Cyber Security Engineer – TS/SCI

Xcelerate Solutions

full-time

Posted on: 1/21/2026

Location Type: Hybrid

Location: Bethesda • Maryland • United States

Visit company website

Explore more

Security Engineer jobs

✨ AI Apply

Apply

Job Level

Senior Lead

Tech Stack

Apache Cyber Security ElasticSearch Jenkins Linux MySQL Postgres SDLC SQL TCP/IP TFS TypeScript Unix

About the role

Support the secure architecture, design, and implementation of DoD systems in accordance with DoDI 8510.01, NIST SP 800-53, and other DoD security guidance
Lead the integration of RMF activities into the system development lifecycle (SDLC), including selecting, implementing, and validating security controls
Develop and maintain key security documentation such as System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, and Plan of Action and Milestones (POA&Ms)
Collaborate with ISSOs, ISSMs, developers, and system owners to ensure systems are developed and maintained with approved security configurations
Apply Security Technical Implementation Guides (STIGs) to systems and validate compliance using tools such as SCAP, STIG Viewer, and ACAS
Maintain application, network, and database scanning infrastructure (application/product updates, database maintenance, benchmark/audit files, application/server builds, rule pack/content updates, scanner, or agent deployment etc.)
Analyze vulnerability scans and ensure timely mitigation or acceptance of risks based on DoD policies
Provide technical input to support and maintain system authorization
Participate in system reviews, architecture assessments, and engineering design reviews to embed cybersecurity from the outset
Develop and implement automation or security tools to improve the compliance and monitoring of systems
Support security incident response and forensics analysis in coordination with ISSMs and Security points of contact

Requirements

BS degree and 8+ years of experience in cybersecurity
An active TS/SCI clearance with ability to obtain a Poly
At least one of the following DoD 8570.01-M IASAE Level II certifications: CISSP, CISSP-ISSAP, CISSP-ISSEP, CSSLP, or CASP+ CE
Developer experience is preferred in a least one scripting / programming language
Experience with reviewing cybersecurity vulnerabilities for risk and relevance as well as in vulnerability mitigations/remediation planning, for identified systems, network, application and database vulnerabilities
Ability to architect, design, troubleshoot, maintain, and deploy vulnerability scanning solutions such as (OWASP, Fortify, Sonarqube, Tenable, etc.)
Experience with XACTA, EMass, or similar tool
Strong in-depth understanding of including Microsoft Windows and Linux/UNIX operating systems
Experience with middleware / web technologies (Apache, tomcat, IIS, etc.)
Experience with Databases (Postgres, MS SQL, MySQL, ElasticSearch, etc.)
Understanding of TCP/IP networking
Experience with Continuous Integration and Continuous Delivery Platforms (Jenkins, Bamboo, GitlabCI TFS, etc.)
Familiar with NIST 800-171, 800-172, NIST SSDF, and CMMC requirements
Experience supporting DoD/IC systems through the entire Risk Management Framework Plus (RMF) process

Benefits

flexible schedule
professional development

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cybersecurityvulnerability scanningrisk assessmentautomationscriptingprogrammingsecurity controlsincident responseforensics analysissystem architecture

Soft Skills

collaborationleadershipcommunicationproblem-solvingtechnical input

Certifications

CISSPCISSP-ISSAPCISSP-ISSEPCSSLPCASP+ CE