Cyber Engineer

Opportunity Overview 

Northramp is seeking a Cyber Engineer to join the team supporting the client’s Cloud BPA Bridge program — a mission-critical effort to consolidate, modernize, and operate client's enterprise cloud services across IaaS, PaaS, and SaaS environments under FedRAMP High authorization. 

You will serve as a hands-on cybersecurity practitioner embedded within the client's cloud operations and delivery teams. The role spans vulnerability management, security engineering, continuous monitoring, and compliance support across multi-cloud environments operating under FedRAMP High, FISMA High, and DHS 4300A requirements. 

This role is part of Northramp’s integrated delivery model, where engineers and advisors work as one team to bring sound judgment, disciplined execution, and deep federal experience to high-stakes modernization programs. 

Location & Work Arrangement 

Hybrid, based in the Washington, DC metro area. On-site presence at designated client locations is expected on a cadence aligned to program needs. Remote work is supported around mission and security requirements. This role is not open to candidates outside the DC region. 

The Ideal Candidate 

You have done real security engineering in federal cloud environments, you know what NIST 800-53 controls look like in practice (not just on paper), and you can move between writing a STIG remediation script and supporting an ATO review without missing a beat. You treat security as an engineering problem and you are most comfortable when you’re closest to the work. 

Key Responsibilities  

• Perform continuous vulnerability scanning, analysis, and remediation tracking across cloud-hosted infrastructure and applications using tools such as Tenable.io, Prisma Cloud, or equivalent. 

• Apply and validate STIG configurations across operating systems, cloud services, and containerized workloads; develop and maintain hardening scripts and automation. 

• Support the Plan of Action and Milestones (POA&M) process — tracking open findings, validating remediations, and preparing reporting for program leadership and government stakeholders. 

• Implement and maintain security controls aligned to NIST 800-53 Rev 5, FedRAMP High baselines, and DHS 4300A; support ATO documentation and continuous authorization activities. 

• Integrate security tooling into CI/CD pipelines — SAST, DAST, container image scanning, SBOM generation, and secrets detection. 

• Configure and maintain SIEM integrations (Splunk or equivalent), including log source onboarding, alert tuning, and incident triage support. 

• Support Cloud Security Posture Management (CSPM) operations — misconfiguration detection, remediation, and drift prevention across AWS, Azure, and GCP. 

• Conduct threat modeling and security architecture reviews for new cloud services and application deployments. 

• Participate in incident response activities: containment, evidence collection, root cause analysis, and after-action reporting. 

• Collaborate with Cloud Systems Engineers, Network Engineers, and DevOps teams to embed security into infrastructure and delivery workflows. 

Required Qualifications 

• 3 to 6 years of progressive, hands-on experience in cybersecurity engineering with a focus on cloud environments. 

• Bachelor’s degree in Cybersecurity, Computer Science, Information Assurance, or a related field. Relevant experience may substitute. 

• Solid understanding of NIST 800-53, FedRAMP, FISMA, and STIG frameworks and their application in cloud environments. 

• Hands-on experience with vulnerability management tools (Tenable.io, Qualys, Prisma Cloud, or equivalent). 

• Practical experience with STIG implementation and hardening automation across Linux, Windows, and cloud-native services. 

• Working knowledge of SIEM platforms (Splunk preferred) — log onboarding, SPL queries, alert configuration. 

• Familiarity with cloud-native security services across AWS (Security Hub, GuardDuty, Config), Azure (Defender for Cloud), and/or GCP (Security Command Center). 

• Understanding of IAM, secrets management, and encryption key management in cloud environments. 

• Experience supporting ATO processes: control documentation, evidence collection, and POA&M management. 

• Scripting proficiency in Python, Bash, or PowerShell for security automation and remediation tasks. 

• U.S. Citizenship and the ability to obtain and maintain a DHS suitability / Public Trust clearance. 

Desired Qualifications  

• CompTIA Security (required at hire), CASP , or CISSP. 

• Cloud security certifications: AWS Security Specialty, Microsoft SC-200/SC-300, CCSP, or equivalent. 

• Certified Ethical Hacker (CEH) or GIAC certifications (GCIH, GCED, or GWAPT). 

• DHS, or other federal cybersecurity program experience. 

• Active Public Trust or higher clearance. 

Clearance 

DHS suitability and a Public Trust background investigation are required for this role. Active Public Trust or higher clearance is preferred. Selected applicants will be subject to a security investigation and may need to meet eligibility requirements for access to controlled or classified information. 

About Northramp 

Northramp is a federal consulting firm that helps agencies modernize and operate mission-critical systems with sound judgment, disciplined execution, and deep federal experience. We specialize in high-stakes digital transformation in highly regulated environments where failure is not an option. Our integrated delivery model brings engineers and advisors together as one team, combining technical depth with an operator’s mindset to move organizations from strategy to execution with confidence. 

We hold high standards because our clients’ missions demand it, and we support our people in meeting them. Northramp is where you are challenged, trusted, and supported — a place for people who take pride in their work, value clarity and follow-through, and want to make a meaningful impact through technology. 

Equal Opportunity 

Northramp is an Equal Opportunity Employer. We are committed to creating an inclusive environment for all employees and applicants. We do not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other characteristic protected by federal, state, or local law. Northramp participates in E-Verify. 

• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Life Insurance (Basic, Voluntary & AD&D)
• Paid Time Off (Vacation, Sick & Public Holidays)
• Family Leave (Maternity, Paternity)
• Short Term & Long Term Disability
• Training & Development
• Work From Home
• Wellness Resources
• Employee Bonus Programs