As a Senior Cybersecurity Engineer, you'll secure cloud-based environments, implement security measures, automate control reporting, manage IAM policies, and drive DevSecOps practices, collaborating within a dynamic team.
Your Dream. Our Team.About Rise8
About YouWe’re transforming the United States Government and we know that takes a dream team.
We believe customer experience starts with employee experience, so we take care of our employees. We offer competitive pay and benefits, invest in employee growth, and offer a culture you can’t find anywhere else.
At Rise8, we continuously achieve unreached heights through next-level tech, and on-the-level collaboration. Together, we create continuous impact. We turn breakdowns into breakthroughs, make small steps into giant leaps, and deliver game-changing products through culture-changing process.
We pair Risers with their customer counterparts and practice pairing at every moment to elevate people and teams and deliver results fast and forever. We work in small teams and rotate between them frequently so that we are able to meet new challenges and explore new ideas.
Our methodology is about experimenting and learning, and our culture is empowering. We subscribe to an ethos of kindness. We make a point to bring empathy to each and every project and are guided by a promise and a purpose: to deploy critical outcomes to prod in order to drive relentless progress. Not just an idea. But an outcome. A better world. A world where every day, fewer bad things happen because of bad software.
Rise8 is certified as a Great Place to Work with 100% of employees saying they love working here.
- Are you a Senior Cybersecurity Engineer with expertise across multiple domains, including cloud security, containerization, secure software supply chain and compliance? Do you thrive in dynamic environments where collaboration, innovation, and secure delivery are top priorities? At Rise8, we’re looking for someone like you to lead the charge in securing complex systems, while ensuring client satisfaction across projects.
- Secure cloud-based environments by designing and implementing native security solutions using services.
- Drive Continuous RMF practices, automating control implementation and reporting through modern methodologies like Continuous Authorization to Operate.
- Automate provisioning and configuration of IT environments
- Implement and manage security measures like firewalls, IDS/IPS, vulnerability scanning, encryption, and ICAM solutions.
- Secure containerized and large-scale cloud production systems while responding effectively to security incidents.
- Apply advanced security concepts to protect systems, including threats, vulnerabilities, encryption, boundary defense, and risk management.
- Establish and manage identity and access management policies, ensuring least-privilege access and cross-account role adherence.
- Create and maintain engineering artifacts, such as network diagrams, data flow diagrams, installation procedures, and operational manuals.
- Enforce cloud-native security best practices, leveraging frameworks like AWS’s Well-Architected Security Pillar
- Collaborate with cross-functional teams to integrate Zero Trust principles into the broader security posture, aligning with DoD policies such as the Risk Management Framework (RMF)
- Apply and operationalize RMF, FedRAMP, and DISA CC SRG controls, ensuring compliance with DoD Impact Levels.
- Collaborate with cross-functional teams to integrate lean and agile practices into secure development lifecycles.
- Contribute to the continuous improvement of DevSecOps practices, ensuring systems are secure, scalable, and compliant.
- Work in a dynamic, collaborative environment that supports your professional development.
- A background of 6-10 years of experience in cloud/platform operations or related roles, with a focus on implementing and maintaining secure and compliant systems in diverse environments.
- Must have experience securing CI/CD pipelines using various commercially available tools (i.e. Gitlab)
- Experience with dependency analysis across various software components
- Familiar with SLSA (Supply-chain Levels for Software Artifacts)
- Strong proficiency in securing AWS GovCloud and Azure GCC High environments, including applying security controls, conducting vulnerability scans, and ensuring compliance with DoD standards.
- Expertise in container orchestration, specifically Kubernetes, with a focus on implementing security best practices, ensuring container runtime protection, and automating vulnerability scanning.
- Expertise with monitoring and observability platforms, including integrating security monitoring tools and automating anomaly detection workflows.
- Proven experience in incident management and troubleshooting large-scale distributed systems, with a focus on mitigating security incidents and performing root cause analysis for vulnerabilities.
- Strong proficiency in Infrastructure as Code (IaC) tools, such as Terraform, including automating the implementation of security policies and controls within IaC pipelines.
