5,825 Cybersecurity jobs in the United States

Overview

Are you passionate about protecting digital assets and ensuring robust cybersecurity? We are seeking a dedicated and motivated Cybersecurity Engineer to join our team. Collaborate with engineers to secure network, cloud, and system infrastructure through implementing controls and monitoring.

You Will:

• Work with engineering teams to define and fulfill operational requirements while upholding the highest standards of security protocols and compliance.
• Monitor and maintain security for network, cloud, PKI, and system environments, implementing controls to safeguard information systems, applications, and infrastructure.
• Ensure access control systems effectively prevent unauthorized modification, destruction, or disclosure of sensitive information.
• Monitor, assess, respond to security risks in systems, networks, and clouds; find causes, identify threats, suggest solutions according to policies.
• Conduct security risk and vulnerability assessments, as well as business impact analyses for threats of moderate complexity in both on-premises and cloud environments.
• Provide expert troubleshooting and support for complex security-related issues that have been advanced, including those beyond the Help Desk’s scope.
• Develop detailed reports to pinpoint security risks and propose suitable mitigation strategies.
• Oversee and resolve user access issues, enforce least-privilege principles, and develop solutions to prevent future access-related security concerns.
• Assist with internal and external audits, providing necessary evidence and contributing to change management reporting and security impact assessments.
• Manage cloud security services like cloud proxy/VPN and XDR platforms for secure access and threat detection.
• Support PKI infrastructure, including certificate lifecycle management and secure key handling.
• Operate and monitor cloud network components and integrations, applying Secure Access Service Edge (SASE) principles to protect distributed users and cloud access.
• Implement and maintain network security controls such as firewalls, IDS/IPS, segmentation strategies, and enforce access control policies (ACLs, NACLs, identity-based segmentation) across hybrid environments.
• Investigate, contain, and resolve network-based security incidents, and contribute to comprehensive post-incident reviews.
• Collaborate with network and cloud engineering teams to ensure the secure design and implementation of cloud-native and hybrid solutions.

You Have:

• Proven experience in information security, cybersecurity operations, or a related field.
• Hands-on experience with cloud-based security services, network security controls, and incident response.
• Familiarity with SASE, firewalls, IDS/IPS, PKI infrastructure, and certificate management.
• Strong analytical and problem-solving skills, with the ability to assess complex security risks and develop effective mitigation strategies.
• Excellent communication and collaboration abilities.
• Relevant certifications (e.g., CISSP, CISM, CEH, or similar) are a plus.

Location:

• Three days a week at a Guardian office on New York, NY, Holmdel, NJ, Bethlehem, PA or Stamford, CT.

Salary Range:

$93,080.00 - $152,915.00

The salary range reflected above is a good faith estimate of base pay for the primary location of the position. The salary for this position ultimately will be determined based on the education, experience, knowledge, and abilities of the successful candidate. In addition to salary, this role may also be eligible for annual, sales, or other incentive compensation.

Our Promise

At Guardian, you’ll have the support and flexibility to achieve your professional and personal goals. Through skill-building, leadership development and philanthropic opportunities, we provide opportunities to build communities and grow your career, surrounded by diverse colleagues with high ethical standards.

Inspire Well-Being

As part of Guardian’s Purpose – to inspire well-being – we are committed to offering contemporary, supportive, flexible, and inclusive benefits and resources to our colleagues. Explore our company benefits at . Benefits apply to full-time eligible employees. Interns are not eligible for most Company benefits.

Equal Employment Opportunity

Guardian is an equal opportunity employer. All qualified applicants will be considered for employment without regard to age, race, color, creed, religion, sex, affectional or sexual orientation, national origin, ancestry, marital status, disability, military or veteran status, or any other classification protected by applicable law.

Accommodations

Guardian is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities.Guardian also provides reasonable accommodations to qualified job applicants (and employees) to accommodate the individual's known limitations related to pregnancy, childbirth, or related medical conditions, unless doing so would create an undue hardship. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact .

