Today
Secret
Mid Level Career (5+ yrs experience)
IT - Security
Overview:
Planned Systems International (PSI) is an Enterprise IT services company who focuses on designing, building, securing, and operating cutting-edge software solutions that drive mission success and operational excellence for Federal Government organizations. We are dedicated to supporting the Air Force’s technological edge by delivering innovative software engineering services that directly support cyber operations, threat defense, and mission assurance. Our goal is to be a trusted mission partner in enabling cyber readiness and resilience across the Air Force and U.S. Cyber Command.
We’re seeking a detail-oriented and proactive Senior Cyber Security Engineer to join our team supporting the U.S. Air Force’s Unified Platform Software Factory in San Antonio. In this role, you’ll help defend critical Air Force cyber infrastructure, drive compliance with Department of Defense security standards, and enhance the security posture of operational systems that protect national interests. You’ll work closely with development, infrastructure, and mission teams to secure platforms across their entire lifecycle—from design and implementation to ongoing monitoring and incident response.
Ideal candidates bring deep expertise in cybersecurity principles, hands-on experience with cloud and container security, and the ability to lead threat detection and mitigation strategies in real-time. If you’re driven by mission impact and thrive in fast-paced, agile environments, we want to hear from you.
Essential Functions and Job Responsibilities:
Design and implement security architectures for cloud-native and containerized systems in compliance with DoD cybersecurity standards.
Perform vulnerability assessments, risk analysis, and compliance audits across mission systems.
Integrate and maintain security tools such as container scanners, static and dynamic analysis, SIEM, EDR, and intrusion detection systems.
Analyze system logs, alerts, and telemetry to detect and respond to threats in near-real-time, and lead gap assessments to identify missing security data sources across the full stack—including cloud, network, database, platform, and application layers.
Coordinate the integration of security tooling (e.g., Nessus, Wazuh, Fleet) into the environment, and develop actionable dashboards and alerting content to support cyber analysts and incident responders.
Enforce security best practices and compliance with frameworks such as NIST SP 800-53, RMF, DISA STIGs, and the DoD Enterprise DevSecOps Reference Design.
Collaborate with DevSecOps and SRE teams to embed security throughout the CI/CD pipeline.
Participate in security incident response and forensic analysis, including root cause identification and mitigation planning.
Maintain and optimize Identity and Access Management (IAM) policies, Role-Based Access Control (RBAC), and secrets management.
Provide guidance and mentorship to engineering teams on secure coding, system hardening, and threat modeling.
Develop and maintain documentation for security procedures, policies, and system configurations.
Support Authority to Operate (ATO) processes and security authorization packages under RMF.
Minimum Requirements:
Active T3 investigation, with the ability to obtain and maintain necessary security clearances as required for access to classified information.
Hands-on experience in Cyber Security Engineering, Blue Team Operations, or Security Architecture in defense or secure government environments.
Deep understanding of cybersecurity principles including zero trust architecture, defense-in-depth, and layered security models.
Familiarity with common tools and technologies used in cyber defense such as Nessus, Splunk, Wireshark, OSQuery, Suricata, Snort, and ELK.
Experience securing systems on AWS or other cloud environments and implementing cloud-native security practices.
Strong knowledge of Kubernetes security, container scanning, and runtime protection (e.g., Twistlock, Aqua, Sysdig, etc.).
Demonstrated expertise in network architecture and traffic inspection, including designing and operating inspection points and transit gateways to enable SOC visibility and control over traffic across applications.
Scripting experience (Python, Bash) for automation of security tasks and data analysis.
Experience leading security compliance efforts and working with RMF/ATO processes.
Familiarity with threat modeling, penetration testing, and incident response procedures.
Active secret clearance is required, with TS/SCI preferred.
Industry certifications such as CISSP, CEH, GCIH, GCIA, or AWS Security Specialty are preferred.
B.S. in Cybersecurity, Information Assurance, Computer Science, or equivalent experience.
