Principal Cybersecurity Engineer

Software Guidance & Assistance, Inc., (SGA), is searching for a Principal Cybersecurity Engineer for a Direct Hire opportunity with one of our premier clients in McConnellsburg, PA.

Serve as a cybersecurity expert or coach in areas including network and application design, operating systems, endpoint protection, mobile device security, and foundational cybersecurity controls across on-premises and cloud environments (IaaS, PaaS, SaaS). Conduct security assessments and recommend appropriate controls to ensure solutions meet regulatory, contractual, and corporate security policies.

• Act as a trusted advisor to business functional areas (e.g., Finance, HR, Engineering) and internal Digital Technology (DT) teams (e.g., infrastructure, applications, services). Ensure alignment between business and technical requirements and compliance with regulatory and contractual obligations. Advocate for cybersecurity risk mitigation during planning and implementation of new services.
• Provide cybersecurity consulting to a wide range of stakeholders, including business units with limited technical knowledge, technical teams with deep domain expertise, and cybersecurity professionals.
• Collaborate with technology architects and analysts to ensure security is embedded in systems design and implementation, effectively mitigating identified risks while supporting business goals.
• Maintain expert-level awareness of cybersecurity regulations and best practices, including CMMC, PCI, SOC, HIPAA, and NIST (800-53, 800-171).
• Contribute to the development and continuous improvement of cybersecurity strategies and roadmaps. Develop and update metrics to measure the effectiveness of cybersecurity programs.
• Support the Cybersecurity Education & Awareness (SEA) program by creating strategies and content to promote positive security behaviors and raise global awareness.
• Use programming and scripting skills to automate tasks such as data parsing, reporting, and other repeatable workflows.
• Support the Security Incident Response Team (SIRT) in detecting, responding to, and recovering from security incidents, employing risk-based strategies to limit impact and recurrence.
• Collaborate with SIRT to enhance processes, procedures, and training materials-such as investigation playbooks-and participate in threat hunts and purple team exercises to deepen knowledge of the environment.

MINIMUM QUALIFICATIONS

• Bachelor's degree in Cybersecurity, Information Systems, or a related field, or equivalent experience.
• Eight (8) or more years of cybersecurity experience.

STANDOUT QUALIFICATIONS

• Graduate degree in Cybersecurity, Information Systems, Management, or related discipline.
• Strong conceptual, analytical, and innovative problem-solving skills.
• Demonstrated knowledge of security controls for networks, applications, and operating systems.
• Excellent communication skills-both verbal (e.g., phone, one-on-one, group presentations) and written (e.g., email, reports, documentation)-across technical and non-technical audiences.
• Experience leading or contributing to complex projects involving multiple technologies and lines of business.
• Industry-recognized certifications (e.g., CISSP, CEH, GIAC, Security+, SSAP).
• Experience identifying attacker techniques, including emerging vulnerabilities, attack vectors, and exploits.
• In-depth knowledge of cybersecurity tools and systems, including SIEM, SOAR, IDS/IPS, honeypots, open-source intelligence (OSINT), and sandbox analysis tools.
• Ability to obtain or maintain a U.S. Government Secret-level (or higher) security clearance.
• Hands-on experience with: SIEM/SOAR platforms (e.g., Splunk, IBM QRadar, Palo Alto XSOAR)
• Hands-on experience with: Identity and Access Management (IAM) tools (e.g., SailPoint, Azure Entra, Okta)
• Hands-on experience with N etwork tools and platforms (e.g., Cisco, Palo Alto Networks, SolarWinds)

SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at .

SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy.