Cybersecurity Engineer

Position Overview

This position is for a Cybersecurity Engineer supporting the Army Edge Computing Capability (AECC) project that ALTESS is fielding for the US Army. The AECC solution is a containerized, Kubernetes-based, multitenant hosting environment for hosting Army enterprise and tactical applications. AECC utilizes Kubernetes and potentially Red Hat OpenShift to implement a cloud-native, software-defined infrastructure across multiple global sites . ALTESS provides value-added common and managed services built on top of the Kubernetes foundation that hosted Army applications will require. ALTESS is a managed service provider (MSP) and hosting services provider for Army applications. ALTESS is a Product Lead office under Capability Program Executive (CPE) Enterprise Software and Services (CPE ES2).

Quick Facts

• Location: Radford, VA (Hybrid telework/onsite as needed)
• Security Clearance: Active DoD Secret
• Citizenship: US Citizenship Required
• Education: Bachelor's degree or higher in an IT-related field
• Experience: Senior-level experience in cybersecurity and Kubernetes-based environments
• Work Schedule: Full-time

Mandatory Certifications

• DoD 8140: Cybersecurity ISSM (722 role or similar)
• Baseline: Security+ CE
• Computing Environment: Must obtain a certification (CKS, CKA, AWS Certified Security, etc.) within 6 months of hire

Key Responsibilities

• Tool Management: Deploy, configure, and manage cybersecurity tools for Kubernetes, including vulnerability scanners and runtime security tools like Falco.
• Access Control: Implement and monitor Role-Based Access Control (RBAC) and Pod Security Standards (PSS) to enforce least privilege.
• System Hardening: Harden Kubernetes clusters and containerized workloads using DoD STIGs and industry best practices.
• Vulnerability Management: Perform regular vulnerability assessments and coordinate remediation efforts with technical teams.

Required Technical Skills

• Kubernetes Security: Expertise in monitoring RBAC, network policies, and PSS within Kubernetes environments.
• Compliance Frameworks: Familiarity with NIST 800-53, CIS Benchmarks, and DoD STIGs.
• Automation: Proficiency in tools like Ansible, Terraform, and scripting languages such as Python or Bash.
• SIEM Solutions: Experience implementing and tuning SIEM solutions like Splunk or Elasticsearch.

Preferred Skills & Experience

• DoD Compliance: Working knowledge of DoD STIGs and IA Vulnerability Management (IAVM).
• Cloud Experience: Basic understanding of Red Hat OpenShift and cloud-native security defenses.

What We Can Offer You

• Excellence: The chance to be part of a company that has a reputation for excellence in task execution.
• Time Off: Full-time associates receive 3 weeks of paid vacation each year plus 11 federal holidays.
• Health Benefits: Comprehensive Medical (Blue Cross Blue Shield), Secondary Insurance, Dental, and Vision.
• Financial Security: 401K program with Fidelity (including company match) and Flexible Spending Account (FSA).
• Insurance: Short-term and Long-term Disability at no cost, plus Voluntary Life and AD&D options.