Cyber Security Engineer

Vantor is forging the new frontier of spatial intelligence, helping decision makers and operators navigate what's happening now and shape what's coming next. Vantor is a place for problem solvers, changemakers, and go-getters-where people are working together to help our customers see the world differently, and in doing so, be seen differently. Come be part of a mission, not just a job, where you can: Shape your own future, build the next big thing, and change the world.

This position requires an active U.S. Government security clearance, applicants who do not currently hold the required clearance will not be eligible for consideration. Employment for cleared roles is contingent upon verification of clearance status.
Export Control/ITAR: Certain roles may be subject to U.S. export control laws, requiring U.S. person status as defined by 8 U.S.C. 1324b(a)(3).

Please review the job details below.

This position requires an active U.S. Government Security Clearance at the TS/SCI level with required Polygraph.

We are seeking a Cyber Security Engineer to support the security, compliance, and risk management of enterprise-level Government Information Systems for mission-focused programs. This role involves close collaboration with engineering teams, ISSM stakeholders, and program leadership to ensure systems meet cybersecurity requirements and maintain accreditation.

The ideal candidate is a hands-on cybersecurity professional with experience in Assessment and Authorization (A&A), RMF processes, and security control implementation. This individual should be comfortable working in dynamic environments, supporting both system sustainment and new development efforts, and integrating security practices into modern system architectures, including cloud-based environments. This role focuses on implementing and maintaining security controls and compliance processes rather than developing security tools or platforms.

Responsibilities:

• Support Assessment and Authorization (A&A) activities in accordance with the Risk Management Framework (RMF).
• Develop, maintain, and manage cybersecurity artifacts including System Security Plans (SSPs), POA&Ms, and related documentation.
• Identify, assess, and mitigate system risks; support vulnerability remediation and continuous monitoring and observability efforts.
• Assist project teams in selecting and implementing appropriate security controls and mitigation strategies.
• Coordinate with the Information System Security Manager (ISSM) and other stakeholders to ensure compliance with security requirements.
• Utilize tools such as eMASS, ACAS, SCAP, and DISA STIGs for vulnerability management and compliance tracking.
• Engage with Cloud Service Providers and provide secure integration recommendations aligned with mission requirements.
• Collaborate with development teams to integrate security and compliance into system architectures and workflows.
• Support adoption of automated A&A, compliance, and testing methodologies.
• Conduct research, testing and evaluation of emerging technologies to enhance cybersecurity capabilities and processes.
• Ensure compliance with applicable directives, standards, and security frameworks.
• Support evolving mission priorities in a fast-paced environment, to include leading/assisting with the scaling of capabilities and processes into new spaces.

Minimum Qualifications:

• Bachelor's degree in a related field with 8-12 years of relevant experience; OR Master's degree with 8 years of experience; OR Doctorate with 6 years of experience.
• Experience supporting A&A and information assurance processes, including development of cybersecurity artifacts.
• Hands-on experience with tools such as eMASS, ACAS, SCAP, and DISA STIGs.
• Strong knowledge of cybersecurity risks, protocols, and best practices.
• Willingness to work onsite full time.

Preferred Qualifications:

• Advanced cybersecurity certifications (e.g., CISSP, GIAC, or equivalent).
• Experience supporting large, complex, multi-classification systems.
• Working knowledge of RMF aligned with ICD 503, NIST SP 800 series, CNSSI 1253, and DoD 8500.
• Experience designing and implementing cybersecurity architectures and plans.
• Familiarity with cloud-hosted systems and applications.
• Experience with Red Hat or CentOS Linux operating systems.
• Experience in DevSecOps environments and associated tooling.
• Exposure to CI/CD pipelines and secure development practices (e.g., Jenkins, GitLab CI).
• Basic scripting or automation experience (e.g., Python, Bash) to support security processes.
• Familiarity with containerized environments (Docker, Kubernetes) and associated security considerations.
• Experience with Identity and Access Management (IAM), PKI, or Zero Trust Architecture concepts.
• Experience with automated compliance and continuous monitoring solutions.
• Experience with security scanning and vulnerability management tools (e.g., Nessus, OpenSCAP, Tenable, Rapid7).
• Experience supporting secure data analytics or AI/ML platforms.

Pay Transparency: In support of pay transparency at Vantor, we disclose salary ranges on all U.S. job postings. The successful candidate's starting pay will fall within the salary range provided below and is determined based on job-related factors, including, but not limited to, the experience, qualifications, knowledge, skills, geographic work location, and market conditions. Candidates with the minimum necessary experience, qualifications, knowledge, and skillsets for the position should not expect to receive the upper end of the pay range.

The base pay for this position within the Washington, DC metropolitan area is: $137,000.00 - $228,000.00 annually.

For all other states, we use geographic cost of labor as an input to develop market-driven ranges for our roles, and as such, each location where we hire may have a different range.

Benefits: Vantor offers a competitive total rewards package that goes beyond the standard, including a robust 401(k) with company match, mental health resources, and unique perks like student loan repayment assistance, adoption reimbursement and pet insurance to support all aspects of your life. You can find more information on our benefits at: ;br>
The application window is three days from the date the job is posted and will remain posted until a qualified candidate has been identified for hire. If the job is reposted regardless of reason, it will remain posted three days from the date the job is reposted and will remain reposted until a qualified candidate has been identified for hire.

The date of posting can be found on Vantor's Career page at the top of each job posting.

To apply, submit your application via Vantor's Career page.

EEO Policy: Vantor is an equal opportunity employer committed to an inclusive workplace. We believe in fostering an environment where all team members feel respected, valued, and encouraged to share their ideas. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender identity, sexual orientation, disability, protected veteran status, age, or any other characteristic protected by law.