Job Description
Cybersecurity Engineer•Sr.
Job Description Position Title:
Cybersecurity Engineer Sr Program:
SBA Enterprise Cybersecurity Services (ECS) Position Summary The Cybersecurity Engineer•Sr. supports the Small Business Administration (SBA) Enterprise Cybersecurity Services (ECS) program by delivering advanced cybersecurity engineering, security operations, systems hardening, cloud security, zero trust architecture, and enterprise cyber defense support services. The Cybersecurity Engineer•Sr. serves as a senior technical leader responsible for designing, implementing, integrating, securing, and optimizing enterprise security architectures across on-premises, cloud, hybrid, and SaaS environments. The position supports 24x7x365 Security Operations Center (SOC) activities and works closely with federal stakeholders, engineers, SOC analysts, architects, incident responders, and program leadership to enhance the cybersecurity posture of SBA enterprise systems and critical assets. Essential Duties and Responsibilities Provide senior-level cybersecurity engineering support for SBA ECS enterprise cybersecurity operations. Support Task Areas 3.5.3 and 3.5.3.9 by designing, implementing, and maintaining secure enterprise security architectures and cybersecurity engineering solutions. Develop and maintain cybersecurity engineering standards, architecture diagrams, implementation strategies, and technical security documentation. Engineer and implement security controls aligned with NIST, FISMA, Zero Trust Architecture (ZTA), and federal cybersecurity requirements. Design, integrate, configure, and support security technologies including SIEM, SOAR, IDS/IPS, EDR, DLP, MFA, PKI, NAC, firewalls, secure web gateways, and cloud-native security solutions. Provide advanced engineering support for Microsoft Azure, Microsoft 365, AWS, hybrid cloud, and enterprise network environments. Support cybersecurity monitoring, detection, containment, remediation, and recovery activities within the SOC environment. Perform enterprise systems hardening, vulnerability remediation, security baseline implementation, and secure configuration management. Conduct cybersecurity architecture assessments, threat modeling, security engineering reviews, and technical risk analysis activities. Support implementation and optimization of Zero Trust security capabilities including identity security, micro-segmentation, continuous monitoring, and least privilege access models. Design and implement cybersecurity solutions supporting cloud migration, DevSecOps, container security, and automation initiatives. Support incident response investigations by providing engineering expertise, log analysis, root cause analysis, and remediation recommendations. Collaborate with cybersecurity operations teams to develop detection logic, security use cases, automated workflows, and threat response procedures. Perform system security engineering activities throughout the system development lifecycle (SDLC) and support Authority to Operate (ATO) initiatives. Develop and maintain security architecture roadmaps, engineering plans, and technology modernization strategies. Perform security engineering analysis of enterprise applications, APIs, databases, cloud services, and network infrastructures. Support cybersecurity compliance efforts related to NIST SP 800-53, NIST SP
800-171, FedRAMP, CISA
guidance, and federal cybersecurity mandates. Provide technical leadership and mentoring to junior cybersecurity engineers, SOC personnel, and technical staff. Prepare technical reports, engineering documentation, executive briefings, and operational recommendations. Research emerging cyber threats, adversary tactics, and evolving security technologies to improve enterprise defense capabilities. Minimum Qualifications Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Information Assurance, Systems Engineering, or related discipline. Relevant experience may substitute for degree requirements. Minimum of 10 years of experience supporting cybersecurity engineering, cybersecurity operations, enterprise security architecture, or SOC environments. Demonstrated experience designing and implementing enterprise cybersecurity architectures and engineering solutions. Hands-on experience with SIEM, SOAR, EDR, IDS/IPS, firewalls, vulnerability management, IAM, cloud security, and security automation technologies. Strong knowledge of NIST cybersecurity frameworks, federal security standards, and Zero Trust Architecture principles. Experience supporting Microsoft Azure, Microsoft 365, AWS, hybrid cloud, and enterprise network infrastructures. Experience performing system hardening, secure configuration management, and vulnerability remediation. Knowledge of incident response methodologies, MITRE ATT&CK framework, cyber kill chain concepts, and adversary TTP analysis. Experience supporting RMF, ATO, continuous monitoring, and federal cybersecurity compliance activities. Strong analytical, troubleshooting, technical writing, and communication skills. Ability to present technical findings and cybersecurity recommendations to executive leadership and technical stakeholders. Preferred Certifications Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP) GIAC Certified Enterprise Defender (GCED) GIAC Security Expert (GSE) Certified Ethical Hacker (CEH) CompTIA Security+ CompTIA CySA+ AWS Certified Security•Specialty Microsoft Certified:
Cybersecurity Architect Expert Cisco Certified CyberOps Professional
