnerability trends, open risks, remediation progress, and compliance status.
  • Provide cybersecurity input to Software Toolchain Reports and Security Accreditation Reports required by the contract.
  • Collaborate with Government cybersecurity, engineering, procurement, and program offices to:
  • Communicate security risks
  • Recommend mitigations
  • Support risk acceptance decisions
  • Provide cybersecurity expertise to support Software Purchase Approval Packages (A003) by assessing security posture of proposed tools.
  • Participate in technical discussions related to tool onboarding, renewals, and lifecycle decisions.
  • Support incident response coordination and root‑cause analysis for…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search