Senior Cyber Security Engineer

💲 Up to $155,000
📍 Partially Remote
🏢 Bethesda, MD

cyDaptiv Solutions

💼 | 🗓️ Founded in 2014
👥 11-50 Employees

Job Description

hatch I.T. is partnering with cyDaptiv to find a Senior Cyber Security Engineer. See details below:

About The Role:
cyDaptiv Solutions is seeking a Senior Cyber Security Engineer (CSE) with experience supporting Federal and DoD cyber security and information assurance projects. The CSE must have knowledge of the Risk Management Framework (RMF), security principles, concepts, policies and regulations and be able to identify risks in information systems and work with system administrators and engineers to resolve security weaknesses.

The successful candidate will have experience assessing security control implementation and system configurations using automated tools and manual check lists; determining compliance/risk severity; recommending remediations; and have ability / skillset to implement fixes. The candidate must also have experience working with stakeholders at various organizational levels and be able to manage and coordinate assessment activities in a collaborative manner.


  • Implementing the DoD Assess and Authorize (A&A) process IAW DoDI 8510.01 Risk Management Framework (RMF) for DoD Information Technology (IT)
  • Assess systems using automated tools such as ACAS / Nessus, and Security Content Automation Protocol (SCAP), and Manual STIGs.
  • Experience testing and implementing DoD STIGs and devising mitigation strategies, applying Information Assurance Vulnerability Management (IAVM) patches to systems and complete security compliance scans upon applying patches or updates to the system.
  • Perform as on-site Team Lead and assist Project Manager in management of team progress.
  • Introduce new team members to project tasks and expectations.
  • Additional details of the position will be provided to qualified applicants.


  • 7 years of relevant experience in Federal and DoD network and computing environments.
  • 4 years of experience supporting DoD Risk Management Framework (RMF) and implementation of technical controls.
  • Meet DOD 8570/8140 certification requirements for IAT Level II. Includes: CCNA Sec, GISCP, GSEC, Security+ CE, CND, or SSCP.
  • Bachelor’s degree or higher in Computer Science, Information Systems/Technology or engineering discipline preferred.
  • Strong technical understanding of the network and systems operations in secured DoD environments.
  • Strong understanding of SDLC process in a DoD environment
  • Hands on experience with tools such as NMAP, ACAS/Nessus, and Security Content Automation Protocol (SCAP).
  • Experience using DoD SRGs/STIGs and other manual system configuration review methods, developing mitigation strategies, applying systems and vulnerability patches.
  • Strong written and verbal communications skills to provide IA / cybersecurity guidance to relevant project stakeholders.
  • Ability to work independently with minimal supervision

About cyDaptiv Solutions

cyDaptiv Solutions, Inc. is a firm specializing in Cybersecurity Solutions Integration, Risk Management & Compliance, IT Services, and DevOps Solutions. Our Information Technology professionals have significant experience developing, securing, and supporting complex IT systems in government environments. Led by PMP-certified Project Managers, cyDaptiv’s skilled and experienced technology professionals deliver high-impact results in short-term focused engagements and long-term IT service and support delivery in both CONUS and OCONUS locations.

What they are building

Risk Management and Compliance

  • Full Scope Risk Management Framework (RMF) Support
  • Full Scope Command Cyber Readiness Inspection (CCRI) Support.
  • ­IT Systems, OT Systems, Networks, and Medical Devices Expertise.
  • Documentation, Scans and Checklists, Security Control Implementation, and POA&M Management.
  • Continuous Monitoring Solutions and Operations.


  • Cybersecurity Solutions Design and Implementation.
  • Network Infrastructure and System Architecture Review and Analysis.
  • Risk and Vulnerability Assessments.
  • Penetration Testing. OSCP and GXPN Certified Team.
  • Actionable reporting and vulnerability remediation support.
  • Proactive Threat Detection and Continuous Monitoring.

DevOps, DevSecOps, and CI/CD

  • Supporting the digital transformation and modernization journey.
  • Customized Secure DevOps / DevSecOps Pipeline Solutions.
  • Robust Continuous Integration/Continuous Deployment (CI/CD) solutions.
  • Automated Security Compliance and Monitoring.
  • Configuration Management and Infrastructure as Code.

Information Technology Services

  • Systems Engineering and Administration.
  • Network Engineering and Administration.
  • Database Design, Implementation, and Administration.
  • IT and Desktop Support
  • Staff Augmentation.

Project Management

  • Agile Project Management Methodologies.
  • Customized and Tailored Reporting and Visualization.