Jobs
Sigma Defense logoSigma Defense

Mid-Level Cybersecurity Engineer

Sigma Defense is a leading technology company serving the Department of Defense (DoD), providing tactical communications systems and services for digital modernization since 2006. Through our acquisitions of SOLUTE in January 2022 and Sub U Systems in May 2022, we have expanded our software and communications hardware solutions to better support JADC2, C5ISR, SATCOM, and DEVSECOPS for customers in the Army, Navy, Air Force, Marine Corps, and Space Force. Through a combination of hardware, software, and industry expertise, we provide a complete portfolio of solutions and services that accelerates information collection and sharing for faster decision making and better mission outcomes.

Why would you work for us? Quite simply, the work we do is meaningful and stimulating. We promote initiative and independent thought; we encourage direct client engagement to ensure we are delivering what the customer wants; and our engineers and scientists are working on cutting-edge projects that move the state-of-the-art closer to the people who need them. If you're looking for technical challenges and an opportunity to take a leadership role in an environment that encourages you to excel, then WE are your destination.

We are a company of innovative professionals thriving in a highly motivating work environment that fosters creativity and independent thinking. If you are a motivated individual with a desire to support our service men and women, now is a great time to join Sigma Defense!

To learn more about our company, find and follow us at Sigma Defense Systems LLC: Overview | LinkedIn.

Requirements

  • Comprehensive knowledge of DoD cybersecurity requirements and the Risk Management Framework.
  • Experience in developing and implementing security into infrastructure, platforms, and software across key tasks and high impact assignments.
  • Experience applying CNSSI 1253 and NIST SP 800 series standards.
  • Experience applying DISA Security Technical Implementation Guides (STIG) and Security Requirement Guides (SRG) standards.
  • Understanding of cybersecurity threats and countermeasures.
  • Experience with web-based Assessment and Authorization platforms. (eMASS, Xacta, Archer)
  • Familiarity with source code scanning tools.
  • Ability to demonstrate an advanced understanding in agile and DevSecOps methodologies.
  • Experience in software security testing, especially with containerized applications.
  • Experience hardening Kubernetes and containers a plus.
  • Ability to assist with the development of cybersecurity-relevant guidance.
  • Ability to stay up to date on emerging security threats.
  • Ability to work independently and with a cross-functional team.
  • Ability to function as a technical expert across the team and tasks.
  • Ability to lead others.
  • Establish communication mechanisms working with the customer.
  • Communicate regularly and meet virtually with customer POCs:
    • Weekly discussions with technical lead collaborator.
    • Monthly briefs with teams.
  • Submit cybersecurity Change Requests using the customer's procedures and templates.
  • Evaluate risk for applications based on the customer's network security plan.
  • Evaluate compliance with the Application Security and Development STIG for software assets and environments such as:
    • Classified/Unclassified Applications
    • Container Orchestration Platform
    • Gitlab
    • Jira
    • Confluence
    • SonarQube
    • Artifactory
  • Work with the customer's cybersecurity team to resolve comments.
  • Provide evidentiary artifacts of scanning/reporting/remediation for container images.
  • Contribute to container governance policy development, particularly in the areas of configuration management and vulnerability management.
  • Education: Bachelor's Degree or higher in Computer Science/Cybersecurity/Information Management from an accredited college or university.
  • Credentials: PMP Certification a plus.
  • Certifications: DoDM 8140.03 for Systems Security Analyst - Advanced (CCSP or Cloud+ or CySA+ or GICSP or higher)
  • Experience with Visio or equivalent a plus.
  • Candidate must possess existing DoD Top Secret security clearance. A clearance will not be sponsored.
  • Candidate Differentiators: Knowledge of the DevSecOps paradigm, and experience working with Software Engineers to apply RMF standards at the application level.

Salary Range: $115,000 - $125,000 annually.

Benefits

  • Dental and Vision Insurance
  • Medical Insurance to Include an HSA Plan and HRA Plan Which Features a $6,000 Health Reimbursement
  • Life and A&D coverage
  • Employee Assistance Program (EAP)
  • 401(k) Plan with Company Matching Contributions
  • 160 Hours of Paid Time Off (PTO) with Carry-Over up to 240 hours
  • 12 (Floating) Holidays
  • Educational Assistance
  • Highly Competitive Salary

We are an equal opportunity employer. All applicants will be considered for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, marital status, veteran status or any other applicable legally protected status or characteristic.

Cyber Security Jobs by Category

Remote jobsFull Time jobsAnalyst jobsDOD jobsApplication Security jobsDevsecops jobsCCSP jobs

Cyber Security Salaries

Remote SalaryFull Time SalaryAnalyst SalaryDOD SalaryApplication Security SalaryDevsecops SalaryCCSP Salary