Current Guardian Colleagues: Please apply through the internal Jobs Hub in Workday.

#J-18808-Ljbffr

Overview

Are you passionate about protecting digital assets and ensuring robust cybersecurity? We are seeking a dedicated and motivated Cybersecurity Engineer to join our team. Collaborate with engineers to secure network, cloud, and system infrastructure through implementing controls and monitoring.

You Will:

• Work with engineering teams to define and fulfill operational requirements while upholding the highest standards of security protocols and compliance.

• Monitor and maintain security for network, cloud, PKI, and system environments, implementing controls to safeguard information systems, applications, and infrastructure.

• Ensure access control systems effectively prevent unauthorized modification, destruction, or disclosure of sensitive information.

• Monitor, assess, respond to security risks in systems, networks, and clouds; find causes, identify threats, suggest solutions according to policies.

• Conduct security risk and vulnerability assessments, as well as business impact analyses for threats of moderate complexity in both on-premises and cloud environments.

• Provide expert troubleshooting and support for complex security-related issues that have been advanced, including those beyond the Help Desk’s scope.

• Develop detailed reports to pinpoint security risks and propose suitable mitigation strategies.

• Oversee and resolve user access issues, enforce least-privilege principles, and develop solutions to prevent future access-related security concerns.

• Assist with internal and external audits, providing necessary evidence and contributing to change management reporting and security impact assessments.

• Manage cloud security services like cloud proxy/VPN and XDR platforms for secure access and threat detection.

• Support PKI infrastructure, including certificate lifecycle management and secure key handling.

• Operate and monitor cloud network components and integrations, applying Secure Access Service Edge (SASE) principles to protect distributed users and cloud access.

• Implement and maintain network security controls such as firewalls, IDS/IPS, segmentation strategies, and enforce access control policies (ACLs, NACLs, identity-based segmentation) across hybrid environments.

• Investigate, contain, and resolve network-based security incidents, and contribute to comprehensive post-incident reviews.

• Collaborate with network and cloud engineering teams to ensure the secure design and implementation of cloud-native and hybrid solutions.

You Have:

• Proven experience in information security, cybersecurity operations, or a related field.

• Hands-on experience with cloud-based security services, network security controls, and incident response.

• Familiarity with SASE, firewalls, IDS/IPS, PKI infrastructure, and certificate management.

• Strong analytical and problem-solving skills, with the ability to assess complex security risks and develop effective mitigation strategies.

• Excellent communication and collaboration abilities.

• Relevant certifications (e.g., CISSP, CISM, CEH, or similar) are a plus.

Location:

• Three days a week at a Guardian office on New York, NY, Holmdel, NJ, Bethlehem, PA or Stamford, CT.

Salary Range:

$93,080.00 - $152,915.00

The salary range reflected above is a good faith estimate of base pay for the primary location of the position. The salary for this position ultimately will be determined based on the education, experience, knowledge, and abilities of the successful candidate. In addition to salary, this role may also be eligible for annual, sales, or other incentive compensation.

Our Promise

At Guardian, you’ll have the support and flexibility to achieve your professional and personal goals. Through skill-building, leadership development and philanthropic opportunities, we provide opportunities to build communities and grow your career, surrounded by diverse colleagues with high ethical standards.

Inspire Well-Being

As part of Guardian’s Purpose – to inspire well-being – we are committed to offering contemporary, supportive, flexible, and inclusive benefits and resources to our colleagues. Explore our company benefits at . Benefits apply to full-time eligible employees. Interns are not eligible for most Company benefits.

Equal Employment Opportunity

Guardian is an equal opportunity employer. All qualified applicants will be considered for employment without regard to age, race, color, creed, religion, sex, affectional or sexual orientation, national origin, ancestry, marital status, disability, military or veteran status, or any other classification protected by applicable law.

Accommodations

Guardian is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. Guardian also provides reasonable accommodations to qualified job applicants (and employees) to accommodate the individual's known limitations related to pregnancy, childbirth, or related medical conditions, unless doing so would create an undue hardship. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact .

