Lead Cyber Hygiene Engineer (Cybersecurity)

TL;DR

Lead Cyber Hygiene Engineer (Cybersecurity): Lead risk-based asset management efforts across vulnerability management, configuration management, and database hardening in support of a federal cybersecurity program with an accent on prioritization, remediation tracking, and compliance validation. Focus on coordinating technical activities, developing dashboards and reports, supporting automation through scripting, and maturing enterprise security practices.

Location: Hybrid (Mid-Atlantic Region: DC, DE, MD, NC, VA, WV)

Company

Veteran-owned small business delivering top-tier cybersecurity services to federal customers, recognized as Best Places to Work and on Inc. 5000 list of fastest-growing companies.

What you will do

• Oversee RBAM projects, schedules, milestones, and team execution including vulnerability scanning, analysis, prioritization, and remediation.
• Facilitate meetings, brief leadership on status, risks, priorities, and progress using dashboards in Splunk or similar SIEM.
• Establish and enforce configuration baselines across Windows, Linux, network, cloud, containerized, and database environments aligned with NIST and federal guidance.
• Coordinate database hardening activities for relational, NoSQL, and cloud-native databases using DISA STIGs, CIS Benchmarks, and best practices.
• Support automation, DevSecOps, CI/CD integration, and process improvements for remediation, evidence generation, and reporting.
• Provide technical guidance to stakeholders and ensure alignment with DHS, client, and federal cybersecurity expectations.

Requirements

• Bachelor’s degree in IT, CS, or related field or equivalent experience
• 7+ years total experience, 5+ in vulnerability management, configuration management, or database hardening
• Experience leading technical teams or workstreams in dynamic environments
• Strong experience with vulnerability scanning tools like Tenable/Nessus, CVE/CVSS/NVD/CISA KEV
• Knowledge of DISA STIGs, CIS Benchmarks, secure hardening across Windows/Linux/network/cloud/databases
• Experience with scripting (Python, PowerShell, Bash), dashboards (Splunk), ticketing (ServiceNow), DevSecOps
• Experience with databases: Oracle, PostgreSQL, MySQL, MS SQL, MongoDB, Amazon RDS, Azure SQL, DynamoDB
• One active certification: CASP, GSEC, GSLC, CISSP, CEH, CISM, CISA or comparable
• One active Agile certification: PMI-ACP, SAFe Agilist, CSM or comparable
• Strong written and verbal communication skills

Culture & Benefits

• Competitive salary paid twice per month
• Best-in-class medical coverage with 100% premiums covered by company
• 401k with 100% company match on first 4%
• 3 weeks PTO starting + 11 paid holidays annually
• Paternity/maternity leave
• Monthly reimbursement for cell phone and home internet
• Investment in training and certifications
• Company-wide new business incentives and contribution rewards (white papers, webinars)