×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Cybersecurity Engineer; Linux

Job in McLean, Fairfax County, Virginia, USA
Listing for: General Dynamics Information Technology
Full Time position
Listed on 2026-03-11
Job specializations:
  • IT/Tech
    Cybersecurity
  • Engineering
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: Cybersecurity Engineer (Linux)

Job Qualifications

  • Cybersecurity, Endpoint Security, Linux, Splunk Enterprise Security
  • Top Secret/SCI clearance currently possessed
  • Top Secret/SCI clearance able to obtain
  • Public Trust/Other

    Required:

    None
  • Job Family:
    Cyber and IT Risk Management
  • Experience:

    8+ years related experience
  • US Citizenship

    Required:

    Yes
Job Description

We are seeking a highly skilled and multi‑faceted Cyber Engineer for a critical contract role supporting Google's SIPRNet enclave. The ideal candidate is a proactive and seasoned professional with extensive, hands‑on experience navigating Red Hat Linux, the NIST 800‑53 Risk Management Framework (RMF) control requirements, and Security Operations for a classified network in a unique commercial cloud setting. This role requires a blend of technical engineering prowess to provide Security Operations support as well as a deep understanding of continuous monitoring control requirements to prepare for security assessments and auditing.

You will be a key contributor to our SIPR Enclave team, supporting the SIPR Enclave Lead in RMF activities and the Senior Cyber Engineer in security operations support.

How The Cybersecurity Engineer Will Make An Impact From a RMF perspective
  • Supports maintaining the Continuous Monitoring program, specifically around vulnerability management, endpoint security, auditing, and security alert triage/monitoring.
  • Supports control implementation statement updates, documentation development for plans or procedures, artifact identification for assessments, and body of evidence generation.
  • Supports POAM mitigation and/or remediation activities.
From a Security Tools administrative perspective
  • Ability to update and maintain security tool versions (Splunk, Trelix, etc)
  • Configure, patch, and update the Linux operating systems
  • Monitors the following security applications:
    Splunk, Trelix, Tenable
  • Scanning implementation (Tenable.sc, SCC Tool)
  • SIEM implementation (Splunk)
  • Endpoint security implementation (Trellix)
  • Works with the vendors of the security applications as applicable to maintain security updates, licenses, resolve support issues (e.g., for Tenable plugins)
For The SIEM
  • Ensure security systems are up to date and implemented.
  • Validate the telemetry from the hosts and security applications are forwarded to the SIEM.
  • Configures alerts for privileged activity that would be conducted in the enclave as well as alerts from security advisories.
  • Triages all alerts from the SIEM to ensure activity in the environment is authorized.
  • Investigates, resolves, and reports security incidents in alignment with the Incident Response Plan.
For Scanning/STIGs
  • Ensures the inventory of hosts and recurring/ad‑hoc scan policies are accurate.
  • Reviews the scans to confirm correct, actionable data is generated to support the patching activities.
  • Reviews STIG results and supports the team in implementing corrective action as applicable.
For Endpoint Management
  • Ensures all hosts can be seen in the endpoint security application with ongoing monitoring and applicable policies applied.
  • Triages all alerts from the tool to ensure activity in the environment is authorized.
  • For insider threat monitoring:
  • Ensures deployment of tool and related modules are performing as intended.
  • Monitors aggregate user data as directed.
  • Designs, develops, tests, and evaluates information system security throughout the systems development life cycle.
What You'll Need To Be Successful
  • Education:

    BA/BS Degree or equivalent experience in lieu of degree
  • Experience:

    8+ years related experience
  • Ability to use security operations of Splunk and Trelix.
  • Ability to update security applications, such as Splunk and Trelix.
  • Ability to harden the system using STIGs.
  • Ability to update the underlying security tools Linux operating system.
  • Role requirements:

    Knowledge of the complete NIST SP 800 series (especially 800‑37, 800‑53, 800‑30) and risk management principles.
  • Certifications:

    Must be DoD 8140 / 8570.01‑M compliant (e.g., including but not limited to Security+)
  • Investigation/Clearance Level:
    • Must possess a current and active Top Secret (Sensitive Compartmented Information [SCI] eligibility).
Location

Onsite at the classified operations center in McLean, VA.

Preferr…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search