Cybersecurity Engineer - Sr. Job Description

Position Summary

Essential Duties and Responsibilities

• Provide senior-level cybersecurity engineering support for SBA ECS enterprise cybersecurity operations.
• Support Task Areas 3.5.3 and 3.5.3.9 by designing implementing and maintaining secure enterprise security architectures and cybersecurity engineering solutions.
• Develop and maintain cybersecurity engineering standards architecture diagrams implementation strategies and technical security documentation.
• Engineer and implement security controls aligned with NIST FISMA Zero Trust Architecture (ZTA) and federal cybersecurity requirements.
• Design integrate configure and support security technologies including SIEM SOAR IDS/IPS EDR DLP MFA PKI NAC firewalls secure web gateways and cloud-native security solutions.
• Provide advanced engineering support for Microsoft Azure Microsoft 365 AWS hybrid cloud and enterprise network environments.
• Support cybersecurity monitoring detection containment remediation and recovery activities within the SOC environment.
• Perform enterprise systems hardening vulnerability remediation security baseline implementation and secure configuration management.
• Conduct cybersecurity architecture assessments threat modeling security engineering reviews and technical risk analysis activities.
• Support implementation and optimization of Zero Trust security capabilities including identity security micro-segmentation continuous monitoring and least privilege access models.
• Design and implement cybersecurity solutions supporting cloud migration DevSecOps container security and automation initiatives.
• Support incident response investigations by providing engineering expertise log analysis root cause analysis and remediation recommendations.
• Collaborate with cybersecurity operations teams to develop detection logic security use cases automated workflows and threat response procedures.
• Perform system security engineering activities throughout the system development lifecycle (SDLC) and support Authority to Operate (ATO) initiatives.
• Develop and maintain security architecture roadmaps engineering plans and technology modernization strategies.
• Perform security engineering analysis of enterprise applications APIs databases cloud services and network infrastructures.
• Support cybersecurity compliance efforts related to NIST SP 800-53 NIST SP 800-171 FedRAMP CISA guidance and federal cybersecurity mandates.
• Provide technical leadership and mentoring to junior cybersecurity engineers SOC personnel and technical staff.
• Prepare technical reports engineering documentation executive briefings and operational recommendations.
• Research emerging cyber threats adversary tactics and evolving security technologies to improve enterprise defense capabilities.

Minimum Qualifications

• Bachelors degree in Cybersecurity Computer Science Information Technology Information Assurance Systems Engineering or related discipline. Relevant experience may substitute for degree requirements.
• Minimum of 10 years of experience supporting cybersecurity engineering cybersecurity operations enterprise security architecture or SOC environments.
• Demonstrated experience designing and implementing enterprise cybersecurity architectures and engineering solutions.
• Hands-on experience with SIEM SOAR EDR IDS/IPS firewalls vulnerability management IAM cloud security and security automation technologies.
• Strong knowledge of NIST cybersecurity frameworks federal security standards and Zero Trust Architecture principles.
• Experience supporting Microsoft Azure Microsoft 365 AWS hybrid cloud and enterprise network infrastructures.
• Experience performing system hardening secure configuration management and vulnerability remediation.
• Knowledge of incident response methodologies MITRE ATT&CK framework cyber kill chain concepts and adversary TTP analysis.
• Experience supporting RMF ATO continuous monitoring and federal cybersecurity compliance activities.
• Strong analytical troubleshooting technical writing and communication skills.
• Ability to present technical findings and cybersecurity recommendations to executive leadership and technical stakeholders.

Preferred Certifications

• Certified Information Systems Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)
• GIAC Certified Enterprise Defender (GCED)
• GIAC Security Expert (GSE)
• Certified Ethical Hacker (CEH)
• CompTIA Security
• CompTIA CySA
• AWS Certified Security Specialty
• Microsoft Certified: Cybersecurity Architect Expert
• Cisco Certified CyberOps Professional