• Cyber Security Engineer

    DEFTEC (Norfolk, VA)


    Norfolk, VA, USA | Full Time

    CYBER SECURITY ENGINEER

    DEFTEC delivers mission-critical solutions through skillfully delivered services and innovative products. We are inspired by our clients' critical missions and driven to provide the most effective solutions to execute their missions, operational challenges, and requirements. Our dedicated, experienced, and talented employees work closely with our clients to ensure the delivery of exceptional services and products.

    POSITION OVERVIEW

    A seasoned cybersecurity engineer with deep expertise in designing, implementing, and maintaining secure systems, networks, and applications across NATO and defense-aligned environments. Adept at defining system security requirements, developing secure architectures, and integrating advanced security measures to protect mission-critical infrastructure and sensitive information. Skilled in deploying tools like Nessus, Qualys, Prisma, Burp Suite, and OpenVAS for continuous monitoring and vulnerability management. Experienced in embedding security into Agile and DevSecOps workflows, performing risk assessments, and advising on mitigation strategies aligned with NATO standards. Actively contributes to incident response planning, disaster recovery, and forensic investigations, while effectively communicating complex cybersecurity issues to both technical and non-technical stakeholders.

    JOB RESPONSIBILITIES:

    + Provide subject matter expertise in cybersecurity engineering to design and implement secure systems, networks, and applications across NATO environments.

    + Engineer, implement, and monitor technical and organizational security measures for the protection of computer systems, networks, and sensitive information.

    + Identify, define, and document system security requirements, ensuring they align with NATO security standards and operational priorities.

    + Design secure architectures and develop detailed Cybersecurity designs, supporting enterprise-scale solutions and mission-critical systems.

    + Plan, research, and develop security policies, standards, and procedures aligned with NATO standards. Deploy, configure, and monitor advanced security tools and vulnerability management solutions (e.g., Nessus, Prisma, Qualys, Burp Suite, OpenVAS).

    + Integrate security principles into Agile and DevSecOps workflows to ensure security is embedded from the outset of product development.

    + Perform risk assessments using established tools and frameworks, advising stakeholders on mitigation strategies.

    + Conduct incident response planning, disaster recovery preparation, and contribute to forensic investigations where required.

    + Collaborate closely with developers, system administrators, and product managers to ensure security requirements are met throughout the lifecycle.

    + Clearly communicate complex cybersecurity risks and issues to technical teams, leadership, and non-technical audiences.

    Required Qualifications:

    + Proven experience engineering, implementing, and monitoring security measures across networks, systems, and applications.

    + Demonstrated ability to define, document, and maintain security requirements aligned with organizational goals.

    + Experience designing secure enterprise architectures and developing detailed cybersecurity designs.

    + Hands-on experience with vulnerability assessment, intrusion detection, firewalls, anti virus, and content filtering.

    + Experience using security tools such as Nessus, Prisma, Qualys, Burp Suite, OpenVAS, or equivalent.

    + Experience in risk assessment and security auditing methodologies. University degree in Human Computer Interaction (HCI), Human Factors, Human Centered Design/Engineering, or related discipline desirable.

    + Experience planning, developing, and maintaining security policies, standards, and procedures.

    + Proven track record in system administration across multiple operating systems and platforms.

    + Strong communication skills to present complex security issues to peers, management, and leadership.

    + Security certifications (CISSP, CISM, Security+, CEH, or equivalent).

    + University degree in ICT, Information Security, or related discipline.

    + Fluent in English (oral and written).

    + Active NATO or National SECRET (or higher) security clearance at the time of award.

     

    DEFTEC offers a comprehensive whole-life benefits package that includes medical, dental, vision, holiday, paid time off, 401K with a match, life insurance, short/long-term disability, and educational reimbursement. The DEFTEC team comprises professionals who make a difference daily in crucial national security missions. Our leadership knows that this happens by employing a diverse team that is well cared for. Our top priority is our employees, making DEFTEC an ideal workplace.

     

    Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions. Please get in touch with [email protected] if you require reasonable accommodations.

     

    DEFTEC is a Drug-Free Workplace where post-offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria are met as outlined in our policies.

     

    AAP/EEO Statement

     

    DEFTEC Corp is an Equal Opportunity and Affirmative Action Employer and prohibits discrimination and harassment of any type based on actual or perceived race, color, national origin, ancestry, sex (including pregnancy, childbirth, breastfeeding and medical conditions related to pregnancy, childbirth or breastfeeding), gender, gender identity, and gender expression, religious creed, disability (mental and physical) including HIV and AIDS, medical condition (cancer and genetic characteristics ), genetic information, age, marital status, civil union status, sexual orientation, military and veteran status, denial of family and medical care leave, arrest record and/or any other characteristic(s) protected by federal, state or local law.

     

    This policy applies to all terms of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, training, compensation, benefits, employee activities, and general treatment during employment.

    Other Duties

    Please note that this job description is not designed to cover or contain a comprehensive listing of the activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time, with or without notice.