Current Guardian Colleagues: Please apply through the internal Jobs Hub in Workday.

Every day, Guardian helps our 29 million customers realize their dreams through a range of insurance and financial products and services. Our Purpose, to inspire well-being, guides our dedication to the colleagues, consumers, and communities we serve. We know that people count, and we go above and beyond to prepare them for the life they want to live, focusing on their overall well-being — mind, body, and wallet. As one of the largest mutual insurance companies, we put our customers first. Behind every bright future is a GuardianTM. Learn more about Guardian at guardianlife.com .

#J-18808-Ljbffr

DMV (Washington DC, Maryland, and Virginia)

“Top secret” Department of Defense (DoD) cybersecurity roles demand highly specialized skills and qualifications tailored to the needs of specific positions. The exact requirements can vary significantly depending on the role and the agency involved. These positions often require a combination of technical expertise, advanced certifications, security clearances, and a deep understanding of cybersecurity protocols to address the unique challenges faced by the DoD.

• Active Top Secret Clearance: Often with Sensitive Compartmented Information (SCI) access or Special Access Program (SAP) eligibility.

• Polygraph Examination: Many roles require a Counterintelligence (CI) or Full-Scope polygraph.

2. Educational Background

• Degree in Cybersecurity or Related Field: Bachelor’s or master’s degree in computer science, information systems, cybersecurity, or a related field.

• Equivalent Experience: In some cases, extensive professional experience can substitute for formal education.

3. Certifications

• DoD 8570/8140 Compliance: Certifications are typically required under these frameworks:

• Entry-Level: CompTIA Security+, CEH (Certified Ethical Hacker)

• Intermediate: CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager)

• Advanced: GIAC certifications (e.g., GSEC, GPEN, GCIH), OSCP (Offensive Security Certified Professional)

4. Technical Skills

• Networking: Strong knowledge of network security, firewalls, VPNs, and intrusion detection systems.

• System Administration: Proficiency in Linux, Windows, or Unix environments.

• Programming: Familiarity with languages like Python, C, C++, Java, or assembly language.

• Penetration Testing and Vulnerability Assessment: Expertise in ethical hacking tools and methodologies.

• Threat Analysis: Knowledge of cyber threat intelligence, indicators of compromise (IOCs), and threat-hunting methodologies.

• Cloud Security: Experience securing cloud environments (AWS, Azure, or Google Cloud).

5. Knowledge of DoD and Federal Regulations

• Familiarity with frameworks like:

• NIST Cybersecurity Framework (CSF)

• FISMA (Federal Information Security Management Act)

6. Experience

• Incident Response: Handling cyber incidents and mitigating threats.

• Forensics: Digital forensics and malware analysis expertise.

• Secure Software Development: Knowledge of secure coding practices and vulnerability testing.

• Defense in Depth: Understanding of layered security strategies.

7. Personal Attributes

• Problem-Solving Skills: Ability to quickly identify and mitigate threats.

• Attention to Detail: Ensuring all potential risks are addressed.

• Communication Skills: Ability to translate technical details into actionable recommendations.

8. Additional Requirements

• On-Call Availability: May need to respond to incidents 24/7.

• Travel: Some roles require travel, potentially to remote or classified locations.

• U.S. Citizenship: Mandatory for security clearance eligibility.

#J-18808-Ljbffr

Job Title: Cybersecurity Technical Lead

Location: Houston, TX (Onsite)

Position: Contract

Job Description

• We are seeking a highly skilled Cybersecurity Technical Lead with strong hands-on experience in Operational Technology (OT) security and Industrial Control Systems (ICS). The ideal candidate will have a deep understanding of the Purdue model (levels 0-5), industrial protocols, and ICS technologies, combined with proven expertise in implementing cybersecurity frameworks and tools.
• Lead cybersecurity initiatives across OT and ICS environments.
• Apply the Purdue model to design and secure industrial systems (levels 0-5).
• Configure and secure SCADA, PLC, and DCS systems.
• Ensure compliance with cybersecurity frameworks and standards (e.g., ISA/IEC 62443).
• Implement and manage security tools, including SIEM, IDS/IPS, and firewalls .
• Provide technical leadership, risk assessments, and incident response guidance.
• Collaborate with cross-functional teams to ensure OT security integration.
• Be open and available for business travel to Panama City, Florida as required.

