Cybersecurity Engineer
Cybersecurity Engineer
Department: Cloud Engineering
Employment Type: Full Time
Location: Remote
Description
Chainbridge Solutions is a recognized leader in federal software engineering and application modernization. We are seeking a highly experienced Cybersecurity Engineer to drive the advancement of our security posture across mission-critical systems. This position is ideal for a cybersecurity expert with deep knowledge of federal IT security standards who thrives in dynamic environments, excels at rapid solution prototyping, and enjoys collaborating with clients and cross-functional team.
As our Cybersecurity Engineer, you will play a critical role in ensuring that our systems and applications are securely designed, implemented, and maintained in accordance with rigorous federal cybersecurity frameworks and evolving threat landscapes. You will serve as the Chainbridge Solutions cybersecurity subject matter expert, engaging directly with clients to understand their security requirements and translate them into actionable, auditable solutions. In partnership with internal teams, you will integrate security best practices throughout the software development lifecycle and lead efforts to maintain compliance across all phases of system delivery.
Key Responsibilities
Security Governance & Compliance
• Develop and implement security policies and practices aligned with NIST and federal requirements, in support of client applications and AWS environments
• Provide input on security architecture, support organizational approvals, and contribute to documentation such as scan summaries and patch validation notes
• Ensure RMF compliance through continuous monitoring, audit preparation, and evidence collection
Risk & Vulnerability Management
• Analyze IAVA and ACAS scan results to assess risk and coordinate remediation with client technical teams and application owners
• Manage the full vulnerability lifecycle (triage, CAT I/II prioritization, Jira tracking, scan validation), ensuring documentation meets client and RMF requirements
• Perform threat modeling and vulnerability analysis during system design and development to proactively mitigate risks
• Support incident response and risk mitigation activities in coordination with cross functional team
Secure Implementation & Engineering Support
• Guide project team in secure coding practices, including Fortify scans, STIG remediation, and adherence to CWE/SANS Top 25 and other secure design standards
• Advise project teams on cybersecurity best practices, design strategies, and implementation approaches to support secure system development
• Partner with system administrators and developers to implement and validate security controls in AWS cloud-based environments. Maintain the system's security posture in the cloud environment (e.g., AWS Cloud One), including ensuring data security and environment hardening
Client Engagement & Strategic Awareness
• Serve as a cybersecurity SME and trusted advisor to client teams, ensuring alignment on security strategy, compliance, and risk posture
• Participate in client facing meetings, Agile ceremonies, and security reviews to advocate for secure design and timely risk mitigation
• Stay current with evolving cybersecurity threats, technologies, and best practices to inform and strengthen organizational security strategy
Skills, Knowledge and Expertise
• CompTIA Security+ certification is required
• US Citizen and Completed Public Trust Investigation are required
• Bachelor’s degree in Cybersecurity, Computer Science, or a related field
• At least 8 years of experience in cybersecurity, with significant experience supporting federal programs
• Proficiency with advanced cybersecurity tools and practices, especially in DevSecOps environments (e.g., SAST, DAST, container security, configuration management, and IaC security)
• Strong understanding of NIST standards and federal government security protocols
• Demonstrated expertise in application security, secure coding, threat modeling, risk assessment, and cloud-based security
• Strong written and verbal communication skills, with a particular emphasis on building trust and alignment with client cybersecurity stakeholders through clear, proactive, and collaborative engagement.
• This position may require an on-site interview. Remote roles may also require employees to come to our office annually for an in-person meeting.
Preferred Qualifications:
• Advanced Security Certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or similar credentials.
Physical and Mental Requirements:
• Frequently remain in a stationary position, often standing or sitting for prolonged periods of time looking at a computer screen.
• Willing to be on camera for all customer and internal meetings.
• Continuous verbal and written communication with others to exchange information.
• Continuous repetitive movements that may include the wrists, hands, and/or fingers.
• Continuous understanding of direction and adhere to established procedures.
• Continuous ability to gather and classify information.
• Continuous use of reasoning and decision-making logic to analyze and interpret information and prioritize.
Apply tot his job
Apply To this Job