Computer Technologies Consultants (CTC) is seeking a Cybersecurity Engineer to support the Congressional Budget Office (CBO) in Washington, DC.
Position Title: Cybersecurity Engineer
Position Location: Washington, DC.
Daily Responsibilities:- Implement and maintain enterprise security controls aligned with NIST SP 800-53 and enforce Zero Trust Architecture principles under NIST SP 800-207, including least privilege, identity-
- centric security, continuous verification, segmentation, and protection across cloud, network, and endpoint environments.
- Design, implement, and maintain least-privilege access controls and IAM solutions, including RBAC, PAM, MFA, secure authentication, authorization, and integration with enterprise identity providers.
- Configure and maintain centralized logging, monitoring, audit, and threat detection capabilities across systems, applications, cloud platforms, and security tools, including SIEM, EDR/XDR, and cloud-native security platforms.
- Conduct continuous security monitoring, vulnerability assessments, risk analysis, and RMF- aligned remediation across enterprise environments; identify security gaps and coordinate mitigation, patch management, and security update activities.
- Harden systems, applications, cloud, and hybrid environments using secure configuration baselines and industry best practices, including encryption standards, secured administrative access, identity controls, network protections, and workload security.
- Support incident response activities by monitoring alerts, performing analysis, executing containment actions, assisting with forensic data collection and reporting, and performing root cause analysis for security incidents and control failures.
- Ensure security changes follow formal change management processes with documentation and security impact analysis; develop and maintain cybersecurity SOPs, system configurations, security baselines, asset inventories, and audit-ready documentation.
- Collaborate with network, cloud, and application teams to resolve security issues, support security integration, limit lateral movement, protect sensitive data and high-value assets, and enhance the overall enterprise security posture.
Required Years of Experience (min):
- Five years relevant experience
Required Degree/Certifications:
- Bachelor's degree or equivalent experience
Required Experience & Expertise in the following areas:
- Experience supporting enterprise cybersecurity operations across cloud, on-premises, and hybrid environments.
- Experience applying NIST SP 800-53 and NIST SP 800-207 to security controls, Zero Trust, least privilege, continuous monitoring, and risk mitigation.
- Experience with IAM technologies, including RBAC, PAM, MFA, authentication, authorization, and enterprise identity provider integration.
- Experience using SIEM, EDR/XDR, logging, monitoring, and threat detection platforms to support incident response, investigation, forensic support, and root cause analysis.
- Knowledge of vulnerability management, security hardening, patch coordination, RMF-aligned remediation, and secure configuration baselines.
- Ability to develop cybersecurity SOPs, security documentation, configuration records, baselines, asset inventories, and audit artifacts.
- Ability to coordinate with network, cloud, application, and engineering teams to resolve security issues and improve enterprise security operations.
Required Clearance:
- Public Trust Tier 2 clearance level and background check.
Pay InformationFull-Time Salary Range: TBD
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.