Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Second Front Systems

Cybersecurity Assessment Engineer

Second Front Systems

Cybersecurity Assessment Engineer at Second Front Systems ensuring cloud application security. Collaborating with engineering teams to assess vulnerabilities and maintain compliance with security standards.

Posted 5/27/2026full-timeRemote • Colorado, District of Columbia, North Carolina, Texas • 🇺🇸 United StatesMid-LevelSenior💰 $90,000 - $130,000 per yearWebsite

Tech Stack

Tools & technologies
AWSAzureCloudCyber SecurityGoogle Cloud PlatformKubernetes

About the role

Key responsibilities & impact
  • Coordinate activities with the Principal Security Engineer, Platform team, and Customer Operations team.
  • Review web application artifacts of customer developed applications and provide customer feedback
  • Primary face of the cybersecurity team to software development and mission success teams
  • Assist with incident response plans to respond to application outages or downtime
  • Conduct comprehensive assessments of cloud infrastructure, applications, and containerized environments to verify compliance with DISA STIGs, SRGs, and CIS Benchmarks.
  • Author, review, and maintain high-quality security artifacts, including System Security Plans (SSP), Security Assessment Plans (SAP), and Security Assessment Reports (SAR).
  • Monitor and report on the ongoing effectiveness of security controls, ensuring the platform maintains a robust and authorized security posture.
  • Utilize automated scanning suites (e.g., Anchore, Trivy, Tenable) to identify vulnerabilities, distinguish true positives, and provide actionable remediation guidance to dev teams.
  • Implement and manage technical workflows for SBOMs (Software Bill of Materials) to support modern, continuous authorization standards.
  • Partner with DevOps and Software Engineering teams to translate complex NIST 800-53 controls into implementable technical requirements.

Requirements

What you’ll need
  • 3-5 years of relevant experience
  • Secret Level Clearance (or above)
  • Ability to attain DOD 8570 Baseline Certification for IAT II within 6 months of hire date (preferably CYSA+)
  • Intermediate knowledge of DevSecOps tools and software development
  • Background in cybersecurity and understanding of vulnerability risk analysis
  • Hands-on experience assessing or securing services within AWS, Azure, or GCP, particularly within PaaS or Kubernetes-based environments.
  • Proficient knowledge of NIST SP 800-37 (RMF) and NIST SP 800-53 rev 5 security controls
  • Deep understanding of the FedRAMP authorization process and Department of Defense (DoD) security standards.

Benefits

Comp & perks
  • Competitive Salary
  • 100% Healthcare, vision and dental coverage
  • 401(k) + 3% company contribution
  • Equity incentive plan
  • Tech + office supplies stipend
  • Annual professional development stipend
  • Flexible paid time off + federal holidays off
  • Parental leave
  • Work from anywhere
  • Referral Bonus

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
incident responsecloud infrastructure assessmentvulnerability risk analysissecurity artifact authoringautomated scanningDevSecOpsNIST SP 800-37NIST SP 800-53AWSKubernetes
Soft Skills
communicationcollaborationfeedback provisionmonitoringreporting
Certifications
Secret Level ClearanceDOD 8570 Baseline CertificationCYSA+