Cybersecurity Engineer

Sigma Defense Systems is a leading technology company serving the Department of Defense (DoD), providing tactical communications systems and services for digital modernization since 2006. Through our acquisitions of SOLUTE in January 2022 and Sub U Systems in May 2022, we have expanded our software and communications hardware solutions to better support JADC2, C5ISR, SATCOM, and DEVSECOPS for customers in the Army, Navy, Air Force, Marine Corps, and Space Force. Through a combination of hardware, software, and industry expertise, we provide a complete portfolio of solutions and services that accelerates information collection and sharing for faster decision making and better mission outcomes.

We are a company of innovative professionals thriving in a highly motivating work environment that fosters creativity and independent thinking. If you are a motivated individual with a desire to support our service men and women, now is a great time to join Sigma Defense!

The Cybersecurity Engineer will:

• Support achieving Continuous Authority to Operate (cATO) at the customer on-site and remote development environments.
• Support obtaining Authority to Operate (ATO) for IL 6 (IL6/SECRET CLASSIFIED) physical development spaces.
• Analyze the security of pipelines: applications, services release, and deployment.
• Discover and address security issues, build security automation, and quickly react to new threats.
• Support the development of a robust security strategy that emphasizes the ability to perform design reviews, code reviews, and security-related tasks that mitigate risks.
• Research and keep ahead of Kubernetes cybersecurity threats and best practices to harden and secure Kubernetes clusters at scale.
• Utilize new and continuously hardened containers from the DoD Iron Bank.
• Support the development of various backend/automated processes for the automation of the container accreditation process.
• Coordinate with application developers to enable speed and flexibility while maintaining compliance with the program cATO.
• Perform cyber penetration analysis (pen-testing and red/blue teaming).
• Maintain and support the program DevSecOps stack across multiple security classifications.
• Enhance the cybersecurity and the code security process of the program PaaS across all classified and unclassified environments.
• Create accreditation documentation following DoD requirements such as the Risk Management Framework (RMF) process.
• Preform other duties as assigned

Requirements

• Active DoD Secret Security Clearance
• Bachelor’s degree cybersecurity, engineering, computer science, mathematics, or physics
• Work on site customer site greater Washington D.C. metro area

Demonstrated mastery in the following:

• Zero trust architectures (Beyond Corp/Software Defined Perimeter)
• NIST SP 800-53
• NIST SP 800-190
• Kubernetes Environments
• Istio
• Demonstrated knowledge preparing guidance related to Cybersecurity best practices within the framework of NIST publications

Benefits

Benefits include:

• Medical, Dental and Vision
• Life and A&D coverage
• 401(k) Plan with company matching contributions
• Paid Time Off (PTO) and 10 paid Holidays
• Educational Assistance
• Highly Competitive Salary

We are an equal opportunity employer. All applicants will be considered for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, marital status, veteran status or any other applicable legally protected status or characteristic.