Required Skills & Experience

• Strong hands-on experience in OT security and ICS .
• Deep understanding of the Purdue model (0-5 levels) .
• Proficiency in industrial protocols: Modbus, OPC, PROFINET .
• Solid knowledge of ICS technologies (SCADA, PLC, DCS ).
• Expertise in cybersecurity tools and frameworks (SIEM, IDS/IPS, firewalls ).

Preferred Certifications

• GICSP, CISSP, ISA/IEC 62443, CCNP Security or equivalent.

#J-18808-Ljbffr

Job Description**The Opportunity*** Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare.* Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products.* Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats.Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy.A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers.**Role Overview**As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards.**What will you do in this role:*** Contribute to the development of enhanced cloud and application security control integrations and architectural best practices.* Contribute to the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements.* Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements.* Identify and prioritize adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function.* Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues.* Assist in implementing and maintaining specific security controls as required by organisational policy and local risk assessments and contribute to identifying risks that arise from potential technical solution architectures.* Monitor and log the actual service provided, compared to that required by service level agreements.* Undertake low-complexity routine vulnerability assessments using automated and semi-automated tools and contribute to evaluating and documenting the scope of results.* Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities.* Assist in maintaining security infrastructure and performing system updates.* Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues.* Work closely with cross-functional Infrastructure teams on Automation and Orchestration.* Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools.* **Work within a matrix organizational structure, reporting to both the functional manager and the project manager.***What should you have:*** Bachelor’s degree in information technology, Computer Science or any Technology stream.* Minimum of 3 years working as a network security engineer or information security engineer.* Intermediate understanding of the latest network security technologies, principles, and protocols.* Experience with support and architecture of a global LAN/WAN, data center and cloud.* Leadership & collaboration skills, able to collaborate with colleagues in both domestic and international locations.* Intermediate skillset with either Palo Alto or Fortinet firewalls.* Intermediate skillset with cloud security and cloud technologies.* Must be a team player capable of influencing others.* Must be capable of developing rapid and disciplined decision-making skillsets.* Must be capable of effective collaboration with stakeholders**Preferred Experience and Skills:*** CISSP/CISM Certification, or other networking security certifications* Knowledgeable of firewall hygiene and automation technologies* Experience with Zero Trust solutions and approaches* Familiarity with OT Security* Previous experience in pharmaceutical company or other highly regulated environment* Experience working in a multinational corporationOur technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation.**Who we are:**We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world.**What we look for:**Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today.**#HYDIT2025***Required Skills:**Application Security, Certificate Services, Cloud Security, Cybersecurity Analytics, Cybersecurity Operations, Delivery of Security Applications, Design Applications, Information Security, Network Segmentation, Operational Technology (OT) Security, SLA Management, System Designs, Teamwork, Technical Advice, Web Hosting Management, Zero Trust Architecture, Zero Trust Identity**Preferred Skills:**Current Employees applyCurrent Contingent Workers apply**Search Firm Representatives Please Read Carefully** Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be
#J-18808-Ljbffr

Cybersecurity and Network Security Engineer

Cybersecurity and Network Security Engineer

Astor & Sanders Corporation (Astor) is a prestigious IT solutions provider headquartered in McLean, VA, currently seeking a talented Cybersecurity and Network Security Engineer . This position is full-time and based in Bethesda, MD.

