Cybersecurity Engineer Department: Cloud Engineering Employment Type: Full Time Location: Remote Description Chainbridge Solutions is a recognized leader in federal software engineering and application modernization. We are seeking a highly experienced Cybersecurity Engineer to drive the advancement of our security posture across mission-critical systems. This position is ideal for a cybersecurity expert with deep knowledge of federal IT security standards who thrives in dynamic environments, excels at rapid solution prototyping, and enjoys collaborating with clients and cross-functional team. As our Cybersecurity Engineer, you will play a critical role in ensuring that our systems and applications are securely designed, implemented, and maintained in accordance with rigorous federal cybersecurity frameworks and evolving threat landscapes. You will serve as the Chainbridge Solutions cybersecurity subject matter expert, engaging directly with clients to understand their security requirements and translate them into actionable, auditable solutions. In partnership with internal teams, you will integrate security best practices throughout the software development lifecycle and lead efforts to maintain compliance across all phases of system delivery. Key Responsibilities Security Governance & Compliance • Develop and implement security policies and practices aligned with NIST and federal requirements, in support of client applications and AWS environments • Provide input on security architecture, support organizational approvals, and contribute to documentation such as scan summaries and patch validation notes • Ensure RMF compliance through continuous monitoring, audit preparation, and evidence collection Risk & Vulnerability Management • Analyze IAVA and ACAS scan results to assess risk and coordinate remediation with client technical teams and application owners • Manage the full vulnerability lifecycle (triage, CAT I/II prioritization, Jira tracking, scan validation), ensuring documentation meets client and RMF requirements • Perform threat modeling and vulnerability analysis during system design and development to proactively mitigate risks • Support incident response and risk mitigation activities in coordination with cross functional team Secure Implementation & Engineering Support • Guide project team in secure coding practices, including Fortify scans, STIG remediation, and adherence to CWE/SANS Top 25 and other secure design standards • Advise project teams on cybersecurity best practices, design strategies, and implementation approaches to support secure system development • Partner with system administrators and developers to implement and validate security controls in AWS cloud-based environments. Maintain the system's security posture in the cloud environment (e.g., AWS Cloud One), including ensuring data security and environment hardening Client Engagement & Strategic Awareness • Serve as a cybersecurity SME and trusted advisor to client teams, ensuring alignment on security strategy, compliance, and risk posture • Participate in client facing meetings, Agile ceremonies, and security reviews to advocate for secure design and timely risk mitigation • Stay current with evolving cybersecurity threats, technologies, and best practices to inform and strengthen organizational security strategy Skills, Knowledge and Expertise • CompTIA Security+ certification is required • US Citizen and Completed Public Trust Investigation are required • Bachelor’s degree in Cybersecurity, Computer Science, or a related field • At least 8 years of experience in cybersecurity, with significant experience supporting federal programs • Proficiency with advanced cybersecurity tools and practices, especially in DevSecOps environments (e.g., SAST, DAST, container security, configuration management, and IaC security) • Strong understanding of NIST standards and federal government security protocols • Demonstrated expertise in application security, secure coding, threat modeling, risk assessment, and cloud-based security • Strong written and verbal communication skills, with a particular emphasis on building trust and alignment with client cybersecurity stakeholders through clear, proactive, and collaborative engagement Preferred Qualifications: • Advanced Security Certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or similar credentials. Physical and Mental Requirements: • Frequently remain in a stationary position, often standing or sitting for prolonged periods of time looking at a computer screen. • Willing to be on camera for all customer and internal meetings. • Continuous verbal and written communication with others to exchange information. • Continuous repetitive movements that may include the wrists, hands, and/or fingers. • Continuous understanding of direction and adhere to established procedures. • Continuous ability to gather and classify information. • Continuous use of reasoning and decision-making logic to analyze and interpret information and prioritize. Apply tot his job