Cyber Engineer

Position Title: Cyber Engineer
Position Type: Full-time, Fully On-Site
Location: Chantilly, VA
Clearance: Active TS/SCI FS Poly

Description:
Waypoint's client is seeking a creative and versatile Cyber Engineer to join our team for a program in Chantilly, VA. In this role, you will be instrumental to a major initiative overseeing the full lifecycle of IT managed security services for a government client. You will focus on providing robust situational awareness of the enterprise's security posture and the evolving threat landscape. The ideal candidate is a proactive problem-solver who can blend offensive tactics with defensive strategies to design, build, and protect critical systems. You will be empowered to take ownership of complex projects and make a significant impact on national security.

Responsibilities:

• Engineer and deploy custom software and hardware solutions tailored for both red team (offensive) and blue team (defensive) cyber operations.
• Conduct in-depth vulnerability research, perform reverse engineering on emergent threats, and develop sophisticated exploits and payloads to test and validate defenses.
• Architect and maintain a secure development environment, integrating security into the software lifecycle through code analysis, penetration testing, and vulnerability mitigation.
• Deploy, operate, and fine-tune a suite of advanced cybersecurity tools, including Endpoint Detection and Response (EDR), firewalls, and Intrusion Detection/Prevention Systems (IDS/IPS).
• Serve as a key responder during security incidents, leading investigation efforts from initial detection and analysis through to root cause determination and remediation.
• Proactively identify and remediate security weaknesses by conducting continuous vulnerability assessments and managing system patching and configuration.
• Oversee and strengthen identity and access management (IAM) frameworks, implementing principles of least privilege and managing privileged access and multi-factor authentication systems.
• Secure and monitor hybrid cloud environments (AWS, Azure, GCP), ensuring security controls are properly configured and effective.

Required Skills:

• Must possess an active Top Secret security clearance with Full Scope Polygraph (TS/SCI with FS Poly). This clearance must be current and active.
• A Bachelor's degree combined with 8 to 12 years of relevant professional experience. Equivalent hands-on experience may be substituted for a degree.
• A strong grasp of Department of Defense (DoD) IT security requirements and protocols.
• Demonstrated proficiency in operating and maintaining core security technologies, including SIEM platforms, EDR solutions, firewalls, and vulnerability scanners.
• Foundational skills in scripting and automation using languages like Python, PowerShell, or Bash.
• Solid understanding of incident response methodologies and best practices for investigating security events.
• Working knowledge of securing public cloud infrastructure (AWS, Azure, or GCP).
• Must be a U.S. Citizen and able to work onsite at the client location in Chantilly, VA.

Desired Skills:

• A Master's degree in a relevant technical field.
• Possession of elite industry certifications such as CISSP, OSCP, CEH, or GIAC Security Expert (GSE).
• Specialized credentials in cloud security (e.g., AWS Certified Security, Azure Security Engineer, CCSP).
• Practical experience executing red team/blue team exercises and comprehensive penetration tests.
• Advanced knowledge of modern security paradigms like Zero Trust architecture and micro-segmentation.