Key Responsibilities

• Support in assessing, improving, and maintaining the cybersecurity posture of NIH ICS/OT/IoT environments to mitigate cyber security risks (e.g., insider and external threats, intentional and accidental).
• Audit of ICS/OT environments and perform risk/vulnerability assessments.
• Develop NIH-specific cybersecurity roadmaps prioritizing the remediation of cyber threats based on likelihood and impact.
• Create mitigation plans for vulnerabilities and support remediation efforts.
• Assist in reviewing and developing Industrial Cybersecurity programs, security policies, and industry best practices to enhance NIH's OT cybersecurity program.
• Inventory client's hardware & software assets, assess for vulnerabilities, obsolescence, and risks.
• Review network architectures for best practices (e.g., network segmentation, use of Industrial DMZ) and provide compliance recommendations.
• Review security products (firewalls, IDS, IPS) for proper configuration.
• Deploy network infrastructure devices, security appliances, and virtualization solutions.
• Review US government cybersecurity policies, analyze logs and security events, and recommend improvements.
• Review controls and provide recommendations to mitigate cybersecurity risks.
• Perform vulnerability and risk assessments in manufacturing and critical infrastructure environments, providing remediation recommendations.
• Create detailed diagrams, procedures, and plans to support projects.
• Additional duties as assigned.

Requirements

• Certified Information Systems Security Professional (CISSP).
• Degree in Engineering (Electrical, Mechanical, Chemical, or similar), Computer Science, or related field.
• Strong understanding of cybersecurity frameworks for ICS/OT environments (e.g., ISA-99/IEC 62443, NIST SP 800-82, CIS).
• Knowledge of OT network communication protocols (Ethernet/IP, CIP, Modbus, OPC) and industrial networking topologies.
• Minimum of five (5) years of hands-on experience in ICS/OT network architecture assessment, design, and implementation.
• Experience with Cyber-Physical Systems (CPS).

Benefits

Astor & Sanders Corporation offers a stimulating environment that fosters growth and rewards performance. We are an Equal Opportunity Employer.

Our benefits include:

• Generous Paid Time Off (PTO) and all Federal Holidays.
• Comprehensive Health and Dental Insurance Coverage.
• Retirement Savings Plan.
• Pre-Tax Benefit Program.
• Wellness and Work-Life Support.
• Professional Development Opportunities.
• Performance and Referral Bonuses.
• Life and Disability Insurance.

Additional Information

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industries: Technology, Information, and Internet

#J-18808-Ljbffr

Overview

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

At the heart of Defining Possible is our commitment to missions. In rapidly changing global security environments, Northrop Grumman brings informed insights and secure technological solutions to enable strategic objectives. We’re looking for innovators who can help us keep building on our wide portfolio of secure, affordable, integrated, and multi-domain systems and technologies that fuel those missions. By joining in our shared mission, we will support yours of expanding your personal network and developing skills, whether you are new to the field or an industry thought leader. At Northrop Grumman, you will have the resources, support, and team to do some of the best work of your career.

Responsibilities

• Perform manual and automated security assessments, with a focus on vulnerability remediating and system hardening, using tools such as Tenable Security Center.
• Maintain accurate records of open and resolved security vulnerabilities and findings using dashboards and analytic tools.
• Coordinate vulnerability remediation activity through System Administrators using ticketing tools such as Jira to track findings until they are resolved.
• Verify System Administrators have successfully remediated security findings.
• Recommend and implement solutions to streamline the vulnerability management process.
• Produce and maintain documentation for required configurations which do not fully comply with all security requirements, obtaining approval from accrediting authorities when needed.
• Monitor previously mitigated issues to ensure they are not reintroduced by future activities.
• Review output from security tools, identifying systems that do not comply with accepted configurations and working with IT to have those issues addressed.
• Supply feedback on Cybersecurity questions or problems from stakeholders outside of the Cybersecurity team, including end users, IT team members, software developers, and lab engineers.

Basic Qualifications for Level 2

• Master’s degree with 0 years of relevant experience, or a Bachelor's degree with 2 years of relevant experience, or an Associates degree with 4 years of relevant experience; a High School Diploma or equivalent with 6 years of relevant experience may be considered in lieu of a completed degree.

Basic Qualifications for Level 3

• Master’s degree with 3 years of relevant experience, or a Bachelor's degree with 5 years of relevant experience, or an Associates degree with 7 years of relevant experience; a High School Diploma or equivalent with 9 years of relevant experience may be considered in lieu of a completed degree.

