Lead Cybersecurity Engineer

Lead Cybersecurity Engineer

In this role, you will design and implement secure architectures, monitor for vulnerabilities and breaches, conduct regular assessments, and lead incident response with precision and composure. You'll play a key role in strengthening infrastructure, recommending tools and practices, and ensuring emerging risks are swiftly mitigated. The ideal candidate brings deep technical expertise in firewalls, SIEMs, intrusion detection/prevention, and a strong grasp of security protocols and regulatory standards.

The company is located in the D.C. Area and will remain 100% remote.

What You Will Be Doing:

• Perform comprehensive security assessments and audits across our technology stack, including web platforms, mobile applications, network infrastructure, and maritime-deployed remote sensors.
• Architect and implement security improvements for backend services, databases, and frontend applications, mitigating risks such as OWASP Top 10 vulnerabilities.
• Enhance authentication and authorization mechanisms (RBAC, session management, API protections).
• Develop and maintain secure communication protocols for remote systems using satellite or long-range networks.
• Implement and manage encrypted connectivity between distributed systems and centralized cloud infrastructure.
• Conduct penetration tests, vulnerability scans, and code reviews across all layers of the environment.
• Monitor logs, deploy threat detection, and respond to incidents in real time.
• Build and refine incident response processes for web, mobile, and IoT/sensor systems.
• Ensure compliance with maritime and data protection regulations, including secure encryption at rest and in transit.
• Partner with engineering teams to embed security best practices into the development lifecycle.
• Maintain clear documentation of security architectures, policies, and risk assessments.
• Lead security awareness and training programs for internal teams.

Required Skills & Experience:

• Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field.
• Security certifications such as CISSP, CEH, or OSCP.
• 7+ years of cybersecurity experience with a focus on securing web, mobile, and IoT/embedded platforms.
• Strong background in secure coding, authentication/authorization systems, API security, and database hardening.
• Familiarity with cloud security practices and distributed system protection.
• Hands-on experience securing encrypted communication channels between remote and centralized systems.
• Deep understanding of the challenges of IoT, sensor networks, and remote deployments.
• Proficiency in monitoring, threat detection, and incident response.
• Knowledge of compliance standards relevant to data protection and operational security.
• Strong analytical, written, and verbal communication skills, with the ability to convey technical concepts to diverse audiences.

Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn't provide sponsorship.