Senior Cyber Security Engineer (Job 1338)

Senior Cyber Security Engineer (Job 1338)Bethesda, MarylandAbout UsDLH delivers improved health and national security readiness solutions for federal programs through science research and development, systems engineering and integration, and digital transformation. Our experts in public health, performance evaluation, and health operations solve the complex problems faced by civilian and military customers alike by leveraging advanced tools – including digital transformation, artificial intelligence, data analytics, cloud enablement, modeling, and simulation, and more. With over 2,400 employees dedicated to the idea that "Your Mission is Our Passion," DLH brings a unique combination of government sector experience, proven methodology, and unwavering commitment to innovation to improve the lives of millions.OverviewDLH is seeking a highly skilled Senior Cybersecurity Engineer to support a federal client in Bethesda, MD. This role focuses on strengthening enterprise cybersecurity posture through a combination of vulnerability management, secure engineering practices, DevSecOps integration, and advanced threat detection, while incorporating Zero Trust principles as part of a comprehensive defense strategy.ResponsibilitiesIntegrate Zero Trust Architecture into enterprise environments through gap analysis, security maturity assessments, and risk-based control implementationLead and support vulnerability management efforts, including identification, prioritization, and remediation of vulnerabilities based on risk, exploitability, and business impactAnalyze and operationalize threat intelligence sources, including CVE databases and CISA KEV catalog, to prioritize remediation and strengthen defenses against actively exploited vulnerabilitiesPerform vulnerability assessments using tools such as Tenable Nessus and web application scanners, and triage findings to reduce false positives/negativesUtilize Microsoft Defender Antivirus (MDAV) and endpoint detection tools to monitor, detect, and respond to threats across endpointsCollaborate with DevSecOps, infrastructure, and development teams to incorporate security controls and automated scanning (SCA, SAST, DAST) into CI/CD pipelines and SDLC practicesDevelop and maintain SIEM solution, such as Splunk, for queries, dashboards, and reports to identify trends, detect anomalies, and highlight control gapsSupport continuous monitoring and improve detection capabilities across hybrid enterprise environments, including on-premises, cloud, and containersContribute to enterprise security architecture, including identity and access management and cloud security designDevelop clear technical documentation, including assessment reports, mitigation strategies, and implementation guidanceStay current on emerging threats, vulnerabilities, federal cybersecurity directives, and industry best practicesQualificationsBachelor's degree in Computer Science, Cybersecurity, Software Engineering, or related field (or equivalent experience)6+ years of experience in cybersecurity, vulnerability management, systems engineering, or related fieldsThe ideal candidate should be self-motivated and able to take ownership of workflowsExperience identifying and prioritizing risk across enterprise systems, applying defense in depth principles across platforms, and leveraging security tools and threat intelligence (including CVE and CISA Known Exploited Vulnerabilities (KEV)) to proactively mitigate threatsStrong collaboration across security, infrastructure, and development teams, and the ability to communicate technical findings to both technical and non-technical stakeholdersStrong experience with vulnerability management programs, including risk prioritization using CVSS, threat intelligence, and exploit data (e.g., CVEs, CISA KEV)Working knowledge of DevSecOps practices and integrating security into CI/CD pipelinesHands-on experience with Microsoft Defender Antivirus (MDAV) and endpoint security solutionsExperience with vulnerability scanning and assessment tools (e.g., Tenable Nessus, web application scanners)Familiarity with cloud environments (AWS, Azure, or GCP) and containerized applications (ARO, Kubernetes)Experience with SIEM platforms such as Splunk for detection and analysisStrong understanding of security frameworks and compliance standards (NIST SP 800-53, 800-171, 800-37, FedRAMP, FISMA, ISO 27001, CIS Benchmarks, DISA STIGs)Knowledge of enterprise security architecture and modern security principles, including Zero TrustWorking knowledge of AI security risk management frameworks and the ability to translate AI/ML use cases into security controls, review checkpoints, and governance decisionsStrong analytical, problem-solving, and communication skillsMust be able to obtain a Public Trust clearancePreferred CertificationsRelated Cyber certification, such as CYSA, CISSP, or equivalentCloud security certifications (Azure, AWS, or GCP)Azure Security Engineer Associate or similarVulnerability management or threat intelligence-related certificationsProficiency in scripting/automation (PowerShell, Python, Bash, etc.)Basic Compensation$160,000 - $168,000 yearly salaryDLH Corp offers our employees an excellent benefits package, including Personal Time Off (PTO), medical, dental, vision, supplemental life with AD&D, short and long-term disability, flexible spending accounts, parental leave, legal services, and more. We want our employees to save for their future; therefore, we offer a 401(k) Retirement Plan, which includes a matching component. DLH is dedicated to your career development, providing training to help drive success, with access to our best-in-class e-learning suite for formal and informal learning, professional and technical certification preparation, and education assistance at accredited institutions.EEODLH Corporation is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment. DLH will provide reasonable accommodation to individuals with disabilities and disabled Veterans who need assistance to apply.J-18808-Ljbffr