Key skills
PythonBashPowerShellAWSAzureTerraformKubernetesGitLabAgileCI/CDRisk ManagementCommunicationZero Trust
About this role
Rise8 builds custom, secure software for government organizations and is seeking a Senior Cybersecurity Engineer to lead efforts in securing complex systems. This role involves designing and implementing security solutions for cloud environments, driving continuous risk management practices, and collaborating with cross-functional teams to enhance security measures.
Responsibilities:
- Secure cloud-based environments by designing and implementing native security solutions using services
- Drive Continuous RMF practices, automating control implementation and reporting through modern methodologies like Continuous Authorization to Operate
- Automate provisioning and configuration of IT environments
- Implement and manage security measures like firewalls, IDS/IPS, vulnerability scanning, encryption, and ICAM solutions
- Secure containerized and large-scale cloud production systems while responding effectively to security incidents
- Apply advanced security concepts to protect systems, including threats, vulnerabilities, encryption, boundary defense, and risk management
- Establish and manage identity and access management policies, ensuring least-privilege access and cross-account role adherence
- Create and maintain engineering artifacts, such as network diagrams, data flow diagrams, installation procedures, and operational manuals
- Enforce cloud-native security best practices, leveraging frameworks like AWS’s Well-Architected Security Pillar
- Collaborate with cross-functional teams to integrate Zero Trust principles into the broader security posture, aligning with DoD policies such as the Risk Management Framework (RMF)
- Apply and operationalize RMF, FedRAMP, and DISA CC SRG controls, ensuring compliance with DoD Impact Levels
- Collaborate with cross-functional teams to integrate lean and agile practices into secure development lifecycles
- Contribute to the continuous improvement of DevSecOps practices, ensuring systems are secure, scalable, and compliant
- Work in a dynamic, collaborative environment that supports your professional development
Requirements:
- A background of 6-10 years of experience in cloud/platform operations or related roles, with a focus on implementing and maintaining secure and compliant systems in diverse environments
- Must have experience securing CI/CD pipelines using various commercially available tools (i.e. Gitlab)
- Experience with dependency analysis across various software components
- Familiar with SLSA (Supply-chain Levels for Software Artifacts)
- Strong proficiency in securing AWS GovCloud and Azure GCC High environments, including applying security controls, conducting vulnerability scans, and ensuring compliance with DoD standards
- Expertise in container orchestration, specifically Kubernetes, with a focus on implementing security best practices, ensuring container runtime protection, and automating vulnerability scanning
- Expertise with monitoring and observability platforms, including integrating security monitoring tools and automating anomaly detection workflows
- Proven experience in incident management and troubleshooting large-scale distributed systems, with a focus on mitigating security incidents and performing root cause analysis for vulnerabilities
- Strong proficiency in Infrastructure as Code (IaC) tools, such as Terraform, including automating the implementation of security policies and controls within IaC pipelines
- Subject Matter Expertise in Linux Operating Systems administration, with a focus on hardening techniques, patch automation, compliance enforcement and bash scripting languages (Python, Bash, PowerShell)
- Strong understanding of networking concepts and practical experience with securing technologies like Load Balancers, DNS, SSL, Firewalls, NAT, and NTP, including applying network-level security policies
- Excellent communication skills to articulate security risks, advocate for secure practices, and collaborate in team environments to address challenges effectively
- A proactive mindset for skill growth, tackling complex security tasks, and driving the implementation of cutting-edge cybersecurity practices
- A degree (BA/BS) in Computer Science, Cybersecurity, or a related field, or equivalent practical experience, with a focus on secure systems and automation
- Must have an active DoD Secret clearance
- Possession of recognized Professional Certifications such as CKS, RHCE, Linux+, MCSA, AWS Solutions Architect, AWS Developer, Security+, CISSP, and CCNA
- Proven experience engaging directly with clients to understand their needs, provide solutions, and ensure satisfaction
- Familiarity with Department of Defense (DoD) operations, particularly within a DoD 'Software Factory' context, as well as navigating Impact Level (IL) security requirements