Cyber Security Engineer

Job Description

Location: Primarily Remote – Must Reside in Washington, DC Metro Area

Clearance Requirement: Active Top Secret (TS)

Position Type: Full-Time

Client: U.S. Department of State – Bureau of Overseas Buildings Operations (OBO)

Travel: Occasional/Potential CONUS/OCONUS

Position Overview

Rexley LLC. is seeking a mission-focused and technically capable Cybersecurity Engineer to support a global information systems security program for the U.S. Department of State's Bureau of Overseas Buildings Operations (OBO). This position provides critical cybersecurity services to over 40 information systems and supports OBO's global IT infrastructure; including classified, unclassified, on-premises, and cloud-based environments.

This position is primarily remote; however, due to evolving Return-to-Office mandates, candidates must reside in the Washington, DC metro area and be available for full-time onsite work if directed by the Government. All classified work must be performed onsite at secure government locations in Arlington, VA.

As a Cybersecurity Engineer, you will be responsible for securing enterprise systems, monitoring for threats, and ensuring compliance with federal cybersecurity regulations. You will support ISSO functions, vulnerability management, DevSecOps integration, and audit readiness across domestic and overseas OBO environments.

Key Responsibilities

Security Operations and Monitoring: Identify and respond to threats across the OBO enterprise using tools like Splunk, Tanium, and Sentinel. Monitor event logs and perform incident response in line with Department of State standards. Conduct classified spillage containment, forensics, and reporting procedures as required.

Vulnerability Assessment and Remediation: Perform vulnerability scans and penetration testing using Nessus, Metasploit, and Wireshark. Document and remediate security findings through POA&Ms and system configuration changes. Ensure compliance with security benchmarks and Departmental baselines.

DevSecOps and Secure Configuration: Embed cybersecurity controls into DevSecOps pipelines and work collaboratively with engineers to secure new application builds, infrastructure-as-code deployments, and cloud configurations across AWS, Azure, and Google platforms.

Policy Compliance and Risk Management: Support Certification and Accreditation (C&A) and Continuous Authorization (CA) activities in alignment with NIST RMF. Develop and maintain documentation such as System Security Plans (SSP), Security Assessment Reports (SAR), and Security Impact Analysis (SIA) reviews.

Audit and Documentation Support: Assist the ISSO and governance teams in preparing for internal and external audits. Maintain accurate records of control implementations, policy exceptions, and remediation efforts. Ensure documentation aligns with 12 FAM, 5 FAH-6, and CSB guidance.

Cloud Security and SECaaS Integration: Implement cloud-native security tools and manage centralized dashboards that integrate cloud, on-premises, and hybrid threat data. Provide security oversight for cloud environments including IaaS, PaaS, and SaaS.

End-of-Day Checks and Classified Operations: Perform classified system checks, maintain secure transfer protocols for OpenNet/ClassNet, and manage assets associated with the Classified Hard Drive Program. Deliver role-based security briefings to users across the OBO/IRM suite.

Required Qualifications

Bachelor’s degree in Cybersecurity, Information Systems, or a related technical field (or equivalent experience)

Minimum of 5 years of cybersecurity engineering experience in federal or large enterprise environments

Active Top Secret (TS) clearance

Industry-recognized certification (CISSP, CISM, Security+, CEH, or DoD 8570 compliant equivalent)

Experience with SIEM platforms, vulnerability management, and NIST RMF processes

Familiarity with DevSecOps principles and tools, cloud security configurations, and federal compliance standards

Preferred Qualifications

Experience supporting the U.S. Department of State or similar federal agencies

Familiarity with Department tools and platforms such as ArchAngel, ServiceNow, iApp, and CyberArk

Exposure to hybrid/multi-cloud environments including AWS, Azure, and Google Cloud

Experience supporting certification/accreditation and audit activities in high-visibility programs

Compensation:

Competitive Salary

Company-provided Health Benefits (Health, Dental, Vision)

Company-matched 401K plan

Competitive Paid Time Off Benefit

Full-time

Hybrid remote