What You'll Do

• Implement NIST 800-53 / 800-171 security controls directly into system design and platform architecture

• Lead system hardening and secure configuration across platform components

• Embed security into the engineering workflow (DevSecOps)
  

• Perform:

• System Patching

• STIG implementation and validation
  

• Vulnerability scanning (ACAS/Nessus)
  

• POA&M management and remediation tracking
  

• Partner with engineering teams to:

• Secure APIs, services, and data pipelines

• Enforce least privilege, identity, and access controls

• Support deployment into:

• SIPR / JWICS / SAP environments
  

• Identify and remediate security gaps before they reach customer environments
  

Required Qualifications

• Active TS clearance with SCI eligibility
  

• DoD 8570/8140 certification (Security+ minimum; CISSP/CASP+/CISM preferred)

• 5+ years in cybersecurity with hands-on implementation experience
  

• Direct experience with:

• NIST 800-53 / 800-171
  

• DISA STIGs
  

• ACAS/Nessus
  

• Background in:

• Systems Administration, Network Engineering, or SOC → transitioned into security

• Experience working in:

• Classified environments (SIPR, JWICS, SAP)
  

What Makes You a Strong Fit

• You’ve actually hardened systems—not just documented controls
  

• You can move between:

• Low-level system configuration

• High-level security architecture decisions

• You are comfortable doing manual, in-the-weeds work when needed to hit deadlines

• Track record of stability (2+ years per role preferred)
  

• Comfortable in a startup environment
  

• Willing to own problems end-to-end, not just your lane

116000 - 174000 USD a year