Product Security Engineer

Job Title: Product Security Engineer

Location: Saint Louis, MO

Employment Type: Contract

About Us:

DMV IT Service LLC is a trusted IT consulting firm, established in 2020. We specialize in optimizing IT infrastructure, providing expert guidance, and supporting workforce needs with top-tier staffing services. Our expertise spans system administration, cybersecurity, networking, and IT operations. We empower our clients to achieve their technology goals with a client-focused approach that includes online training and job placements, fostering long-term IT success.

Job Purpose:

We are seeking a highly skilled Product Security Engineer to lead and support the cybersecurity components of the full lifecycle development and manufacturing of embedded systems for weapon platforms. The role demands a deep understanding of DoD cybersecurity requirements, embedded system security architecture, and secure product development best practices. You will be instrumental in ensuring system resilience against cyber threats while aligning with government standards and mission-critical objectives.

Requirements

Key Responsibilities:

• Guide the implementation of cybersecurity controls and best practices for embedded products used in advanced weapons systems (e.g., guided munitions, missile platforms).
• Translate high-level Department of Defense (DoD) cybersecurity requirements into actionable technical specifications within engineering product documentation.
• Support all engineering lifecycle stages—design, development, integration, verification, validation, and testing.
• Lead and participate in cybersecurity assessments, risk analysis, threat modeling, and development of mitigation strategies.
• Ensure product compliance with applicable cybersecurity frameworks and participate in both internal and external cyber readiness evaluations.

Required Skills & Certifications:

• Degree in Cybersecurity, Computer Engineering, or a related technical field.
• Active certification at IAT Level 1 or higher, such as:
• A+, Network+, SSCP (IAT Level 1)
• Security+, CAP, GISF, GSLC (IAM Level 2 or higher)

• Hands-on experience with secure embedded systems, including:
• Secure boot processes and firmware updates
• Hardware/software cryptographic integrity
• Security in Real-Time Operating Systems (RTOS)
• Embedded system threat modeling

• Deep knowledge of Risk Management Framework (RMF) implementation, particularly in alignment with NIST and DoD cybersecurity standards.

Desired Skills & Experience:

• Background in systems, networks, and operational cybersecurity.
• Familiarity with various defense and compliance standards such as:
• DFARS Clause 252.204-7012, TEMPEST, COMSEC, CNSSI 1253,
• DOD 8570, NIST 800-53 Rev 5, 800-171, 800-30, 800-137, 800-39, etc.

• Experience in cybersecurity assessment techniques, including:
• Cyber Table Tops, Cooperative Vulnerability Assessments, Penetration Testing, Adversarial Assessments.

• Competence in requirements gathering, CONOPS, and use case development.
• Involvement in hardware/software engineering processes including:
• System integration, unit testing, verification/validation, acceptance testing, and field deployment.

• Familiarity with Model-Based Engineering (MBE), Requirements Quality Management, and support for major technical reviews (e.g., PDR, CDR).