Applied Research Solutions

Cloud Cybersecurity Engineer

Applied Research Solutions

full-time

Posted on:

Location Type: Remote

Location: Remote • Ohio • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

AzureCloudCyber Security

About the role

  • Design, implement, and harden cloud workloads to meet DoD RMF (NIST SP 800-53 Rev. 5) and CMMC 2.0 (NIST SP 800-171) security requirements
  • Integrate security into CI/CD pipelines, enabling automated security testing, compliance checks, and secure deployment processes
  • Configure and manage Microsoft Defender, Sentinel, Purview, and other Azure-native security services to improve detection, response, and data governance capabilities
  • Develop and enforce secure configuration baselines, STIGs, and system hardening guidelines across Azure resources and DevSecOps toolchains
  • Establish and maintain vulnerability management processes, including scanning, prioritization, remediation tracking, and reporting
  • Leverage threat intelligence sources to identify emerging threats, build detection logic, and improve security controls
  • Support RMF lifecycle activities, including control implementation, SSP development, evidence generation, and POA&M management
  • Prepare for and support CMMC 2.0 assessment readiness, ensuring documentation, controls, and monitoring align with assessment criteria
  • Manage and optimize multi-tenant Azure environments using Azure Lighthouse for access control, monitoring, and delegated administration
  • Collaborate with development, operations, and compliance teams to deliver secure-by-design solutions and resolve security findings

Requirements

  • Must be a US citizen
  • Bachelor’s degree in cybersecurity, computer science, engineering, or related field (or equivalent experience)
  • 5+ years of cybersecurity engineering experience, preferably supporting DoD, federal, or regulated environments
  • Hands-on experience with Azure security tools, including Microsoft Defender suite, Sentinel, Purview, and Azure Policy
  • Strong knowledge of DevSecOps practices, CI/CD pipelines, and integrating security automation into development workflows
  • Deep understanding of DoD RMF, NIST SP 800-53 Rev. 5 controls, and security assessment/evidence requirements
  • Experience implementing CMMC 2.0 or NIST SP 800-171 controls, including documentation, continuous monitoring, and audit readiness
  • Proficiency in vulnerability management tools, remediation processes, and risk-based prioritization.
Benefits
  • competitive benefits package
  • awards and recognition program
  • personalized attention from ARS Senior Managers

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
cybersecurity engineeringcloud workload designsecurity automationvulnerability managementconfiguration baselinessecurity testingrisk-based prioritizationsystem hardeningdocumentationcontinuous monitoring
Soft skills
collaborationcommunicationproblem-solvingorganizational skillsleadership
Certifications
CMMC 2.0NIST SP 800-53 Rev. 5NIST SP 800-171