Overview

DLH is seeking a highly skilled Cyber Security Engineer to support a federal client in Bethesda, MD. This role focuses on strengthening enterprise cybersecurity posture through a combination of vulnerability management, secure engineering practices, DevSecOps integration, and advanced threat detection, while incorporating Zero Trust principles as part of a comprehensive defense strategy.

The ideal candidate should be self-motivated and able to take ownership of workflows

They will bring experience identifying and prioritizing risk across enterprise systems, applying defense-in-depth principles across platforms, and leveraging security tools and threat intelligence (including CVE and CISA Known Exploited Vulnerabilities (KEV)) to proactively mitigate threats.

This role requires strong collaboration across security, infrastructure, and development teams, as well as the ability to communicate technical findings to both technical and non-technical stakeholders.

Responsibilities

• Integrate Zero Trust Architecture into enterprise environments through gap analysis, security maturity assessments, and risk-based control implementation
• Lead and support vulnerability management efforts, including identification, prioritization, and remediation of vulnerabilities based on risk, exploitability, and business impact
• Analyze and operationalize threat intelligence sources, including CVE databases and CISA KEV catalog, to prioritize remediation and strengthen defenses against actively exploited vulnerabilities
• Perform vulnerability assessments using tools such as Tenable Nessus and web application scanners, and triage findings to reduce false positives/negatives
• Utilize Microsoft Defender Antivirus (MDAV) and endpoint detection tools to monitor, detect, and respond to threats across endpoints
• Collaborate with DevSecOps, infrastructure, and development teams to incorporate security controls and automated scanning (SCA, SAST, DAST) into CI/CD pipelines and SDLC practices
• Develop and maintain SIEM solution, such as Splunk, for queries, dashboards, and reports to identify trends, detect anomalies, and highlight control gaps
• Support continuous monitoring and improve detection capabilities across hybrid enterprise environments, including on-premises, cloud, and containers.
• Contribute to enterprise security architecture, including identity and access management and cloud security design
• Develop clear technical documentation, including assessment reports, mitigation strategies, and implementation guidance
• Stay current on emerging threats, vulnerabilities, federal cybersecurity directives, and industry best practices

Qualifications

• Bachelor's degree in Computer Science, Cybersecurity, Software Engineering, or related field (or equivalent experience)
• 4+ years of experience in cybersecurity, vulnerability management, systems engineering, or related fields
• Strong experience with vulnerability management programs, including risk prioritization using CVSS, threat intelligence, and exploit data (e.g., CVEs, CISA KEV)
• Working knowledge of DevSecOps practices and integrating security into CI/CD pipelines
• Hands-on experience with Microsoft Defender Antivirus (MDAV) and endpoint security solutions
• Experience with vulnerability scanning and assessment tools (e.g., Tenable Nessus, web application scanners)
• Familiarity with cloud environments (AWS, Azure, or GCP) and containerized applications (ARO, Kubernetes)
• Experience with SIEM platforms such as Splunk for detection and analysis
• Strong understanding of security frameworks and compliance standards (NIST SP 800-53, 800-171, 800-37, FedRAMP, FISMA, ISO 27001, CIS Benchmarks, DISA STIGs)
• Knowledge of enterprise security architecture and modern security principles, including Zero Trust
• Working knowledge of AI security risk management frameworks and the ability to translate AI/ML use cases into security controls, review checkpoints, and governance decisions
• Strong analytical, problem-solving, and communication skills
• Must be able to obtain a Public Trust clearance

Preferred Certifications

• Related Cyber certification, such as CYSA, CISSP, or equivalent
• Cloud security certifications (Azure, AWS, or GCP)
• Azure Security Engineer Associate or similar
• DevSecOps or secure development certifications
• Vulnerability management or threat intelligence-related certifications
• Proficiency in scripting/automation (PowerShell, Python, Bash, etc.)

Basic Compensation: $132,000 - $140,000 yearly salary

The salary range listed reflects what we reasonably expect to pay for this role at the time of posting. The final offer may vary based on skills, experience, geographic location, market conditions, and internal equity. Additional compensation may include performance incentives and program-specific awards. We do not use salary history to determine compensation, in line with applicable law.

Benefits

DLH Corp offers our employees an excellent benefits package, including Personal Time Off (PTO), medical, dental, vision, supplemental life with AD&D, short and long-term disability, flexible spending accounts, parental leave, legal services, and more. We want our employees to save for their future; therefore, we offer a 401(k) Retirement Plan, which includes a matching component. DLH is dedicated to your career development, providing training to help drive success, with access to our best-in-class e-learning suite for formal and informal learning, professional and technical certification preparation, and education assistance at accredited institutions.