PUNCH Cyber Analytics Group
Chief - Cyber Security Engineer
PUNCH Cyber Analytics Group, Reston, Virginia, United States, 20190
Chief Cyber Security Engineer
PUNCH's origin story involves frustration with available INFOSEC tools and techniqueswe came up thru the industry using these inefficient tools and decided there had to be a better way. We bring this laser focus on efficiency to every customer engagement. We have trust as a hallmark in everything we do. PUNCH provides its team members with the maximum amount of ownership over their careers, the direction of the company, and the flexibility & freedom to accomplish their job without interference. Trust requires accountability; we live that, company-wide. PUNCH is a supportive place to work. We've worked hard to create an environment that makes people better, encourages teamwork, and rewards a "pitch in" mentality. To those in need. To the community. To the industry. Role Overview
PUNCH is seeking a Chief Cyber Security Engineer to lead the design, architecture, and integration of cutting-edge cybersecurity solutions supporting a high-impact federal mission. This role is ideal for an expert technologist with deep experience across on-prem and cloud environments, FedRAMP-compliant architectures, and secure system design. You must possess a current SECRET security clearance. You'll serve as a Subject Matter Expert (SME), guiding the technical execution of complex programs while collaborating with cybersecurity analysts, architects, engineers, and federal stakeholders. You'll be tasked with transforming mission needs into technical architecture, mentoring teams, and implementing secure, scalable systems across hybrid environments. Responsibilities
Lead system architecture, engineering, and security integration for large-scale, mission-critical environments Design and implement secure hybrid (on-premises/cloud) infrastructure solutions in accordance with federal (FedRAMP) compliance standards Supervise and mentor cybersecurity engineering teams across multiple concurrent workstreams Serve as SME on system security engineering, cloud migration, and secure network architecture Collaborate with cross-functional teams and external stakeholders to drive secure design practices and integrate new technologies Conduct trade-off analyses, proof-of-concept evaluations, and implementation roadmaps for security modernization initiatives Contribute to the design of enterprise cybersecurity strategies and guide the implementation of advanced security tools Participate in major incident response efforts, technical reviews, and vulnerability mitigation planning Support transition planning from on-prem to hybrid cloud solutions, with a focus on resilience, scalability, and zero trust principles Required Qualifications
Bachelor's degree
in cybersecurity, computer science, or related field (or 3 additional years of experience in lieu of degree) CISSP certification
OR
advanced degree
(M.S. or higher) in cybersecurity, information assurance, or related field (e.g., MBA or MS with cybersecurity emphasis) 8+ years
of experience in cybersecurity engineering with advanced degree OR
10+ years
working in government or government-contract cybersecurity environments 5+ years
of experience working in hybrid (on-premises + cloud) environments within a
FedRAMP
context Demonstrated experience leading system design, integration, and architecture efforts involving high-security federal environments Deep technical knowledge of cybersecurity principles, network architecture, system hardening, and secure development lifecycle (SDLC) Preferred
Experience migrating enterprise systems from on-prem to hybrid cloud models Hands-on experience with AWS GovCloud, Azure Government, or other federal cloud platforms Familiarity with NIST 800-53, NIST 800-171, and other federal cybersecurity frameworks Experience leading red/blue team integration, secure DevSecOps pipelines, or advanced threat detection infrastructure
PUNCH's origin story involves frustration with available INFOSEC tools and techniqueswe came up thru the industry using these inefficient tools and decided there had to be a better way. We bring this laser focus on efficiency to every customer engagement. We have trust as a hallmark in everything we do. PUNCH provides its team members with the maximum amount of ownership over their careers, the direction of the company, and the flexibility & freedom to accomplish their job without interference. Trust requires accountability; we live that, company-wide. PUNCH is a supportive place to work. We've worked hard to create an environment that makes people better, encourages teamwork, and rewards a "pitch in" mentality. To those in need. To the community. To the industry. Role Overview
PUNCH is seeking a Chief Cyber Security Engineer to lead the design, architecture, and integration of cutting-edge cybersecurity solutions supporting a high-impact federal mission. This role is ideal for an expert technologist with deep experience across on-prem and cloud environments, FedRAMP-compliant architectures, and secure system design. You must possess a current SECRET security clearance. You'll serve as a Subject Matter Expert (SME), guiding the technical execution of complex programs while collaborating with cybersecurity analysts, architects, engineers, and federal stakeholders. You'll be tasked with transforming mission needs into technical architecture, mentoring teams, and implementing secure, scalable systems across hybrid environments. Responsibilities
Lead system architecture, engineering, and security integration for large-scale, mission-critical environments Design and implement secure hybrid (on-premises/cloud) infrastructure solutions in accordance with federal (FedRAMP) compliance standards Supervise and mentor cybersecurity engineering teams across multiple concurrent workstreams Serve as SME on system security engineering, cloud migration, and secure network architecture Collaborate with cross-functional teams and external stakeholders to drive secure design practices and integrate new technologies Conduct trade-off analyses, proof-of-concept evaluations, and implementation roadmaps for security modernization initiatives Contribute to the design of enterprise cybersecurity strategies and guide the implementation of advanced security tools Participate in major incident response efforts, technical reviews, and vulnerability mitigation planning Support transition planning from on-prem to hybrid cloud solutions, with a focus on resilience, scalability, and zero trust principles Required Qualifications
Bachelor's degree
in cybersecurity, computer science, or related field (or 3 additional years of experience in lieu of degree) CISSP certification
OR
advanced degree
(M.S. or higher) in cybersecurity, information assurance, or related field (e.g., MBA or MS with cybersecurity emphasis) 8+ years
of experience in cybersecurity engineering with advanced degree OR
10+ years
working in government or government-contract cybersecurity environments 5+ years
of experience working in hybrid (on-premises + cloud) environments within a
FedRAMP
context Demonstrated experience leading system design, integration, and architecture efforts involving high-security federal environments Deep technical knowledge of cybersecurity principles, network architecture, system hardening, and secure development lifecycle (SDLC) Preferred
Experience migrating enterprise systems from on-prem to hybrid cloud models Hands-on experience with AWS GovCloud, Azure Government, or other federal cloud platforms Familiarity with NIST 800-53, NIST 800-171, and other federal cybersecurity frameworks Experience leading red/blue team integration, secure DevSecOps pipelines, or advanced threat detection infrastructure