Cybersecurity Engineer

AGE Solutions is seeking a Cybersecurity Engineer to support a Department of Defense (DoD) customer’s cybersecurity mission through the research, development, and implementation of advanced threat detection use cases aligned with emerging cyber threats, threat intelligence, and operational feedback. This position is responsible for identifying gaps in existing security monitoring, analytics, and protection capabilities; developing and maintaining custom scripts, detection logic, and SIEM functionality enhancements; and improving the effectiveness and accuracy of enterprise security analytics to strengthen threat detection, monitoring, incident visibility, and overall cybersecurity posture.

• →Design and implement enhanced threat detection methodologies informed by emerging cyber threats, threat intelligence findings, and operational input provided by Threat Detection Analysts.
• →Coordinate with government stakeholders and cybersecurity tool Subject Matter Experts (SMEs) to evaluate existing security controls and analytical capabilities, identifying deficiencies and implementing improvements to strengthen monitoring and protection coverage.
• →Create and maintain tailored scripts using tools such as PowerShell, Python, and SPL to expand and improve SIEM capabilities.
• →Assess the reliability and effectiveness of security data feeds and implement or recommend enhancements to improve monitoring visibility and threat detection performance.
• →Collaborate with stakeholders to determine critical systems and application assets, establish alert prioritization requirements, and develop customized detection signatures aligned to specific programs and operational environments.
• →Leverage in-depth knowledge of network infrastructure, security log analysis, and the MITRE ATT&CK framework to support the development of effective detection methodologies and incident response capabilities.
• →Partner with government stakeholders and cybersecurity tool Subject Matter Experts (SMEs) to enhance and refine security monitoring capabilities and improve the effectiveness of cybersecurity analytics.
• →Evaluate, recommend, and implement enhancements to SIEM data ingestion processes and detection methodologies to improve monitoring accuracy and threat visibility.
• →Maintain comprehensive documentation for all developed use cases, custom scripts, detection signatures, and system enhancements in compliance with Standard Operating Procedures (SOPs).
• →Prepare and deliver technical documentation, reports, and briefings to stakeholders in support of operational and program requirements.
• →Ensure all cybersecurity activities are performed in accordance with government security requirements, incorporating Defense-in-Depth methodologies and MITRE ATT&CK framework best practices.
• →Maintain all certifications and security clearance requirements in accordance with DoD 8570/8140 workforce qualification standards.

• Required Experience:
  • Minimum of five (5) years of professional experience in information technology or a related technical field.
  • Minimum of three (3) years of hands-on experience supporting SIEM platforms in a content development, threat detection, or incident response capacity.
  • Minimum of three (3) years of experience performing system administration and/or network administration functions within an enterprise IT environment.
• Required Skills and Knowledge:
  • Knowledge of multiple security and system log formats utilized within enterprise environments.
  • Familiarity with the MITRE ATT&CK framework and its application to cybersecurity operations.
  • Strong working knowledge of network infrastructure, protocols, and architectural design principles.
  • Experience developing, modifying, and maintaining automation or custom scripts, preferably utilizing PowerShell, Python, or similar scripting languages.
  • Working knowledge of Defense-in-Depth security principles and layered cybersecurity protection strategies
• Required Security Clearance:
  • DoD Top Secret Clearance with SCI eligibility and IT-I access.
• Required Certifications:
  • DoD 8570 IAT Level II Certification or higher (one of the following):
    • CompTIA Security+
    • CompTIA Cybersecurity Analyst (CySA+)
    • Systems Security Certified Practitioner (SSCP)
    • GIAC Security Essentials Certification (GSEC)
    • CompTIA CASP+ or SecurityX
    • CCNP Security
    • ISC2 Certified Information Systems Security Professional (CISSP)
  • Computing Environment Certification - DoD 8570 CSSP (one of the following):
    • Certified Ethical Hacker (CEH)
    • CompTIA Cybersecurity Analyst (CySA+)
    • GIAC Certified Incident Handler (GCIH)
    • GIAC Certified Forensic Analyst (GCFA)
    • CyberSec First Responder (CFR)
    • Certified SCADA Security Architect (SCYBER)

The projected salary range for this position is $85,000+ annually. Final compensation will be determined based on factors including years of relevant experience, active security clearance level, certifications, technical skillset, contract requirements, and overall qualifications.