Cyber Security Engineer II

Описание вакансии

Job Overview

Cybersecurity Engineer 2 is a hands-on technical role responsible for supporting secure infrastructure, systems, networking, and compliance requirements across regulated enterprise environments. Working alongside the Cybersecurity Lead, this role focuses on execution and operational support across regulated cloud and on-prem environments, including Office 365 GCC-H, Azure Government, AWS GovCloud, and on-prem infrastructure. The position plays a direct role in safeguarding sensitive data through secure system configuration, access control enforcement, monitoring, and alignment with regulatory and compliance frameworks such as CMMC and NIST 800-171.

Essential Functions

• Cybersecurity & Technical Support (Primary Focus)

+ Act as a technical cybersecurity and infrastructure POC for security and compliance-driven requirements.

+ Support requests related to system builds, secure configurations, networking, and access controls.

+ Work directly with engineering, IT, and business teams to implement compliant and secure technical solutions.

+ Translate security, infrastructure, and data protection requirements into actionable, auditable implementations.

• Systems, Infrastructure & Network Security

+ Administer and support Windows Server, Active Directory, and Linux systems, including baseline configuration and hardening.

+ Assist with secure Linux builds and ongoing system administration to support enterprise workloads.

+ Configure and troubleshoot networking components, including firewalls, VLANs, ACLs, and VPNs, to support segmented and secure environments.

+ Support secure connectivity across enterprise systems and supporting infrastructure.

• Cloud, Identity & Microsoft Security Stack

+ Support secure workloads and configurations within GCC High, Azure Government, and AWS GovCloud environments.

+ Implement and support security controls using Microsoft Purview, Microsoft Defender, and related Microsoft security tooling.

+ Assist with data classification, labeling, and access enforcement in regulated environments.

+ Support identity and access management using Entra ID (Azure AD), Conditional Access, and device compliance mechanisms.

• Endpoint, Network & Threat Protection

+ Support and maintain endpoint protection and detection using CrowdStrike.

+ Assist with secure remote access and traffic inspection using Zscaler.

+ Help investigate and remediate security events impacting enterprise systems.

+ Support vulnerability remediation and secure baseline enforcement across environments.

+ Apply strong technical expertise in routing, switching, and secure interconnectivity of systems and devices.

• Compliance & Regulatory Execution

+ Support the implementation and execution of CMMC Level 2, NIST 800-171, and DFARS aligned requirements across regulated environments.

+ Assist with technical control implementation related to access control, audit logging, system hardening, and sensitive data protection.

+ Support evidence collection, technical documentation, and audit readiness activities.

+ Work closely with cybersecurity leadership to ensure systems remain compliant and defensible during assessments.

• Automation & Scripting

+ Develop and maintain PowerShell, Python, or Bash scripts to support system configuration, automation, and reporting.

+ Assist with repeatable and auditable deployments for Windows, Linux, and cloud environments.

+ Improve operational consistency, security posture, and compliance through automation and documentation.

+ Perform other duties as required.

Standard Essential Functions

• Regular and reliable attendance on a full time basis [or in accordance with posted schedule].
• Responsible for exhibiting professional behavior with both internal and external business associates that reflects positively on the company and is consistent with the company's policies and practices.
• Embodies AEVEX’s cultural values and aligns daily actions with department goals and company culture.

Qualifications and Competencies

• Solid understanding of networking fundamentals, including firewalls, VLANs, routing, VPNs, and zero-trust access patterns.
• Working knowledge of CMMC and NIST 800-171, with practical experience protecting sensitive or regulated data.
• Proficiency with scripting and automation, with strong PowerShell skills required; Python and/or Bash preferred.

Education / Certifications

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or other related field.

Experience

• 5+ years of experience in cybersecurity, systems engineering, DevOps, or enterprise infrastructure roles supporting regulated environments.
• Strong hands-on experience administering and supporting enterprise platforms, including:
• Windows Server (2016+), Hyper-V, Active Directory, Group Policy
• Microsoft Intune (Windows and mobile device management)
• Linux (administration, hardening, patching)
• CrowdStrike, Zscaler, and enterprise email security solutions
• Microsoft 365, Azure, and AWS GovCloud environments, with familiarity in GCC High and Azure Government tenants
• FortiGate, Aruba, Meraki or similar platforms.
• Entra ID (SSO configuration, Conditional Access, and identity/access management)
• Experience with the Microsoft security ecosystem, including Microsoft Defender and Microsoft Purview for endpoint, data protection, and compliance.

Physical Requirements

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties the employee is:

• Frequently required repetitive movements of wrists, hands, and/or fingers
• Occasionally required repetitive movements of wrists, hands, and/or fingers

For the purpose of this summary, occasionally is used to represent up to 1/3 of the time given to the work day, frequently represents 1/3 to 2/3 of the time and constantly represents 2/3 or more of the time.

Security Clearance

• Ability to obtain/maintain a Secret DoD clearance, U.S. Citizenship required.

Disclaimer:

AEVEX Aerospace is an Equal Opportunity employer. We are committed to providing equal employment opportunities to all employees and applicants without regard to race, religious creed, color, sex (including pregnancy, breast feeding and related medical conditions), gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship status, military and veteran status, marital status, age, protected medical condition, genetic information, physical disability, mental disability, or any other protected status in accordance with all applicable federal, state and local laws.

About AEVEX

AEVEX, headquartered in Solana Beach, California, supports the U.S. national security mission and partner nation needs around the world by providing full-spectrum aviation, remote sensing, and analysis solutions. The company's capabilities include custom design and engineering; rapid prototyping; sensor integration and sustainment; aircraft modification and certification; flight test instrumentation and support; mission operations service; advanced intelligence data processing, exploitation, and dissemination solutions; and tailored hardware and software mission-system tools. AEVEX uses agile and customized approaches to rapidly define, develop, and deliver specialized solutions for airborne special mission needs for the U.S. Government, partner nations, and commercial businesses. AEVEX has major offices in California, Florida, North Carolina, Ohio, and Virginia.

AEVEX provides a full suite of comprehensive benefits, including a 401(k)-retirement plan, comprehensive Medical, Dental, Vision, Disability and Life insurance group coverage with a portion of the premiums paid by the company, professional development funds, and an Employee Assistance Plan (EAP) with counseling, legal help, child and elder care support, among other benefits for qualified employees.

Equal Employment Opportunity:

AEVEX is an Equal Opportunity employer. We are committed to providing equal employment opportunities to all employees and applicants without regard to race, religious creed, color, sex (including pregnancy, breast feeding and related medical conditions), gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship status, military and veteran status, marital status, age, protected medical condition, genetic information, physical disability, mental disability, or any other protected status in accordance with all applicable federal, state and local laws.