Basic Qualifications for Levels 2 And 3

• Candidates must have a current DoD Top Secret security clearance (adjudicated within the last 5 years) or must be enrolled in the Continuous Evaluation (CE) Program, to be considered; additionally, the selected candidate must be SCI eligible, and the required security clearance must be maintained as a condition of continued employment.
• The selected candidate must agree to submit and successfully complete a polygraph examination as a condition to retain access to special program(s), and as a condition of continued employment.
• The selected candidate must have the ability to obtain and maintain access to Special Programs as a condition of continued employment.
• 1 year of experience using Tenable Security Center, ACAS, or a similar security scanning tool for vulnerability scanning.
• 1 year of experience supporting operating system and application hardening using STIGs, CIS Benchmarks, or similar security configuration requirements.
• Ability to describe vulnerability and system hardening concepts to stakeholders outside of the Cybersecurity team, including IT implementers.

Preferred Qualifications

• Active DoD polygraph.
• Bachelor’s degree in Cybersecurity.
• Experience planning and implementing system security.
• Knowledge of SPLUNK, SCAP, POA&Ms, NIST, DIACAP, NISPOM, system audits, and RMF package development.

Benefits

We offer flexible work arrangements, phenomenal learning opportunities, exposure to a wide variety of projects and customers, and a very friendly team environment. Our Employee Resource Groups (ERGs) offer opportunities to be a friend, be active, be a volunteer, be a leader, be recognized, and to be yourself. At Northrop Grumman, we are on the cutting edge of innovation. Our diverse portfolio of programs means there are endless paths to cultivate your career. We also offer exceptional benefits/healthcare, a 9/80 work schedule, and a great 401k matching program.

Primary Level Salary Range: $89,400.00 - $79,270.00

Secondary Level Salary Range: 0.00 - 0.00

Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.

#J-18808-Ljbffr

Cyber Security Engineer, Senior page is loaded# Cyber Security Engineer, Seniorlocations: Wright Patterson AFB, OHtime type: Full timeposted on: Posted Todaytime left to apply: End Date: January 5, 2026 (30+ days left to apply)job requisition id: R Cyber Security Engineer, Senior**The Opportunity:**As a cyber mission specialist, you understand the value of hunt-forward operations, and you know that battles are won in the grey. At Booz Allen, you can use your cyberspace operations experience to create solutions that will be executed on a worldwide stage. We’re looking for an experienced cyber mission specialist like you to apply your Risk Management Framework (RMF) knowledge for the Air Force and Space Force.In this role, you’ll be counted on to understand cyberspace capabilities to evaluate potential weaknesses as well as the effectiveness of mitigations for cybersecurity solutions. You will leverage your cybersecurity expertise to harden systems, conduct vulnerability assessments, and bolster the organization's security posture.This is an opportunity to use your experience to assess the entire threat landscape. Then you’ll guide your client through a plan of action with presentations, whitepapers, and milestones. You’ll work with your client to translate security concepts, so they can make the best decisions to secure their mission-critical systems and critical infrastructure. This is your opportunity to act as an information security subject matter expert while broadening your skills in cybersecurity and RMF.If you want to be in the fight, working shoulder to shoulder with our mission partner, securing the most critical global cyber missions, this is the opportunity for you.Join us. The world can’t wait.**You Have:*** 5+ years of experience in system security engineering, including applying STIGs* 3+ years of experience developing and implementing material and non-material system security solutions* Experience conducting security assessments, documenting actions, and validating accreditation under RMF* Experience developing System Security Plans (SSPs), Plans of Action and Milestones (POAMs), and accreditation artifacts* Experience with cybersecurity tools, including ACAS, HBSSS, or Splunk* Knowledge of RMF, NISTR 800-53 controls, and DoD cybersecurity policies* Ability to design and implement secure architectures for SCI environments* Secret clearance* Bachelor's degree**Nice If You Have:*** Experience with cyber range design, implementation, and operations, including realistic threat simulations* Experience preparing Authorization to Operate (ATO) packages* Experience with scripting and automation tools for security tasks, including PowerShell, Python, or Ansible* Knowledge of SATCOM or tactical network security* Possession of excellent technical writing skills* DoD 8140 IAM Level III Certification, including CISSP, CISM, CAP, CEH, GSEC, or related Certification**Clearance:**Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.**Compensation**At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $86,800.00 to $198,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.**Identity Statement**As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.**Work Model** Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.* If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.* If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.**Commitment to Non-Discrimination**All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.**About Booz Allen Hamilton**Booz Allen is an advanced technology company delivering outcomes with speed for America’s most critical defense, civil, and national security priorities. We build technology solutions using AI, cyber, and other cutting-edge technologies to advance and protect the nation and its citizens. By focusing on outcomes, we enable our people, clients, and their missions to succeed—accelerating the nation to realize our purpose: Empower People to Change the World. **Commitment to Non-Discrimination**All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.**Accommodations**If you are an individual with a disability and would like to request a reasonable workplace accommodation for any part of our employment process, please contact the Booz Allen Help Desk by calling or sending an email to **This option is reserved only for individuals who are requesting a reasonable workplace accommodation.** It is not intended for other purposes or inquiries. **Data Privacy** For more information on how Booz Allen uses your information, please see our .
#J-18808-Ljbffr

