Senior Cybersecurity / IT Systems Engineer

Senior Cybersecurity / IT Systems Engineer RedBalloon LLC Brea, CA Job Details Full-time $130,000 - $150,000 a year 5 days ago Qualifications CMMC Accreditation standards (regulatory compliance area) DoD experience Information security compliance Nessus Incident response Vulnerability management IT RMF Identity & access management Full Job Description The Senior Cybersecurity / IT Systems Engineer is responsible for designing, implementing, and maintaining secure IT environments supporting both Classified and Controlled Unclassified Information (CUI) systems. This role ensures full compliance with DoD cybersecurity requirements, including

CMMC, NIST

standards, and RMF, across networked, standalone, and air-gapped environments. This position owns end-to-end security posture, including system hardening, identity management, network security, and audit readiness. Responsibilities CMMC & DoD Compliance Implement and maintain controls aligned with Cybersecurity Maturity Model Certification (Level 2/3) Ensure compliance with

NIST SP 800-171

(CUI) and

NIST SP 800-53

(Classified systems via RMF) Support Risk Management Framework processes including system categorization, control selection, implementation, assessment, and ATO lifecycle Develop and maintain SSPs, POA&Ms, and audit artifacts Prepare systems for C3PAO assessments and government accreditation Classified & CUI Environment Security Design, implement, and maintain environments handling: Controlled Unclassified Information (CUI) Classified data (Secret and above) Enforce strict separation between classified, CUI, and unclassified networks Implement cross-domain and data transfer controls per DoD policy Ensure compliance with data handling, marking, storage, and transmission requirements Support SCIF operations and accreditation requirements System Hardening & Secure Architecture Apply and enforce DISA STIGs across all systems Design and secure: Standalone and air-gapped systems Classified enclaves and secure processing environments Hybrid cloud (GovCloud / Azure Government where authorized) Implement Zero Trust architecture and least privilege principles Operating Systems (Windows & Linux) Administer and harden Microsoft Windows Server (2016/2019/2022)

Manage Active Directory:

Group Policy (GPO) enforcement Privileged access control and auditing Administer and secure Red Hat Enterprise Linux(RHEL 7/8/9)

Implement:

Patch management (WSUS, SCCM, yum/dnf) System auditing and logging (Event Logs, auditd) Secure authentication mechanisms Identity & Access Management Implement Multi-Factor Authentication (MFA) across enterprise systems Enforce identity governance, least privilege, and account lifecycle management Support CAC/PIV authentication and enterprise identity integration Network Security Architect secure network environments: VLAN segmentation and boundary protection Firewalls, VPNs, IDS/IPS Monitor network activity and respond to security events Enforce secure data flows across classification boundaries Endpoint & Server Security Deploy endpoint protection and EDR solutions Conduct vulnerability scanning (ACAS/Nessus) and remediate findings Implement file integrity monitoring and configuration control Maintain secure configurations across all systems Air-Gapped & High-Security Systems Design and operate air-gapped systems for classified and sensitive workloads Implement controlled data transfer solutions: Media scanning and sanitization Manual review processes One-way transfer mechanisms (data diodes where applicable) Maintain compliance without reliance on external connectivity Risk Management & Incident Response Conduct risk assessments and continuous monitoring Support incident detection, response, and forensic analysis Maintain system readiness for ATO and re-accreditation Documentation & Audit Support Maintain complete audit-ready documentation and evidence repositories Provide artifacts for CMMC and RMF audits Interface with auditors, security teams, and government stakeholders Requirements 7+ years of Cybersecurity, system administration, or IT engineering 1+ year of experience with CUI/classified DoD systems 1+ year of experience with CMMC processes 1+ year of experience with RMF processes Active Secret clearance or ability to obtain About Us We are a company dedicated to developing radar interferometers for the United States Department of Defense and Homeland Security. We welcome job seekers to join our team, where we prioritize innovation and technical excellence in our work.

Pay:

$130,000.00 - $150,000.00 per year Application Question(s): Are you a U.S. citizen? Would you be able to keep and maintain DoD security clearance?

Experience:

cybersecurity, systems, or

IT:

7 years (Preferred) CUI/classified DoD systems: 1 year (Preferred) CMMC processes: 1 year (Preferred) RMF processes: 1 year (Preferred)

Work Location:

In person