Cybersecurity Engineer

GXM is seeking Cybersecurity Engineers at various experience levels to support our work with Platform One and the USAF. Our team is dedicated to solving critical problems through rapid innovation and effective implementation, providing secure and scalable solutions for our clients in highly sensitive environments. Join us if you are passionate about enhancing security posture, conducting advanced security operations, and driving efficiency in cloud-native and containerized environments. 

GXM offers a comprehensive benefits package, including medical, dental, and vision insurance, employer-paid life insurance, short-term and long-term disability, a 401(k) plan with employer matching, a Flexible Spending Account, employer-paid parking, a flexible Paid Time Off policy, and 11 Federal holidays. 

Responsibilities 

• Red Team/Blue Team Operations: 
• Actively engage in red team (offensive) and blue team (defensive) security exercises to identify and mitigate vulnerabilities. 
• Conduct security assessments, penetration testing, and vulnerability scanning, especially with containerized applications. 
• Continuous Monitoring and Log Analysis: 
• Implement and manage continuous monitoring solutions for detecting potential attacks, vulnerabilities, and anomalies. 
• Perform log analysis using tools like Fluent Bit, Prometheus, and Loki to identify security incidents. 
• Cybersecurity Architecture Development: 
• Develop and implement cybersecurity architectures for infrastructure, platforms, and software. 
• Adapt quickly to evolving requirements and emerging security threats. 
• Security Integration in DevSecOps: 
• Integrate security practices into CI/CD pipelines using tools such as Flux, Kustomize, and Helm. 
• Utilize Infrastructure-as-Code (IaC) and Configuration-as-Code (CaC) methodologies with tools like Terraform, Ansible. 
• Container Security and Hardening: 
• Implement and manage containerized applications using Kubernetes, Docker, and Helm, including experience in hardening these environments. 
• Utilize security tools like Kyverno, Twistlock, Anchore, Gatekeeper, and Istio to secure applications and services. 
• Compliance and Documentation: 
• Ensure compliance with DoD and USAF security standards, including NIST RMF 800-53 controls. 
• Maintain and document security operations and accreditation materials to support continuous Authority to Operate (cATO) status. 
• Customer Interaction and Collaboration: 
• Interact with multiple customers at all levels, providing technical customer service and handling escalations. 
• Work independently and collaboratively within a cross-functional, agile team. 
• Stay Updated on Security Threats: 
• Stay up to date on emerging security threats and technologies. 
• Proactively identify and solve potential and actual security problems. 

•  Must be a U.S. Citizen and currently residing in the United States. 
• Must possess or be able to obtain a U.S. Government Secret or higher security clearance.  
• Clearance will be verified during the interview. 
• Must be willing to travel up to 20% 
• One of the following certifications is required: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP. 
• Preferred certifications: Certified Information Systems Security Professional (CISSP). 
• Education and Experience: Bachelor's Degree or 10 years of relevant experience in lieu of a degree. Minimum of 6+ years of professional experience, including leading major technology assignments. 
• Technical Skills: 
• Experience with red team/blue team security exercises and analysis. 
• Strong understanding of agile and DevSecOps methodologies. 
• Experience hardening Kubernetes and containers. 
• Proficiency with container technologies such as Docker and Kubernetes. 
• Experience with cloud platforms (AWS, Azure, etc.) and security products. 
• Familiarity with network vulnerability scanning platforms. 
• Proficiency in scripting languages (Bash, Python, or similar). 
• Experience with security compliance tools (XACTA, eMASS). 
• Specific knowledge of NIST RMF 800-53 controls. 
• Soft Skills: 
• Excellent communication skills with the ability to interact with customers at all levels. 
• Ability to work independently and within a cross-functional team. 
• Strong "security first" mindset with a proactive approach to security. 

Desired Qualifications 

• Experience with physical security threats and countermeasures. 
• Close proximity to a military installation. 
• Experience with MacOS and/or Linux and related toolsets. 
• Certified Cloud Security Professional (CCSP). 

GXM reserves the right to forward all materials submitted with applications to third parties that may be involved in the evaluation process.

An employee’s compensation and benefits are personal information. GXM will not discharge, or in any other manner, discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. 41 CFR § 60-1.35

GXM is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or military status.

Know Your Rights