OverviewSenior Cybersecurity EngineerLocation: Washington, DC
Salary Range $137,000 to $142,000 per year
Kiakahi LLC is looking for an experienced Senior Cybersecurity Engineer to join its team.
Security Operations & Continuous Monitoring- Execute security operations through centralized monitoring of system logs, endpoint activity, and network traffic using enterprise tools such as ACAS, Nessus, SCAP, and endpoint security platforms
- Configure and maintain SIEM platforms (Microsoft Sentinel), including data connector configuration, correlation rule development and tuning, and SOAR playbook development for automated response workflows
- Provide continuous visibility into vulnerabilities, system anomalies, and potential threats across both cloud and on-premises infrastructure
- Conduct proactive threat hunting on a defined schedule, executing hypothesis-driven queries across the log estate to identify behavioral patterns below automated detection thresholds
Threat Detection & Incident Response- Perform log aggregation, correlation analysis, and validation of indicators of compromise
- Coordinate containment, investigation, and remediation actions when potential incidents are identified
- Isolate affected systems, validate system integrity, and document all actions to support reporting and compliance requirements
- Execute incident response activities in accordance with the NIGC IR plan
- Security Tool Administration
- Deploy and operationally manage Microsoft Defender EDR, IDS/IPS solutions, and Azure/M365 security controls in the hybrid production environment
- Lead implementation and sustainment of vulnerability management and centralized log management solutions
- Integrate CDM program tools with Microsoft Sentinel as additional telemetry sources for continuous monitoring posture reporting
- Configure Syslog aggregation pipelines from on-premises network and server infrastructure
Regulatory Compliance & Framework Implementation- Apply NIST SP 800-37 RMF methodology across Defense, Intelligence, and Civilian frameworks
- Support FISMA compliance through implementation of NIST SP 800-53 control families and continuous monitoring under NIST SP 800-137
- Monitor CISA guidance channels for new Binding Operational Directives (BODs) and Emergency Directives, assessing applicability within five business days
- Develop and maintain System Security Plans (SSPs) and Security Control Traceability Matrices (SCTMs)
RequirementsExperienceThis position requires the candidate to be a US Citizen and capable of passing a National Agency Check with Investigation to obtain a Public Trust.
- Minimum six (6) continuous years of experience in cybersecurity engineering and security operations
- Senior-level proficiency with direct, hands-on experience with the following technologies:
- SIEM platforms (Microsoft Sentinel, Splunk)
- SOAR tools and automated response workflows
- NDR (Network Detection and Response)
- EDR (Endpoint Detection and Response) - Microsoft Defender
- Identity Management systems (Microsoft Entra ID)
- Vulnerability scanning tools (ACAS, Tenable.SC, Nessus, SCAP)
- Linux and Windows Server administration
- Cisco Networking infrastructure
- VMware virtualization environments
Technical Knowledge- Deep RMF expertise across Defense, Intelligence, and Civilian frameworks (NIST SP 800-37, CNSSI 1253, ICD 503)
- Familiarity with NIST 800-series publications (800-30, 800-53, 800-137, 800-160/161) and FIPS-199/200
- Experience with eMASS for RMF package management
- Proficiency in DISA STIG hardening and SCAP validations
Certifications (Required/Preferred)- CISSP (Certified Information Systems Security Professional)
- CompTIA SecurityX (CASP+) CE, CySA+, Security+, or equivalent
- Additional preferred: GIAC GCCC, Navy Qualified Validator
Education- Bachelor's degree in Information Systems, Cybersecurity, Computer Science, or related field
- Master's degree preferred
This position supports a small federal agency operating a hybrid IT environment consisting of:
On-premises: Cisco networking infrastructure, VMware Hypervisor (
Cloud: Microsoft Azure IaaS/PaaS, Microsoft Entra ID (Azure AD), Microsoft 365 (Exchange/SharePoint/Teams)
Security Stack: Microsoft Sentinel SIEM, Defender EDR, CDM Tools
User Base: Fewer than 150 users across headquarters and distributed locations
Performance Expectations- Ability to operate independently with minimal oversight in a small-team federal environment
- Immediate contribution upon onboarding with minimal ramp-up period
- Deliver measurable improvements in detection accuracy and reduction in false positives
Physical RequirementsWork may involve sitting or standing for extended periods of time. Position may require typing and reading from a computer screen. Must have sufficient mobility, including but not limited to bending, reaching, and kneeling to complete daily duties in a timely and efficient manner. May include lifting weigh up to thirty (30) pounds as necessary.
Benefits- Medical, dental, vision, disability, and life insurance
- Flexible Spending Accounts
- 401(k)
- PTO
- Professional Development
- Paid federal holidays
- Paid Parental Leave
Posted Salary RangeUSD $137,000.00 - USD $147,000.00 /Yr.
