Cybersecurity Engineer - Compliance & Security Operations
Location: Melbourne, Florida
📅 Date: June 2026
This is an onsite role and U.S. Citizenship is required.
We are seeking a detail-oriented and technically proficient Cybersecurity Engineer to join our security team. This individual will be responsible for the implementation, integration, tuning, and continuous improvement of cybersecurity tools and controls in alignment with CMMC Level 2, NIST SP 800-171, and NIST SP 800-53 frameworks. The ideal candidate brings hands-on experience with security technology stacks in a defense contracting or government-adjacent environment and thrives in a compliance-driven, fast-paced setting.
The Ideal Candidate
You are more than simply analytical, you are innovative, forward-thinking, and driven to deliver meaningful results. You excel in fast-paced, complex environments where initiative is valued, and breakthrough ideas are encouraged. The ideal candidate will:
- Demonstrate intellectual curiosity and a passion for exploring emerging technologies.
- Have a strong bias for action and a track record of achieving measurable outcomes.
- Embrace challenges, remain adaptable, and consistently seek opportunities for growth and improvement.
Key Responsibilities
- Work in conjunction with our SOC and Managed Service provider to Implement, configure, and tune cybersecurity tools including SIEM, EDR, vulnerability management platforms, and network monitoring solutions to meet CMMC and NIST 800-53 control requirements
- Conduct gap analyses and support internal and third-party compliance assessments (C3PAO readiness) for CMMC Level 2 certification
- Develop, maintain, and continuously improve System Security Plans (SSPs), Plans of Action & Milestones (POA&Ms), and associated documentation
- Monitor security alerts, investigate anomalies, and lead incident response activities in accordance with documented IR procedures
- Enforce CUI (Controlled Unclassified Information) handling policies and ensure data flows are properly segmented and protected across on-premises and cloud environments
- Collaborate with IT and engineering teams to integrate security controls into infrastructure design, cloud migrations, and system deployments
- Perform regular vulnerability scans, risk assessments, and remediation tracking in accordance with NIST RMF processes
- Support audit readiness activities including evidence collection, control testing, and stakeholder interviews
- Stay current with evolving DoD cybersecurity requirements, DIBNet guidance, and CMMC Accreditation Body updates
Education & Experience Requirements
- Bachelor's degree in Information Technology, Business, Engineering, or a related field required; Master's degree preferred
- 3-6 years of hands-on experience in cybersecurity engineering, security operations, or compliance roles
- Demonstrated experience implementing or assessing controls against NIST SP 800-53 and/or NIST SP 800-171
- Working knowledge of CMMC Level 2 requirements and the assessment process
- Proficiency with security tooling such as SIEM platforms (Splunk, Microsoft Sentinel, or similar), EDR solutions (CrowdStrike, Defender for Endpoint), and vulnerability scanners (Tenable, Qualys)
- Familiarity with Microsoft 365 GCC-High or equivalent government cloud environments
- Experience with network segmentation, firewall policy review, and secure architecture principles
- Strong documentation skills - SSPs, POA&Ms, risk registers, and security policies
- Ability to obtain security clearance required; prefer an active Secret Clearance
Preferred Qualifications:
- Experience with the Fortinet product stack
- Familiarity with ITAR, EAR, or export-controlled data handling requirements
- Exposure to OT/ICS security standards (IEC 62443, NIST SP 800-82)
- Scripting or automation experience (PowerShell, Python, Ansible)
- Certifications: Security+, CISSP, CISM, CCP (CMMC Certified Professional), or CASP+
