Senior Cybersecurity Engineer

We are looking for energetic cybersecurity engineers to harden and accredit digital products for our defense customers. We’re using our human-centered design approach to modernize and secure their legacy IT systems and replace them with scalable services that meet today’s user needs. Our purpose is singular — to optimize human performance through secure information technology.

You have...

• A curious mind. You enjoy digging into how technology works and then thinking about how you would do it differently.

• A passion for turning innovative ideas into real solutions. You love a good technical challenge and you enjoy experimenting with ways to solve it, even when your ideas fail.

• A desire to be understood. You speak clearly and write concisely. Your goal is to ensure your audience grasps your ideas, decisions, results, and recommendations.

• An open mind. You seek input from others to understand their perspective, and you appreciate constructive feedback on your work.

• A penchant for helping your teammates. You enjoy sharing your extensive knowledge and insights with others to help them improve their work and grow as engineers.

We have...

• A devotion to making technology work for people. We know technology can help people work faster, better, and smarter. We help our customers and users raise their productivity level and eliminate wasted time.

• A dedication to detail. We believe semantics are critical to making our ideas a reality. We work hard to ensure that our team and our customers have a shared understanding of the products that we design and build.

• An affinity to action. We’d rather learn from our mistakes than wait until we designed the perfect solution. Sure, we plan our projects, but we want to get started quickly, then iterate until we find the best solution for our customers and users.

• A drive for continuous improvement. We are always looking for new ways to solve old problems. Whether for our customers or ourselves, we seek opportunities to do something better.

What You’ll Do

As a member of our team, you’ll be working closely with our customers in the defense, federal, and commercial space

• Work closely with the government Information Systems Security Manager (ISSM) to implement the Risk Management Framework (RMF).

• Establish and maintain security controls compliance and artifacts in Enterprise Mission Assurance Support Service (eMASS) for Authorization to Operate (ATO) accreditation.

• Perform vulnerability and risk analyses of computer systems and applications during all phases of the system development life cycle.

• Conduct advanced cybersecurity engineering, risk management, and DoD RMF compliance activities.

• Monitor and analyze security events using ACAS, eMASS, CMRS, HBSS/ESS, Splunk, SIEM tools, and other cybersecurity monitoring solutions.

• Ensure compliance with DoD cybersecurity frameworks, including NIST 800-53, NIST 800-207 (Zero Trust Architecture), and DISA STIGs.

• Integrate security best practices within Agile and DevSecOps environments.

• Secure both classified and unclassified DoD networks in compliance with DISN and SIPRNet security policies.

• Generate system-level security documentation and support the development of Standard Operating Procedures.

• Participate in security audits and develop recommendations for remediation.

• Engage customer cybersecurity stakeholders to understand needs and define acceptance criteria for validating cybersecurity controls.

• Plan and lead projects; mentor and guide other cybersecurity engineers.

Your Talents

We are seeking cybersecurity engineers who are good at:

• Maintaining a strong cybersecurity posture while integrating commercial and open-source technology into innovative solutions.

• Designing and implementing secure communications network environments.

• Performing in-depth network security analysis and responding to potential incidents.

• Utilizing expertise in routing, switching, firewalls, antivirus, host-based protection, SIEM, and virtualization security.

• Communicating effectively in both verbal and written forms.

• Collaborating to achieve shared goals and ensuring customer success.

What You Need

To become a member of the BluestoneLogic team, you’ll need:

• Experience: Minimum 8 years in cybersecurity, information assurance, or related IT field.

• Clearance Requirement: Active DoD Secret clearance (Top Secret preferred).

• Certifications Required: CISSP, Security , CEH, or equivalent in accordance with DoDM 8140.03M.

• Education: Bachelor's and/or Master's in Cybersecurity, Computer Science, Computer Information Systems, Systems Engineering, Mathematics, or related technical field.

• Location: Onsite at DISA Fort Meade, MD.

• Additional Skills:

  • Experience in DoD cybersecurity engineering, RMF compliance, and security accreditation.

  • Experience in commercial cloud computing security.

  • Familiarity with NIST frameworks, Zero Trust, and DISA STIGs.

  • Hands-on experience with ACAS, eMASS, CMRS, HBSS/ESS, Splunk, and SIEM tools.

  • Understanding of Agile/DevSecOps security integration.

  • Experience securing DoD classified and unclassified networks.

• Citizenship: U.S. citizen.