Senior Cyber Security Engineer

BridgePhase is a software engineering company focused on designing building securing and operating cutting-edge software solutions that drive mission success and operational excellence for Federal Government organizations. We are dedicated to supporting the Air Forces technological edge by delivering innovative software engineering services that directly support cyber operations threat defense and mission assurance. Our goal is to be a trusted mission partner in enabling cyber readiness and resilience across the Air Force and U.S. Cyber Command.

Were seeking an experienced Cyber Security Engineer to join our mission-driven team supporting the U.S. Air Forces Unified Platform software factory in San Antonio. In this role youll help defend critical Air Force cyber infrastructure drive compliance with Department of Defense security standards and enhance the security posture of operational systems that protect national interests. Youll work closely with development infrastructure and mission teams to secure platforms across their entire lifecyclefrom design and implementation to ongoing monitoring and incident response.

Ideal candidates bring deep expertise in cybersecurity principles hands-on experience with cloud and container security and the ability to lead threat detection and mitigation strategies in real-time. If youre driven by mission impact and thrive in fast-paced agile environments we want to hear from you.

We are hiring for both fully remote positions and hybrid roles based in San Antonio TX. Candidates local to San Antonio should expect a mix of onsite and remote work as part of a hybrid schedule.

In this position you can expect to:

• Design and implement security architectures for cloud-native and containerized systems in compliance with DoD cybersecurity standards.
• Perform vulnerability assessments risk analysis and compliance audits across mission systems.
• Integrate and maintain security tools such as container scanners static and dynamic analysis SIEM EDR and intrusion detection systems.
• Enforce security best practices and compliance with frameworks such as NIST SP 800-53 RMF DISA STIGs and the DoD Enterprise DevSecOps Reference Design.
• Collaborate with DevSecOps and SRE teams to embed security throughout the CI/CD pipeline.
• Analyze system logs alerts and telemetry to detect and respond to threats in near-real-time.
• Participate in security incident response and forensic analysis including root cause identification and mitigation planning.
• Maintain and optimize Identity and Access Management (IAM) policies Role-Based Access Control (RBAC) and secrets management.
• Provide guidance and mentorship to engineering teams on secure coding system hardening and threat modeling.
• Develop and maintain documentation for security procedures policies and system configurations.
• Support Authority to Operate (ATO) processes and security authorization packages under RMF.

As with any technical environment the exact role responsibilities will evolve with the changing needs of our client. We are looking for adaptable engineers who thrive on new challenges and can take on additional responsibilities beyond those listed above.

Preferred Experience and Qualifications:

• Hands-on experience in Cyber Security Engineering Blue Team Operations or Security Architecture in defense or secure government environments.
• Deep understanding of cybersecurity principles including zero trust architecture defense-in-depth and layered security models.
• Familiarity with common tools and technologies used in cyber defense such as Nessus Splunk Wireshark OSQuery Suricata Snort and ELK.
• Experience securing systems on AWS or other cloud environments and implementing cloud-native security practices.
• Strong knowledge of Kubernetes security container scanning and runtime protection (e.g. Twistlock Aqua Sysdig etc.).
• Scripting experience (Python Bash) for automation of security tasks and data analysis.
• Experience leading security compliance efforts and working with RMF/ATO processes.
• Familiarity with threat modeling penetration testing and incident response procedures.
• Active secret clearance is required with TS/SCI preferred.
• Industry certifications such as CISSP CEH GCIH GCIA or AWS Security Specialty are preferred.
• B.S. in Cybersecurity Information Assurance Computer Science or equivalent experience.
• This is a hybrid position with both weekly on-site support in San Antonio TX and remote work supported.

While weve outlined our ideal candidate we recognize that talent comes in many forms. If you dont check every box but have a strong background in cybersecurity a desire to secure mission-critical systems and a drive to grow we strongly encourage you to apply. We value professionals who bring curiosity commitment and adaptability to the mission of securing national cyber infrastructure.

About Our Company:
At BridgePhase our values shape our culture and guide our actions. We act with integrity honesty and respect earning trust and fostering collective success. We are critical thinkers and problem solvers driving innovation and positive disruption to solve hard challenges at speed and scale. Our work is characterized by courage compassion commitment and teamwork. We apply disciplined engineering principles and a proven agile approach that deliver flexible simplified durable and performant solutions that drive continuous improvement and have lasting impact and sustained value. Additionally we invest in our communities through strategic charitable initiatives empowering our employees to make meaningful contributions to causes they are passionate about.

Our Benefits:
We pride ourselves on providing top-tier benefits that rival those found in larger organizations. Below are some of the perks our team enjoys:

• Competitive compensation based on experience
• Flexible PTO plan
• Paid Sick Leave
• 100% Paid Paternal Leave (16 weeks Maternity 6 weeks Paternity)
• 401k plan with 6% employer matching (zero vesting period)
• Excellent health dental and vision benefits
• Professional development budget that can be used for certifications and training
• Paid community service days