Senior Cyber Security Engineer

BridgePhase is a software engineering company focused on designing, building, securing, and operating cutting-edge software solutions that drive mission success and operational excellence for Federal Government organizations. We are dedicated to supporting the Air Force’s technological edge by delivering innovative software engineering services that directly support cyber operations, threat defense, and mission assurance. Our goal is to be a trusted mission partner in enabling cyber readiness and resilience across the Air Force and U.S. Cyber Command. 

We’re seeking an experienced Cyber Security Engineer to join our mission-driven team supporting the U.S. Air Force’s Unified Platform software factory in San Antonio. In this role, you’ll help defend critical Air Force cyber infrastructure, drive compliance with Department of Defense security standards, and enhance the security posture of operational systems that protect national interests. You’ll work closely with development, infrastructure, and mission teams to secure platforms across their entire lifecycle—from design and implementation to ongoing monitoring and incident response. 

Ideal candidates bring deep expertise in cybersecurity principles, hands-on experience with cloud and container security, and the ability to lead threat detection and mitigation strategies in real-time. If you’re driven by mission impact and thrive in fast-paced, agile environments, we want to hear from you. 

We are hiring for both fully remote positions and hybrid roles based in San Antonio, TX. Candidates local to San Antonio should expect a mix of onsite and remote work as part of a hybrid schedule. 
 

In this position, you can expect to: 

• Design and implement security architectures for cloud-native and containerized systems in compliance with DoD cybersecurity standards. 
• Perform vulnerability assessments, risk analysis, and compliance audits across mission systems. 
• Integrate and maintain security tools such as container scanners, static and dynamic analysis, SIEM, EDR, and intrusion detection systems. 
• Enforce security best practices and compliance with frameworks such as NIST SP 800-53, RMF, DISA STIGs, and the DoD Enterprise DevSecOps Reference Design. 
• Collaborate with DevSecOps and SRE teams to embed security throughout the CI/CD pipeline. 
• Analyze system logs, alerts, and telemetry to detect and respond to threats in near-real-time. 
• Participate in security incident response and forensic analysis, including root cause identification and mitigation planning. 
• Maintain and optimize Identity and Access Management (IAM) policies, Role-Based Access Control (RBAC), and secrets management. 
• Provide guidance and mentorship to engineering teams on secure coding, system hardening, and threat modeling. 
• Develop and maintain documentation for security procedures, policies, and system configurations. 
• Support Authority to Operate (ATO) processes and security authorization packages under RMF. 

As with any technical environment, the exact role responsibilities will evolve with the changing needs of our client. We are looking for adaptable engineers who thrive on new challenges and can take on additional responsibilities beyond those listed above. 
 

Preferred Experience and Qualifications: 

• Hands-on experience in Cyber Security Engineering, Blue Team Operations, or Security Architecture in defense or secure government environments. 
• Deep understanding of cybersecurity principles including zero trust architecture, defense-in-depth, and layered security models. 
• Familiarity with common tools and technologies used in cyber defense such as Nessus, Splunk, Wireshark, OSQuery, Suricata, Snort, and ELK. 
• Experience securing systems on AWS or other cloud environments and implementing cloud-native security practices. 
• Strong knowledge of Kubernetes security, container scanning, and runtime protection (e.g., Twistlock, Aqua, Sysdig, etc.). 
• Scripting experience (Python, Bash) for automation of security tasks and data analysis. 
• Experience leading security compliance efforts and working with RMF/ATO processes. 
• Familiarity with threat modeling, penetration testing, and incident response procedures. 
• Active secret clearance is required, with TS/SCI preferred. 
• Industry certifications such as CISSP, CEH, GCIH, GCIA, or AWS Security Specialty are preferred. 
• B.S. in Cybersecurity, Information Assurance, Computer Science, or equivalent experience. 
• This is a hybrid position – with both weekly on-site support in San Antonio, TX and remote work supported. 

While we've outlined our ideal candidate, we recognize that talent comes in many forms. If you don't check every box but have a strong background in cybersecurity, a desire to secure mission-critical systems, and a drive to grow, we strongly encourage you to apply. We value professionals who bring curiosity, commitment, and adaptability to the mission of securing national cyber infrastructure. 

About Our Company: 
At BridgePhase, our values shape our culture and guide our actions. We act with integrity, honesty, and respect, earning trust and fostering collective success. We are critical thinkers and problem solvers, driving innovation and positive disruption to solve hard challenges at speed and scale. Our work is characterized by courage, compassion, commitment, and teamwork. We apply disciplined engineering principles and a proven agile approach that deliver flexible, simplified, durable and performant solutions that drive continuous improvement and have lasting impact and sustained value. Additionally, we invest in our communities through strategic charitable initiatives, empowering our employees to make meaningful contributions to causes they are passionate about. 

Our Benefits: 
We pride ourselves on providing top-tier benefits that rival those found in larger organizations. Below are some of the perks our team enjoys:  

• Competitive compensation based on experience  
• Flexible PTO plan  
• Paid Sick Leave  
• 100% Paid Paternal Leave (16 weeks Maternity, 6 weeks Paternity)   
• 401k plan with 6% employer matching (zero vesting period)  
• Excellent health, dental, and vision benefits  
• Professional development budget that can be used for certifications and training  
• Paid community service days