We are seeking a proactive and detail-oriented Cybersecurity Engineer to join our growing security team. In this role, you will be responsible for designing, implementing, and maintaining technical security controls across our cloud infrastructure. You will play a critical role in helping the organization meet and maintain compliance with SOC 2 , HIPAA , and PCI DSS , while building scalable defenses that support our DevOps and engineering workflows.

Responsibilities

• Cloud Security Engineering - Architect and enforce security best practices for AWS infrastructure , including IAM hardening, network segmentation, encryption, monitoring, and access control.
• Infrastructure as Code Security - Use Terraform to define and enforce compliant infrastructure. Maintain guardrails and reusable secure modules to support a security-by-default approach.
• Threat Detection & Monitoring - Build and tune log pipelines and alerts in Sumo Logic to identify misconfigurations, anomalous behavior, and potential threats.
• CI/CD and Code Security - Collaborate with engineering to embed security into GitHub workflows and CI/CD pipelines. Implement controls for code scanning, secrets management, and artifact integrity.
• Vulnerability Management - Manage and respond to vulnerability findings across cloud, container, and application layers. Prioritize remediation based on risk and regulatory requirements.
• Audit & Compliance Engineering - Implement and maintain technical controls to meet SOC 2 , HIPAA , and PCI DSS requirements. Partner with Compliance and GRC teams during audits and readiness assessments.
• Incident Readiness - Assist in the development and testing of the incident response plan. Participate in threat simulations and security incident handling.
• Security Enablement - Support security education, documentation, and enablement efforts across engineering and operations teams.

Required

• 5+ years in cybersecurity engineering, cloud security, or DevSecOps.
• Deep experience with AWS security services (IAM, KMS, VPC, Config, GuardDuty, etc.).
• Strong proficiency with Terraform and Infrastructure as Code best practices.
• Experience with Sumo Logic or equivalent log management tools.
• Familiarity with securing CI/CD and development workflows in GitHub .
• Demonstrated knowledge and practical experience implementing and maintaining compliance for SOC 2 , HIPAA , and PCI DSS .
• Strong understanding of vulnerability management, threat detection, and response.

Nice to Have

• Experience with Kubernetes security (EKS, container scanning).
• Experience writing security policies or helping with control mapping.
• Certifications such as AWS Security Specialty, CISM, CISSP, or GCPN.

Benefits

• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Life Insurance (Basic, Voluntary & AD&D)
• Paid Time Off (Vacation, Sick & Public Holidays)
• Family Leave (Maternity, Paternity)
• Short Term & Long Term Disability
• Work From Home
• Stock Option Plan

#J-18808-Ljbffr