Cybersecurity Engineer
Craig Technologies · Manassas, VA · 5 days ago
On-siteInformation Technology$110k–$175k/yrFull-time
Basic Qualifications
- Bachelor’s degree in Cybersecurity, Computer Science, Computer Engineering, or related engineering or IT field with 3 years of relevant experience or master’s degree and 2+ years of relevant cyber experience
- Or 7 years of relevant experience
- Experience with Linux systems and large system development
- Experience with basic networking switch/router/firewall/IDS concepts
- Experience developing Cyber Security Solutions (in any form) as a team
Desired Skills
- Knowledge of containers and securing the infrastructure through the cloud
- Experience in agile methodologies that highlight Atlassian tools, namely Jira and Confluence
- Experience in model-based system engineering concepts (MBSE)
- Experience in researching new Cybersecurity capabilities, performing trade studies, and providing expertise to peers and leadership
- Proficiency with Cyber best practice security concepts, models, and methods, (e.g., zero trust architecture and maturity model, advanced authentication methods, STIG coding practices)
- Ability to communicate and work effectively with internal members and external customers
- Creative thinker with strong analytical, problem-solving skills, and a continuous learning mindset
- Linux experience in scripting and/or development, e.g. Python, C, C++, Rust
- Strong communication and leadership skills to engage internal teams and external stakeholders
- Possess (or must obtain within 6 months of hiring) an approved DoD 8570 baseline certification for IAT Level II (Security+, GSEC, etc.)
Task List
- Design, implement, and maintain security controls and policies across multiple domains (Linux, Windows, cloud, containers, network devices)
- Integrate secure configuration tools and processes for Linux and Windows environments
- Perform security assessments and validate configurations through automated testing and tailored solutions
- Create and understand MBSE artifacts (SysML diagrams, requirements traceability matrices, interface control documents) that capture security requirements, threat models, and mitigation strategies
- Research new Cybersecurity capabilities, complete trade-studies, perform risk analysis, develop unconventional mitigations, and continuously integrate lessons learned and emerging knowledge into the program
- Create clear and concise artifacts (presentations, whitepapers, etc.) for dissemination and provide actionable recommendations for peers, leadership, and customers
- Present and lead discussions with various teams (working groups, technical exchange meetings, subsystems discussions) to ensure alignment of security objectives across all stakeholder groups
- Follow agile methodologies for task tracking (Jira - backlog, risk tracking, defect management) and maintain up‑to‑date security documentation & test plans (Confluence - create, organize, and collaborate on documentation)