Security Infrastructure Support Senior Security Engineer Job at Cybervance in Be

Position Title: Security Infrastructure Support Senior Security Engineer

Location: Bethesda, MD | Hybrid- Not Remote

Cybervance is a rapidly growing information security and information technology company based in Washington, D.C., and we are an equal opportunity employer. We design, develop, and manage the successful execution of training programs for government and private sector organizations. Cybervance believes in creating innovative solutions to deliver measured results.

We are seeking a highly skilled Senior Security Engineer to design, implement, and maintain secure enterprise IT and cybersecurity infrastructure across hybrid on-premises and cloud environments. The Senior Security Engineer will provide advanced technical expertise in security tool integration, SIEM administration, and system hardening while ensuring compliance with federal cybersecurity frameworks.

This position requires an experienced technical professional with a strong foundation in enterprise infrastructure, cloud security, and automation. The ideal candidate combines deep technical acumen with strong communication and analytical skills to design secure, resilient, and compliant solutions supporting large-scale federal and enterprise systems.

Responsibilities

• Design, deploy, and support enterprise IT and cybersecurity infrastructures across hybrid on-premises and cloud environments (AWS, Azure, O365).
• Manage and optimize cybersecurity tools and platforms, including Security Information and Event Management (SIEM) systems, endpoint protection, and vulnerability management solutions.
• Lead the implementation, configuration, and normalization of data pipelines for security log ingestion, enrichment, and analysis within SIEM environments.
• Collaborate with cloud and infrastructure teams to ensure secure system architectures aligned with organizational risk management policies.
• Conduct system hardening, vulnerability remediation, and patch management for Windows, Linux, and network systems.
• Apply DevSecOps practices, embedding security automation into CI/CD pipelines and ensuring secure code deployment processes.
• Develop and maintain scripts and automation tools (Python preferred) to enhance operational efficiency, compliance reporting, and monitoring.
• Provide technical guidance in cloud security, including migration, configuration management, and environment hardening.
• Support compliance and audit initiatives, ensuring adherence to FISMA, NIST SP 800-53, NIST SP 800-92, OMB M-21-31, and Continuous Diagnostics and Mitigation (CDM) frameworks.
• Conduct root cause analysis and problem resolution for complex security incidents and infrastructure vulnerabilities.
• Participate in infrastructure modernization efforts, providing expert-level input into system architecture, security design, and deployment best practices.
• Document and maintain Standard Operating Procedures (SOPs), architecture diagrams, and configuration baselines for security systems.
• Coordinate with third-party vendors and cross-functional teams to implement integrated security solutions and resolve technical challenges.
• Provide executive-level reporting and communicate complex security issues to both technical and non-technical stakeholders clearly and effectively.

Experience

• Minimum 10+ years of experience designing, installing, maintaining, and supporting enterprise IT systems.
• At least 5+ years of experience at the Senior Engineer level or higher.
• Minimum 3+ years of direct experience with cybersecurity tools or SIEM implementation and administration.
• Proven experience supporting hybrid infrastructure environments (on-premises and cloud).
• Strong background in infrastructure management, including Windows/Linux servers, network appliances, patching, vulnerability remediation, and endpoint security.
• Hands‑on experience with federal cybersecurity compliance frameworks (FISMA, NIST SP 800-53, NIST SP 800-92, OMB M-21-31, CDM).
• Proficiency in managing and integrating enterprise SIEM platforms and data pipeline solutions for log collection and normalization.
• Familiarity with DevSecOps practices, secure automation, and continuous integration/deployment processes.
• Strong scripting and automation skills in Python, PowerShell, or equivalent.
• Deep understanding of virtualization technologies and best practices for secure virtual infrastructure.
• Experience with cloud security concepts and services (AWS, Azure, O365), including migration, identity management, and security configuration.
• Demonstrated ability to explain complex security concepts to technical and non-technical audiences.
• Strong verbal and written communication skills with experience developing executive reports, technical documentation, and presentations.
• Proven ability to collaborate with vendors, DevOps teams, and security operations centers (CSOCs) in large, federated environments.
• Advanced analytical ability to identify, assess, and remediate complex infrastructure and cybersecurity issues.
• Proven track record in incident resolution, continuous monitoring, and risk mitigation strategies.
• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field (preferred).

Required Skills & Qualifications

• Current government security clearance: Public Trust.

Preferred Qualifications

• Master’s degree in Cybersecurity, Information Systems, or Engineering.
• Certifications such as CISSP, CISM, AWS Certified Security – Specialty, or Azure Security Engineer Associate.
• Experience with Zero Trust Architecture and cloud‑native security tools.
• Familiarity with automation frameworks such as Terraform, Ansible, or CloudFormation.