Zachary Piper Solutions
Zachary Piper Solutions
Cybersecurity Engineer will architect and deploy SIEM, EDR, and firewall solutions, manage vulnerabilities, and maintain secure cloud and on-prem infrastructure for a classified defense aviation program located in Las Vegas, NV through 100% onsite presence.
Responsibilities
Design, implement, and maintain cybersecurity infrastructure, including SIEM, EDR, and firewall solutions for classified systems
Conduct vulnerability scanning, risk assessments, and remediation to ensure system integrity and compliance
Manage and secure hybrid cloud/on-prem architectures, including AWS GovCloud and Azure environments
Document security controls, procedures, and compliance artifacts in alignment with NIST 800-53 and RMF frameworks
Support audits and ensure adherence to DOE cybersecurity standards such as FISMA and DOE O 205.1C
Collaborate with engineering and SOC teams to optimize threat detection and incident response capabilities
Qualifications
14+ years of total IT experience
6+ years of cybersecurity architecture, design, and implementation
Active DOE Q or Top Secret clearance
Bachelor's Degree in Computer Science, Cybersecurity, Engineering, or relevant field
Security+, or Red Hat certification (minimum); CISSP or CISM preferred
Proficiency with SIEM, EDR, IDS, and endpoint security tools (eg Splunk, Tenable, CrowdStrike)
Experience with cloud security architectures, especially AWS GovCloud or Azure, and familiarity with NIST 800-53, RMF, and eMASS compliance frameworks
Compensation
Salary Range: $150,000-$180,000 depending on experience
Per diem & relocation assistance available
Benefits: Medical, Dental, Vision, 401k Plan, Holidays, PTO, sick leave as required by law
Keywords: Journeyman, Cybersecurity, Engineer, Cybersecurity Engineer, defense, DOD, department of defense, aviation, Las Vegas, NV, Nevada, Vegas, architect, deploy, SIEM, Security Information and Event Management, security, collect, analyze, correlate, logs, alerts, Splunk Enterprise Security, IBM Qradar, Splunk, Qradar, Microsoft Sentinel, Sentinel, ArcSight, OpenText, LogRhythm, EDR, Endpoint Detection Response, endpoint, suspicious activity, malware, ransomware, abnormal behavior, CrowdStrike Falcon, CrowdStrike, Microsoft Defender, Defender, SentinelOne, Carbon Black, Sophos Intercept X, individual endpoints, XDR, Extended Detection and Response, NDR, Network Detection and Response, SOC, security operations center, firewall, vulnerabilities, cloud, on-prem, vulnerability, scanning, scan, risk assessment, remediation, system integrity, compliance, hybrid, cloud, on-prem, architectures, AWS, GovCloud, Azure, Amazon Web Services, security controls, security procedures, security compliance, NIST 800-53, NIST, RMF, RMF framework, Risk Management Framework, National Institute of Standards and Technology, audit, DOE, Department of Energy, FISMA, Federal Information Security Modernization Act, DHS, Department of Homeland Security, OMB, Office of Management and Budget, Security and Privacy Controls, CUI, Controlled Unclassified Information, information security program, continuous monitoring, JC3, Joint Cybersecurity Coordination Center, threat detection, incident response, incidence response, IT, information technology, cybersecurity architecture, cybersecurity design, cybersecurity implementation, DOE Q, Q clearance, clearance, Top Secret, Top Secret Clearance, TS, TS Clearance, Computer Science, IDS, intrusion detection system, network, networking, NIDS, network-based intrusion detection system, network traffic, Snort, Suricata, Zeek, Bro, Splunk, Tenable, CrowdStrike, HIDS, host-based intrusion detection system, unauthorized logins, file modifications, privilege escalations, OSSEC, Wazuh, Tripwire, suspicious packets, attack signatures, port scams, malware traffic, IPS, intrusion protection system, cloud security architecture, AWS, GovCloud, Amazon Web Services, Azure, eMASS
#LI-SW1 #LI-ONSITE
#J-18808-Ljbffr
Responsibilities
Design, implement, and maintain cybersecurity infrastructure, including SIEM, EDR, and firewall solutions for classified systems
Conduct vulnerability scanning, risk assessments, and remediation to ensure system integrity and compliance
Manage and secure hybrid cloud/on-prem architectures, including AWS GovCloud and Azure environments
Document security controls, procedures, and compliance artifacts in alignment with NIST 800-53 and RMF frameworks
Support audits and ensure adherence to DOE cybersecurity standards such as FISMA and DOE O 205.1C
Collaborate with engineering and SOC teams to optimize threat detection and incident response capabilities
Qualifications
14+ years of total IT experience
6+ years of cybersecurity architecture, design, and implementation
Active DOE Q or Top Secret clearance
Bachelor's Degree in Computer Science, Cybersecurity, Engineering, or relevant field
Security+, or Red Hat certification (minimum); CISSP or CISM preferred
Proficiency with SIEM, EDR, IDS, and endpoint security tools (eg Splunk, Tenable, CrowdStrike)
Experience with cloud security architectures, especially AWS GovCloud or Azure, and familiarity with NIST 800-53, RMF, and eMASS compliance frameworks
Compensation
Salary Range: $150,000-$180,000 depending on experience
Per diem & relocation assistance available
Benefits: Medical, Dental, Vision, 401k Plan, Holidays, PTO, sick leave as required by law
Keywords: Journeyman, Cybersecurity, Engineer, Cybersecurity Engineer, defense, DOD, department of defense, aviation, Las Vegas, NV, Nevada, Vegas, architect, deploy, SIEM, Security Information and Event Management, security, collect, analyze, correlate, logs, alerts, Splunk Enterprise Security, IBM Qradar, Splunk, Qradar, Microsoft Sentinel, Sentinel, ArcSight, OpenText, LogRhythm, EDR, Endpoint Detection Response, endpoint, suspicious activity, malware, ransomware, abnormal behavior, CrowdStrike Falcon, CrowdStrike, Microsoft Defender, Defender, SentinelOne, Carbon Black, Sophos Intercept X, individual endpoints, XDR, Extended Detection and Response, NDR, Network Detection and Response, SOC, security operations center, firewall, vulnerabilities, cloud, on-prem, vulnerability, scanning, scan, risk assessment, remediation, system integrity, compliance, hybrid, cloud, on-prem, architectures, AWS, GovCloud, Azure, Amazon Web Services, security controls, security procedures, security compliance, NIST 800-53, NIST, RMF, RMF framework, Risk Management Framework, National Institute of Standards and Technology, audit, DOE, Department of Energy, FISMA, Federal Information Security Modernization Act, DHS, Department of Homeland Security, OMB, Office of Management and Budget, Security and Privacy Controls, CUI, Controlled Unclassified Information, information security program, continuous monitoring, JC3, Joint Cybersecurity Coordination Center, threat detection, incident response, incidence response, IT, information technology, cybersecurity architecture, cybersecurity design, cybersecurity implementation, DOE Q, Q clearance, clearance, Top Secret, Top Secret Clearance, TS, TS Clearance, Computer Science, IDS, intrusion detection system, network, networking, NIDS, network-based intrusion detection system, network traffic, Snort, Suricata, Zeek, Bro, Splunk, Tenable, CrowdStrike, HIDS, host-based intrusion detection system, unauthorized logins, file modifications, privilege escalations, OSSEC, Wazuh, Tripwire, suspicious packets, attack signatures, port scams, malware traffic, IPS, intrusion protection system, cloud security architecture, AWS, GovCloud, Amazon Web Services, Azure, eMASS
#LI-SW1 #LI-ONSITE
#J-18808-Ljbffr