Cybersecurity Engineer

Job description

Company Overview

At Hexagon US Federal we provide cutting-edge technologies and a wide range of professional services to enable our customers to make smarter and faster operational decisions and improve mission effectiveness.

Hexagon US Federal is an independent subsidiary of Hexagon Corporation exclusively focused on bringing the broad range of Hexagon technologies to the US Federal government and its partners.

Quick Hits

Employees: 300

Operating Locations: Chantilly, VA (HQ); Huntsville, AL; Lexington Park, MD, and other client sites across the US

We are seeking a highly skilled and motivated Cybersecurity Engineer III to join our dynamic team supporting a critical U.S. Department of Defense (DoD) programs. This leadership position will oversee the cybersecurity strategy and operations to protect sensitive systems and information within a complex, high-stakes environment. The ideal candidate will have a strong background in cybersecurity, a proven ability to work independently, and possess a Security+ certification (or higher). You will play a crucial role in safeguarding the integrity, confidentiality, and availability of DoD systems in alignment with DoD security standards and regulations. You will be working with Program/Project Managers, mechanical and electrical engineers, Business Development, Suppliers, Manufacturing, and Navy customers.

This is a dynamic opportunity in which talented cybersecurity engineers can thrive working on a diverse array of multidisciplinary projects in the integrated systems arena.

This job is for you if you:

Interested in being a knowledge leader of cybersecurity operations for DoD programs, ensuring compliance with applicable cybersecurity frameworks and regulations, such as NIST 800-53, Risk Management Framework (RMF), and DoD 8570.

Coordinate with cross-functional teams to implement security solutions and ensure proper security controls are embedded throughout the lifecycle of systems and applications.

Collaborate with DoD stakeholders, including government and contractor personnel, to ensure seamless security integration and compliance.

·Invest in a dynamic opportunity focused on maintaining and enhancing the program’s cybersecurity posture by staying current with emerging cyber threats, technologies, and industry trends.

·Enjoy providing technical guidance to multi-stakeholder team members while conducting continuous risk assessments, vulnerability scans, and penetration testing to identify and mitigate potential threats and vulnerabilities.

Are a highly motivated problem solver and focused individual who can develop trusted relationships with program stakeholders to influence and assist in product or solution realization tailored to their needs.

What we are expecting from you (i.e. the qualifications you must have):

• Security+ certification (or higher) required (e.g., CISSP, CISM, etc.).
• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience), or 5 or more years of DOD cybersecurity experience.
• Ensure alignment with continuous monitoring, security assessment, and audit requirements outlined by the DoD.
• Strong working knowledge of DoD cybersecurity policies, regulations, and compliance frameworks (e.g., STIGs, NIST, RMF, FISMA).
• Hands-on experience with security tools and technologies (e.g., SIEM, vulnerability scanners, encryption, endpoint protection).
• Proven expertise in risk assessment, incident response, and security operations. Prepare and present security status reports to senior management and government stakeholders.
• Experience working within a DoD or federal environment, with knowledge of applicable security protocols.
• Development and implementation of cybersecurity policies, procedures, and best practices in accordance with DoD requirements.
• Strong Communication and presentation skills (written and oral) to interact with Program/Project Management, Manufacturing, Suppliers, and the Navy customer.

Travel: CONUS 10% or less

What other experience would be useful:

Working knowledge of Naval Sea Systems Command, Naval Surface Warfare Center, Naval Shipyard, or similar within the Navy. Electronic IT equipment design and manufacturing including firmware, and trusted platform modules. Familiarity with cloud security models (e.g., AWS, Azure, Oracle Cloud Initiative, Kubernetes), DevOps implementations and emerging cybersecurity technologies. Knowledge of encryption standards and technologies, source code scanning and remediation process Experience with oversight of security infrastructure monitoring ensuring proactive threat detection, incident response, and remediation. Administrative knowledge of processes for incident management, handling security breaches, and conducting post-incident analysis and reporting.

Required Level of Security Clearance: At a minimum, must complete and receive government National Agency Check status. Ability to receive a SECRET clearance

What we will provide in return:

- Competitive health care plans with savings accounts

- Dental and vision plans

- 401k with 100% company match up to 6%, with immediate vesting on company match

- Life and disability insurance

- Learning Management System with robust offerings

- Tuition Reimbursement Program

- Flexible hybrid and remote working arrangements where possible

- 13 paid holidays per year

- Thrive Wellness Program

- DE&I and Veterans’ focused Employee Resources Groups with regular educational sessions and communications

- Leadership Development Program with multiple learning options

Hexagon US Federal is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.