Lead impactful cybersecurity initiatives across compliance frameworks and risk management programs. Collaborate with experts to develop innovative security solutions. Advance your career in a dynamic, hybrid work environment.
Senior Cybersecurity Engineer – Compliance & Risk Management
in Information Technology PermanentJob Detail
Job Description
Overview
- Lead enterprise cybersecurity compliance programs across federal, state, and private sector engagements.
- Manage multiple compliance frameworks including CMMC, FedRAMP, NIST 800-171/53, and ISO 27001:2022.
- Oversee risk management processes for government contract organizations and applications in the DoD space.
- Develop and maintain security documentation, policies, and procedures.
- Coordinate third-party compliance audits and remediation activities.
- Lead vulnerability management programs and conduct security assessments.
- Mentor and manage junior cybersecurity engineers and analysts.
- Collaborate with system architects for security requirements on cloud workloads and migrations.
- Support business development with technical security expertise and compliance documentation.
Key Responsibilities & Duties
- Manage monthly compliance reporting and KPI dashboards for executive leadership.
- Coordinate with contracts division on IT security responses for RFPs.
- Evaluate and implement security controls across hybrid cloud environments.
- Conduct weekly POA&M reviews and monthly security assessments.
- Lead incident response and security event investigations.
- Facilitate cybersecurity supply chain risk management program implementation.
- Develop compliance documentation and security narratives for proposals.
- Interface with federal agencies, auditors, and compliance assessors.
- Support business continuity and disaster recovery planning.
Job Requirements
- Bachelor's degree in Cybersecurity, Computer Science, or equivalent field.
- 7+ years of cybersecurity engineering and compliance experience.
- Expertise in NIST 800-171, RMF, and DoD compliance frameworks.
- Hands-on experience with CMMC and FedRAMP authorization processes.
- Proficiency in Office 365 security configuration and management.
- Experience with vulnerability scanning tools like Nessus or Qualys.
- Security+ certification or ability to obtain within 6 months (CISSP preferred).
- Strong analytical skills with ability to manage multiple tasks under deadlines.
- Excellent communication skills for stakeholder engagement and team collaboration.
- ShareAustin:
Related Jobs
- Lead impactful automation projects in a hybrid work environment. Collaborate with experts on innovative testing frameworks and methodologies. Gain exposure to cutting-edge technologies and federal compliance standards.