Cybersecurity Engineer

Position Summary

KeenLogic is seeking a Cybersecurity Engineer to support the Congressional Budget Office (CBO) by designing, implementing, and maintaining enterprise security controls that enforce Zero Trust principles, identity-centric access, least privilege enforcement, continuous monitoring, and threat detection across cloud, network, endpoint, and identity environments. The engineer will support enterprise cybersecurity operations, incident response, vulnerability management, identity and access management, cloud security, and compliance initiatives while ensuring alignment with federal cybersecurity standards and industry best practices.

Work is primarily performed remotely; however, contractor personnel must be available to provide onsite support at the CBO Ford House Office Building in Washington, DC, as directed by the Government. KeenLogic offers Fortune 500-level benefits, including health, dental, and vision insurance, PTO, 401(k), and life insurance.

Required Qualifications

• U.S. Citizen and eligible for a Public Trust clearance
• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related discipline (or equivalent experience)
• 7 years of experience supporting enterprise cybersecurity operations, engineering, or security architecture
• Experience implementing and maintaining security controls aligned with NIST SP 800-53
• Experience supporting Zero Trust Architecture initiatives aligned with NIST SP 800-207
• Experience with:
• Identity & Access Management (IAM)
• Multi-Factor Authentication (MFA)
• Role-Based Access Control (RBAC)
• Privileged Access Management (PAM)
• SIEM platforms
• EDR/XDR solutions
• Vulnerability management tools
• Security monitoring and incident response
• Experience securing cloud environments (AWS and/or Azure)
• Experience supporting federal cybersecurity compliance requirements
• Strong analytical, troubleshooting, and documentation skills
  
  

Key Responsibilities

Enterprise Security Operations

• Support implementation, operation, and optimization of enterprise security platforms and services
• Maintain security controls across cloud, on-premises, and hybrid environments
• Support continuous monitoring and security operations initiatives
• Assist with enterprise security posture improvements
  
  

Security Architecture & Compliance

• Implement and maintain security controls aligned with NIST SP 800-53
• Support Zero Trust Architecture initiatives in accordance with NIST SP 800-207
• Participate in risk mitigation, continuous monitoring, and compliance activities
• Support audit readiness and security assessment efforts
  
  

Identity & Access Management (IAM)

• Configure and maintain identity and access management solutions
• Implement and enforce RBAC, PAM, and MFA controls
• Support authentication and authorization services
• Ensure least-privilege access principles are consistently applied
  
  

Threat Detection & Incident Response

• Monitor and analyze security events and alerts
• Support incident triage, investigation, containment, and remediation activities
• Assist with forensic data collection and analysis
• Perform root cause analysis and corrective action planning
  
  

Vulnerability Management & Cloud Security

• Conduct vulnerability assessments and risk analysis
• Coordinate remediation, patching, and mitigation activities
• Secure AWS, Azure, and hybrid cloud environments
• Implement secure configuration baselines and hardening standards
• Support segmentation and access control strategies to protect sensitive systems and data
  
  

Documentation & Operational Support

• Develop and maintain cybersecurity SOPs, policies, and procedures
• Maintain security documentation, system inventories, and configuration records
• Participate in change management activities and security impact assessments
• Collaborate with network, cloud, application, and engineering teams to resolve complex security challenges
  
  

Powered by JazzHR

Dkg1Dh3Rky