CyberSecurity Engineer (Top-Secret Clearance Required)

Join to apply for the CyberSecurity Engineer (Top-Secret Clearance Required) role at Improvix Technologies

2 months ago Be among the first 25 applicants

Join to apply for the CyberSecurity Engineer (Top-Secret Clearance Required) role at Improvix Technologies

Get AI-powered advice on this job and more exclusive features.

Job Title: Cyber Security Engineer

Location: Washington, DC (5 Days Onsite)

Type: Full-Time

Clearance: Top SecretClearance Required

Overview

Improvix Technologies is seeking a skilled Cyber Security Engineer to support the Department of State’s Application Design & Delivery (ADD) Program.

This hybrid role focuses on implementing security controls and best practices to improve the security posture of enterprise applications. Spanning a portfolio of custom applications, cloud platforms, and COTS tools, you will serve as a security resource embedded with development and engineering teams throughout modernization efforts and compliance assessments.

Key Responsibilities

Cyber Security Design and Implementation

• Collaborate with application development, platform engineering, and customer engagement teams to review security implications for change requests and proposed enhancements.
• Configure security controls and best practices in accordance with applicable federal standards (e.g., NIST SP 800-53 rev. 5) and system/application-specific best practices (e.g., ServiceNow platforms, .NET applications, GitLab deployments, etc.)
• Contribute proactively to a close-knit, mission-driven security team to identify and mitigate risks to the customer’s broader system portfolio and critical assets.
  
  

Security Operations and Automation

• Identify, design, and implement solutions to improve security across the application portfolio with DevSecOps best practices, including SAST/DAST/IAST, IaC, robust vulnerability scanning, near-real-time threat detection, etc.
• Automate repeated tasks and core security functions to strengthen baseline posture and improve operational efficiency, using available low-code/no-code and RPA toolsets.
• Improve data collection, threat analysis, and continuous monitoring mechanisms to provide standardized insights into critical security indicators to security peers and government leadership through dashboards, reports, alerts, etc.
  
  

Compliance and Risk Management

• Collaborate with compliance officers, government leadership, and development teams to ensure compliance with federal security standards such as NIST 800-53, FedRAMP, and FISMA.
• Support ongoing compliance activities to achieve and maintain ATOs for assigned systems, including implementation support to move systems to the Department’s Ongoing Authorizations (OA) program.
• Implement data-driven and automated mechanisms to identify security risks or compliance issues for proactive remediation.
  
  

Qualifications

Required

• Education: Bachelor’s degree in Computer Science, Cyber Security, Information Systems, or a related field.
• Experience: Minimum 5 years of experience in cyber security engineering in federal environments.
• Certifications: CompTIA Security+ and at least one additional security certification, such as CISSP, SSCP, GSEC, etc.
• Technical Skills:
• Hands-on security engineering experience with at least one of the following tools/systems/environments: ServiceNow, .NET applications, WordPress applications, Azure/GCP/AWS, UiPath, Unqork, GitLab, Atlassian suite, etc.
• Strong proficiency in providing security engineering support in the context of Agile practices and DevSecOps frameworks.
• Demonstrated expertise with at least some modern DevSecOps and security best practices, such as IaC, SAST/DAST/IAST, continuous monitoring, containerized applications, serverless architectures, etc.
  

Preferred

• Experience supporting multiple concurrent development teams as a security engineer, spanning multiple systems or applications.
• Familiarity with security configurations and implementation of CI/CD pipelines for secure software delivery with integrated, automated testing/scanning/analysis.
• Experience building security dashboards, reports, and alerts using data analytics tools, such as Databricks, Splunk, Azure Sentinel, etc.
• Experience supporting security engineering for low-code/no-code solutions and/or managed cloud platforms (IaaS/PaaS/SaaS) in a shared responsibility model.
• Clearance: Active Top Secret clearance is strongly preferred; candidates with an active Secret clearance will be considered.
  
  

Benefits

• Competitive salary and performance-based bonuses.
• Comprehensive health, dental, and vision insurance.
• 401(k) plan with company match.
• Paid time off and federal holidays.
• Professional development and certification reimbursement.
  
  

Equal Opportunity Employer

Improvix Technologies is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

• Seniority level
  Mid-Senior level

• Employment type
  Full-time

• Job function
  Information Technology
• Industries
  IT Services and IT Consulting

Referrals increase your chances of interviewing at Improvix Technologies by 2x

Get notified about new Cyber Security Engineer jobs in Washington, DC.

Arlington, VA $99,461.00-$128,329.00 1 week ago

District of Columbia, United States $90,000.00-$145,000.00 6 months ago

Silver Spring, MD $90.00-$105.00 4 days ago

Fairfax, VA $92,400.00-$115,000.00 1 month ago

Fort Meade, MD $175,000.00-$215,000.00 7 months ago

Washington DC-Baltimore Area $60.00-$65.00 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.