CYBERSECURITY ENGINEER

CYBERSECURITY ENGINEER Job Description Cybersecurity Engineer Open Position Request Number R-DD-25 CLASSIFICATION: Cybersecurity Engineer GRADE: Exempt; Regular, Full-Time ESSENTIAL FUNCTIONS: Cybersecurity engineer with System or Network Administration Experience in system hardening techniques for Linux, Windows, Active Directory, and virtualized environments. Understanding of network security principles, including firewalls, intrusion detection/prevention systems (IDS/IPS), and VPNs. Experience managing and troubleshooting VPN infrastructure is required. Experience with vulnerability assessment tools such as ACAS/Nessus, Security Information and Event Management (SIEM) systems, and experience with scripting languages (e.g., PowerShell, Python, Bash) for automating system administration and security tasks. Strong analytical and problem‑solving skills. Excellent communication and collaboration skills. General Duties System Hardening Lead: Spearhead the systematic hardening of all enterprise systems, including Linux servers, Active Directory/Domain Controllers (AD/DCs), Windows servers and workstations, Virtual Machine (VM) imaging processes, Docker containers, and Windows Server Update Services (WSUS). This includes establishing baseline security configurations and continuously enforcing compliance. Vulnerability Management: Conduct comprehensive vulnerability assessments using tools such as ACAS/Nessus to identify security weaknesses across the infrastructure. Develop and execute remediation plans to address identified vulnerabilities in a timely and effective manner. Security Configuration Management: Implement and maintain secure configurations across all systems and network devices, adhering to DoD security technical implementation guides (STIGs) and best practices. Automate configuration management tasks using scripting and automation tools to ensure consistency and scalability. Security Monitoring and Incident Response: Monitor security logs and alerts using a Security Information and Event Management (SIEM) system to detect anomalous activity and potential security incidents. Participate in incident response activities, including investigation, containment, eradication, and recovery. Network Security Administration: Manage and maintain network security infrastructure, including firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and network segmentation. Implement and enforce network access controls to restrict unauthorized access to sensitive resources. This includes ongoing maintenance, configuration, and monitoring of our Virtual Private Network (VPN) infrastructure. Active Directory Security: Implement and maintain robust security controls within Active Directory, including group policy management, user account security, and privileged access management. Harden AD/DC servers against common attack vectors and ensure compliance with DoD security requirements. VM and Container Security: Implement security best practices for virtualized environments, including secure VM imaging, isolation, and access controls. Harden Docker containers and orchestrate container deployments to minimize security risks. WSUS Management: Configure and maintain WSUS to ensure timely patching of Windows systems and applications. Automate patching processes and monitor patch compliance to minimize the window of vulnerability. Security Policy Enforcement: Develop, implement, and enforce security policies and procedures across the enterprise. Ensure that all systems and users comply with established security standards and regulations. Compliance and Reporting: Maintain documentation of security configurations, policies, and procedures to demonstrate compliance with DoD security standards and regulations, including Risk Management Framework (RMF). Prepare reports on security metrics and compliance status for management review. Collaboration: Work with internal IT staff to recommend improvements to current Security policies, procedures, and practices to ensure a hardened and security focused environment. Cloud Security Enclave Architecture: Contribute to the design, implementation, and maintenance of our secure cloud security enclave architecture. Implement security controls and best practices to protect sensitive data and applications in the cloud environment. Job Requirements EDUCATION/EXPERIENCE REQUIREMENTS: Cybersecurity engineer with System or Network Administration experience responsible for DoD test network and computers, minimum of 5 years of experience with DoD cybersecurity standards and frameworks, including Risk Management Framework (RMF), Security Technical Implementation Guides (STIGs), and NIST cybersecurity standards. OTHER DUTIES: Additional duties may be assigned to support contract/mission support requirements in job-related areas. OTHER REQUIREMENTS: This position requires a Secret security clearance. Candidates must be eligible to obtain and maintain a Secret security clearance. Supports E-OMS operational objectives. Observes company Quality, Safety, Environmental, Security and Administrative policies; supports Process Improvement. WORK ENVIRONMENT: Normally works in well‑lighted, temperature controlled environment. PHYSICAL DEMANDS: This position will be subject to substantial movements (motions) of the wrists, hands, and/or fingers. Must be able to have close visual acuity to perform an activity such as: preparing and analyzing data and figures; viewing a computer terminal; and requires standing, sitting, bending and very little lifting or moving of heavy objects or materials. Note: The above statements are intended to describe the general nature and level of work being performed by individuals assigned to this classification. They are not intended to be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this position. Reliance Test & Technology, LLC is proud to be an affirmative action & equal employment opportunity employer. Reliance Test & Technology, LLC is committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding, or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state, or local laws or protected class. Reliance Test & Technology, LLC maintains a drug‑free workplace and performs pre‑employment substance abuse testing and background checks, where permitted by law. Any person with a disability needing special accommodation for the application process please contact Human Resources. Applicants must currently hold or be able to obtain and maintain the proper US DoD issued security clearance, which requires US Citizenship. Security clearance eligibility may be discussed during the interview phase. Employment and start date are contingent upon the candidate receiving the required US DoD issued interim security clearance. #J-18808-Ljbffr