Senior Cybersecurity Engineer

Benefits

Additional Information

Torch Technologies Thank you for your interest in employment with Torch Technologies. We are a 100% employee-owned, Certified Great Place To Work and named Best Places to Work in Huntsville/Madison County, headquartered in Huntsville, AL. Our team provides superior research, development, and engineering services to the Federal Government and Department of War. As one of the nation's top 100 defense companies, the services we provide directly support the men and women who serve our country. Our corporate mission sums up the pride our employee-owners take in the work we do: "Lighting the Pathway of Freedom". And, as a Certified Evergreen ESOP, we have made the commitment to grow and sustain our company for the next 100 years! Come grow with us! Torch Technologies has an exciting opportunity for a Senior Cybersecurity Engineer for the Tenants Contract, supporting the Air Force Division at the Air Force Research Laboratory Munitions Directorate's Integration and Operations Division (AFRL/RWOC) at Eglin AFB, FL. We are seeking a mission-focused Cybersecurity Engineer to work in tandem with network engineering to secure and defend multiple Science & Technology (S&T) networks-advanced, high-bandwidth, and configurable network supporting the research and development needs of scientists, engineers, and collaborative partners. As a Senior Cybersecurity Engineer your duties include, but are not limited to: Collaborate with network engineers to architect secure network topologies for current and future connected and isolated environments, ensuring security is embedded in the design phase. Design and deploy security solutions for S&T environments that support continuous research, development, and DevSecOps, working closely with network engineers to implement and maintain these solutions. Advise on security planning for long-term initiatives, including SDREN integration and the Weapons Technology Integration Center (WTIC) and other facility projects, in conjunction with network planning efforts. Develop security innovation roadmaps aligned with mission goals and emerging technologies, coordinating with network engineers to ensure alignment with network modernization efforts. Coordinate with facilities, engineering, and network teams to ensure robust infrastructure supports secure research operations, focusing on the security aspects of network hardware/power/cooling needs and structured cabling. Lead security aspects of containerization, virtualization, and orchestration of systems to support laboratory computing, HPC, and edge devices, working with network engineers to implement secure configurations. Coordinate with facilities, engineering, and network teams to ensure robust infrastructure supports secure research operations, focusing on the security aspects of network hardware/power/cooling needs and structured cabling. Lead security aspects of containerization, virtualization, and orchestration of systems to support laboratory computing, HPC, and edge devices, working with network engineers to implement secure configurations. Engineer multiple S&T networks security architecture in compliance with NIST 800-series, DoW RMF, DISA Security Technical Implementation Guides (STIGs), and cybersecurity best practices, collaborating with network engineers to ensure seamless integration. Review engineering, architecture, and designs to ensure DoW security policies are met. Implement DevSecOps pipelines to automate security scans and CI/CD deployments, working with network engineers to integrate security into existing pipelines. Manage ATO package development and collaborate with ISSMs, network engineers, and cybersecurity stakeholders to ensure compliance. Review and develop RMF Assessment and Authorization (A&A) documentation, e.g. System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms). Integrate identity management and single sign-on solutions across enclaves and hybrid environments, coordinating with network engineers to implement and maintain these solutions. Analyze and tune HBSS policies for assets during integration test events. Perform verification and troubleshooting across all HBSS modules. Install updates to HBSS software as released and in compliance with STIG requirements. Monitor HBSS software to ensure that the clients/servers are operational and reporting properly; test and provide software fixes as needed. Monitor HBSS for any intrusions or rogues. Deploy and maintain security controls for hybrid cloud services and virtualization platforms (e.g., VMware, AWS, Azure), working with network engineers to ensure secure configurations. Design and manage security aspects of storage (SAN, EFS, EBS), automation (Terraform, Packer, Ansible), and orchestration (Kubernetes, Docker) solutions. Enable secure connectivity between scientific equipment, cloud resources, and virtual desktops, collaborating with network engineers to implement and maintain the