Cybersecurity Engineer

Job Description

Job Description

Location: Mesa, AZ with occasional travel CONUS

Clearance: Government Security Clearance Eligibility Required

Job Type: Full-Time | Contract

Travel: Occasional CONUS/OCONUS

Medical Requirements: Ability to meet Army Conus Replacement Center (CRC) MOD-17 medical requirements for deployment.

Company Overview:

Elevated Technologies, LLC is a leading provider of advanced technology solutions supporting information technology, aviation maintenance, and intelligence, surveillance, and reconnaissance (ISR) platforms. We deliver mission-critical solutions to government and commercial clients with a commitment to excellence and security.

Position Summary:

Elevated Technologies, LLC is seeking a skilled and mission-focused Cybersecurity Engineer to support the Airspace and Surface Radar Reconnaissance (ASRR) system under the DoD Foreign Military Sales (FMS) program. This role is responsible for the design, implementation, and sustainment of cybersecurity controls across airborne and ground-based systems, ensuring full compliance with U.S. Government and partner nation security requirements. The ideal candidate will bring expertise in system hardening, risk management, vulnerability assessment, and secure architecture to protect mission-critical networks and assets throughout the system lifecycle.

Key Responsibilities:

• Cybersecurity Architecture & Design:
  • Support the design, development, and integration of secure architecture for the ASRR system, ensuring all airborne and ground components are compliant with DoDI 8500.01 (Cybersecurity), DoDI 8510.01 (RMF), AR 25-2, and applicable Combatant Command (CCMD) cybersecurity requirements.
• Security Documentation: 
  • Support and maintain System Security Plans (SSP), Security Assessment Reports (SAR), Contingency Plan, Standard Operating Procedures (SOPs), Change Management Plan, Plan of Action and Milestones (POA&M), Ports, Protocols, & Services, and other required security documentation.
• Enterprise Mission Assurance Support Service (eMASS):

• Support, manage, and maintain RMF packages within the Enterprise Mission Assurance Support Service (eMASS).

• Security Assessments and Audits: 
  • Conduct vulnerability assessments, security audits, and continuous monitoring to identify and mitigate security risks.
• Security Control Implementation: 
  • Oversee the implementation of security controls and ensure their effectiveness throughout the system lifecycle.
  • Implement Information Assurance and risk management strategies using NIST SP 800-53, SP 800-39 (Risk Management), SP 800-35 (Patch Management), and CNSSI 1253, ensuring traceable, audit-ready security controls across system boundaries.
• Incident Response & CUI Safeguarding: 
  • Familiarity with DFARS 252.204-7012 requirements for safeguarding Controlled Unclassified Information (CUI) and reporting cyber incidents
  • Develop documentation, investigate, and respond to security incidents, ensuring compliance with Government incident reporting guidelines.
• Compliance Management: 
  • Ensure compliance with Government regulations, including DoD 8500.01, DoD 8510.01, RMF, CNSSI, and NIST SP guidelines.
• Collaboration and Coordination: 
  • Work closely with system owners, program managers, cybersecurity & infrastructure teams, and external auditors to ensure compliance and security requirements are met.
• Security Awareness Training: 
  • Ensure security awareness and training programs for system users and administrators.
• Patch Management & Validation Environment:
  • Utilize a System Integration Lab (SIL) / Cybersecurity Framework (CSF) to validate software patches, firmware updates, and configuration changes before deployment to the operational environment. Maintain a version-controlled repository for rollback, audit, and historical traceability.
• Continuous Monitoring: 
  • Contribute to the execution of continuous monitoring strategies, including automated scans, security audits, configuration checks, and POA&M tracking. Support Program Protection Plan (PPP) activities and sustainment of cybersecurity posture throughout the system lifecycle.

Required Qualifications :

• Clearance: Government Security Clearance eligibility required.
• Education: Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Experience: Minimum of 5-10 years of hands-on experience as a Cybersecurity Engineer supporting government programs.
• Experience with Vulnerability Management, DISA STIGs, & SCAP Compliance Checker: Knowledge of Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) tools for device hardening and compliance verification. Perform credentialed vulnerability scanning and manual control checks using tools such as ACAS, Nessus, and STIG checklists producing files/artifacts. Coordinate results with security teams and submit findings in compliant formats to meet assessment requirements.
• Knowledge of Federal Regulations: In-depth understanding of cybersecurity policies, Authority to Operate (ATO) process, and continuous monitoring, including DoD 8500.01, DoD 8510.01 (RMF), CNSSI 1253, NIST Special Publications (800-37, 800-53, 800-171, etc), and FISMA.
• Certifications: Must possess DoD 8570.01-M IAT Level II or higher certifications (e.g., CompTIA Security+, SSCP, CISSP, or CASP).
• Communication Skills: Excellent written and verbal communication skills with the ability to interact with technical and non-technical stakeholders.
• Analytical Skills: Strong analytical and problem-solving skills to identify and mitigate security risks.

Preferred Qualifications:

• Advanced Certifications: CISSP-ISSEP, CISSP-ISSMP, or other advanced cybersecurity certifications.
• Cloud Security Experience: Familiarity with cloud security frameworks (e.g., AWS, Azure, or other cloud environments).
• Knowledge of NATO Regulations: Familiarity with NATO cybersecurity frameworks, including Technical and Implementation Directive on CIS Security (AC/322-D/0048-Rev3).
• Experience supporting C4ISR or aerostat-based platforms in expeditionary or fixed-site environments.
• Familiarity with Partner Nation Cybersecurity Risk Review (PNCRR) processes and documentation requirements under FMS agreements.
• Experience supporting international system accreditation, cross-domain solution design, or NATO system integrations.