Key skills
PythonGoTerraformAnsibleSASTDASTSCAAzureAWSGCPKubernetesAzure Security Associate (AZ-500)Certified Kubernetes Security Specialist (CKS)CISSPRustAIGenerative AIAgenticPineconeMilvusServerlessSaaSCI/CDOWASP
About this role
MANTECH is seeking a visionary Senior Principal Cyber Security Engineer to serve as a technical expert within their Enterprise Cyber Security Team. The role involves engineering resilient and automated security frameworks, as well as administering systems to protect critical corporate assets.
Responsibilities:
- Infrastructure as Code (IaC): Design and maintain immutable security environments using tools like Terraform and Ansible to ensure consistent, reproducible infrastructure
- Automation & Tooling: Develop custom middleware and security tools in Python, Go, or Rust to automate incident response and bridge platform gaps
- CI/CD & Pipeline Security: Embed automated security gates (SAST/DAST/SCA) directly into internal development pipelines to ensure secure software delivery
- Cloud & Container Governance: Secure and monitor Azure/AWS/GCP, Kubernetes, and SaaS platforms through configuration auditing and continuous monitoring. API & Secret Management: Oversee the security lifecycle of internal APIs, focusing on secure connectivity and robust credential/secrets management
- AI & Agentic Strategy: Govern Generative AI deployments and autonomous agents, focusing on prompt injection mitigation and preventing "non-human" privilege escalation
- Offensive Engineering & Threat Modeling: Conduct continuous "Purple Team" exercises and deep-dive threat modeling to proactive discover and mitigate architectural vulnerabilities
Requirements:
- Bachelor's or Master's degree in Computer Science, Cyber Security, or a related STEM field
- 10+ years of progressive experience in Cyber Security Engineering, with at least 3 years in a Principal or Lead capacity
- Advanced capability in Python or Go for security automation and API integration
- Expert-level experience securing Azure, AWS, or GCP environments, including serverless functions and container orchestration (Kubernetes)
- Azure Security Associate (AZ-500), Certified Kubernetes Security Specialist (CKS), or CISSP
- U.S. Citizen with the ability to obtain/maintain a Top Secret security clearance
- Must be able to remain in a stationary position 50% of the time
- Constantly operates a computer and other office productivity machinery
- Experience with the OWASP Top 10 for LLMs and securing vector databases (e.g., Pinecone, Milvus)
- OSCP/OSWE (Offensive Security), CASE (Certified AI Security Expert), or CISSP-ISSAP
- Contributions to open-source security projects, published research, or speaking engagements at conferences like DEF CON, Black Hat, or RSAC