- Subject Matter Expertise in Linux Operating Systems administration, with a focus on hardening techniques, patch automation, compliance enforcement and bash scripting languages (Python, Bash, PowerShell)
- Strong understanding of networking concepts and practical experience with securing technologies like Load Balancers, DNS, SSL, Firewalls, NAT, and NTP, including applying network-level security policies.
- Excellent communication skills to articulate security risks, advocate for secure practices, and collaborate in team environments to address challenges effectively.
- A proactive mindset for skill growth, tackling complex security tasks, and driving the implementation of cutting-edge cybersecurity practices.
- A degree (BA/BS) in Computer Science, Cybersecurity, or a related field, or equivalent practical experience, with a focus on secure systems and automation.
- Must have an active Top Secret DoD clearance
- Possession of recognized Professional Certifications such as CKS, RHCE, Linux+, MCSA, AWS Solutions Architect, AWS Developer, Security+, CISSP, and CCNA
- Proven experience engaging directly with clients to understand their needs, provide solutions, and ensure satisfaction.
- Familiarity with Department of Defense (DoD) operations, particularly within a DoD "Software Factory" context, as well as navigating Impact Level (IL) security requirements.
- The annual salary range for this role as it is posted is $163,121 - $203,901 regardless of final candidate location within the United States. The final job level and annual salary will be determined based on the education, qualification, knowledge, skills, ability, and experience of the final candidate(s), and calibrated against relevant market data and internal team equity.
- Flexible schedule in a 100% distributed workforce
- Premium Insurance: We cover up to 100% of the employee premium and up to 80% of the combined dependent premium on our base health plan, depending on pay band. We also cover 100% of the premium for employee and dependent Dental and Vision as well as employee premiums for Life and Disability coverage.
- Retirement: 401k match at 10% gross pay.
- Paid time off (PTO): 4 weeks combined accrued vacation and sick leave, 11 Federal holidays, your birthday, jury duty, and bereavement.
- Education & Training: Accrued budget of up to $3,500 per year for classes, travel, events, and materials.
- Home Office and Merch: We offer $750 per year for home office technology and equipment as well as $100 per year for Rise8 merch from our Swag Store.
- Wellness Budget: To encourage and support a well-rounded healthy lifestyle, we cover 100% reimbursement on a variety of wellness activities and products, up to $500 per calendar year.
- Rise8 is part of the Life Time Corporate Partner program. In lieu of your $500 annual wellness benefit, you can instead get a $75 monthly credit towards a Life Time membership ($900 annual benefit).
- Equipment: We offer a MacBook Pro
All of Rise8’s work in this area is with Federal Government customers that require our employees involved with their projects be U.S. citizens. As such, this role requires U.S. citizenship. If hired, you would also be required to go through a background investigation.
Rise8 is an Equal Employment Opportunity employer that will consider you for this role regardless of race, color, religion, gender, sexual orientation, marital status, gender identity or expression, national origin, genetics, age, disability status, protected veteran status, or any other characteristic protected by applicable law.
Top Skills
AWS
Azure
Bash
Kubernetes
Powershell
Python
Terraform
Similar Jobs
Artificial Intelligence • Machine Learning • Software
The Senior Cybersecurity Engineer safeguards digital assets, implements security systems, conducts risk assessments, and integrates security into the software lifecycle.
Top Skills:
AWSBashCloudflareEdrGCPIds/IpsPowershellPythonSIEMWaf
Data Privacy
Manage customer accounts to drive renewals and expansions, ensuring satisfaction and measurable revenue growth through strategic account management and relationship building.
Top Skills:
Crm ToolsCsm ToolsHubspotVitally
Artificial Intelligence • Cloud • Computer Vision • Hardware • Internet of Things • Software
As a Software Engineer in the Safety In-Vehicle Experience team, you will develop full-stack solutions for drivers, improving safety and efficiency through IoT data and software features.
Top Skills:
GoGraphQLMySQLReactTypescript
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
