Cyber Security Engineer

this role leans heavily on Azure Cloud Security.

Prior experience here is heavily preferred.

**this role is on-site 100% of the time in Arlington VA Cybersecurity Engineer – Cloud Security & Architecture Energy & Infrastructure Arlington VA (Onsite) An enterprise in the energy infrastructure sector is seeking a Cybersecurity Engineer to lead architecture development, design reviews, and cloud security implementation across a hybrid IT/OT environment.

This is a high-impact role focused on building scalable security frameworks, conducting threat modeling, and advising on best practices in multi-cloud, multi-vendor environments.

The ideal candidate brings deep knowledge of NIST-based frameworks, cloud-native security, and automation-based design practices.

Key Responsibilities:Design and evolve enterprise-level cybersecurity architecture and strategy for hybrid environments (IT/OT).Develop reference architectures and secure design patterns for repeatable deployment across cloud and on-prem systems.Lead threat modeling exercises and embed security requirements early in platform and application development.Conduct detailed architecture reviews for platforms operating in multi-tenant, multi-provider environments.Research and deliver roadmaps for automating security assessments, configuration drift detection, and policy enforcement.Partner with infrastructure and DevOps teams to implement secure-by-design frameworks across strategic technology initiatives.Track and report on architecture risk posture, ensuring timely escalation and mitigation.Contribute to security-as-code and DevSecOps initiatives to strengthen continuous delivery pipelines.Guide cloud security practices in identity management, encryption, access control, and logging.Ensure compliance with security standards including NIST 800-53, FISMA, and FedRAMP.

Qualifications: Required:Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).10+ years of experience in IT architecture or infrastructure security, ideally in the energy or industrial sectors.5+ years of experience implementing security controls aligned with NIST 800 series, ISO 27000, or ITGC frameworks.Strong knowledge of IAM, cloud encryption, secrets management, and modern authentication protocols (OAuth, SAML, OIDC, MFA).Hands-on experience with Azure and AWS security architecture, including cloud-native services and tooling.Demonstrated experience delivering secure cloud architectures, including DevSecOps practices and automated compliance.Exceptional communication and documentation skills.

Preferred:Security certifications such as CISSP, CISM, CCSK, CEH, or CISA.Background in designing for FedRAMP or FISMA compliance at the Moderate/High level.Experience working in OT environments or integrating cybersecurity across IT and operational systems.