Planned Systems International (PSI) is an Enterprise IT services company who focuses on designing, building, securing, and operating cutting-edge software solutions that drive mission success and operational excellence for Federal Government organizations. We are dedicated to supporting the Air Force’s technological edge by delivering innovative software engineering services that directly support cyber operations, threat defense, and mission assurance. Our goal is to be a trusted mission partner in enabling cyber readiness and resilience across the Air Force and U.S. Cyber Command.
We’re seeking a detail-oriented and proactive Senior Cyber Security Engineer to join our team supporting the U.S. Air Force’s Unified Platform Software Factory in San Antonio. In this role, you’ll help defend critical Air Force cyber infrastructure, drive compliance with Department of Defense security standards, and enhance the security posture of operational systems that protect national interests. You’ll work closely with development, infrastructure, and mission teams to secure platforms across their entire lifecycle—from design and implementation to ongoing monitoring and incident response.
Ideal candidates bring deep expertise in cybersecurity principles, hands-on experience with cloud and container security, and the ability to lead threat detection and mitigation strategies in real-time. If you’re driven by mission impact and thrive in fast-paced, agile environments, we want to hear from you.
Essential Functions and Job Responsibilities:
Design and implement security architectures for cloud-native and containerized systems in compliance with DoD cybersecurity standards.
Perform vulnerability assessments, risk analysis, and compliance audits across mission systems.
Integrate and maintain security tools such as container scanners, static and dynamic analysis, SIEM, EDR, and intrusion detection systems.
Analyze system logs, alerts, and telemetry to detect and respond to threats in near-real-time, and lead gap assessments to identify missing security data sources across the full stack—including cloud, network, database, platform, and application layers.
Coordinate the integration of security tooling (e.g., Nessus, Wazuh, Fleet) into the environment, and develop actionable dashboards and alerting content to support cyber analysts and incident responders.
Enforce security best practices and compliance with frameworks such as NIST SP 800-53, RMF, DISA STIGs, and the DoD Enterprise DevSecOps Reference Design.
Collaborate with DevSecOps and SRE teams to embed security throughout the CI/CD pipeline.
Participate in security incident response and forensic analysis, including root cause identification and mitigation planning.
Maintain and optimize Identity and Access Management (IAM) policies, Role-Based Access Control (RBAC), and secrets management.
Provide guidance and mentorship to engineering teams on secure coding, system hardening, and threat modeling.
Develop and maintain documentation for security procedures, policies, and system configurations.
Support Authority to Operate (ATO) processes and security authorization packages under RMF.
Minimum Requirements:
Active T3 investigation, with the ability to obtain and maintain necessary security clearances as required for access to classified information.
Hands-on experience in Cyber Security Engineering, Blue Team Operations, or Security Architecture in defense or secure government environments.
Deep understanding of cybersecurity principles including zero trust architecture, defense-in-depth, and layered security models.
Familiarity with common tools and technologies used in cyber defense such as Nessus, Splunk, Wireshark, OSQuery, Suricata, Snort, and ELK.
Experience securing systems on AWS or other cloud environments and implementing cloud-native security practices.
Strong knowledge of Kubernetes security, container scanning, and runtime protection (e.g., Twistlock, Aqua, Sysdig, etc.).
Demonstrated expertise in network architecture and traffic inspection, including designing and operating inspection points and transit gateways to enable SOC visibility and control over traffic across applications.
Scripting experience (Python, Bash) for automation of security tasks and data analysis.
Experience leading security compliance efforts and working with RMF/ATO processes.
Familiarity with threat modeling, penetration testing, and incident response procedures.
Active secret clearance is required, with TS/SCI preferred.
Industry certifications such as CISSP, CEH, GCIH, GCIA, or AWS Security Specialty are preferred.
B.S. in Cybersecurity, Information Assurance, Computer Science, or equivalent experience.
group id: RTL413949
