RDTS is seeking a Cleared Cybersecurity Engineer to support the Bureau of Overseas Building Operations (OBO) at the U.S. Dept of State in Washington, D.C. We are seeking a mission-focused and technically capable Cybersecurity Engineer to support a global information systems security program for the OBO. This position provides critical cybersecurity services to over 40 information systems and supports OBO's global IT infrastructure; including classified, unclassified, on-premises, and cloud-based environments.

This position is primarily remote; however, due to evolving Return-to-Office mandates, candidates must reside in the Washington, DC metro area and be available for full-time onsite work if directed by the Government. All classified work must be performed onsite at secure government locations in Arlington, VA.

The Cybersecurity Engineer will be responsible for securing enterprise systems, monitoring for threats, and ensuring compliance with federal cybersecurity regulations. You will support ISSO functions, vulnerability management, DevSecOps integration, and audit readiness across domestic and overseas OBO environments.

KEY RESPONSIBILITIES:

Security Operations and Monitoring: Identify and respond to threats across the OBO enterprise using tools like Splunk, Tanium, and Sentinel. Monitor event logs and perform incident response in line with Department of State standards. Conduct classified spillage containment, forensics, and reporting procedures as required.

Vulnerability Assessment and Remediation: Perform vulnerability scans and penetration testing using Nessus, Metasploit, and Wireshark. Document and remediate security findings through POA&Ms and system configuration changes. Ensure compliance with security benchmarks and Departmental baselines.

DevSecOps and Secure Configuration: Embed cybersecurity controls into DevSecOps pipelines and work collaboratively with engineers to secure new application builds, infrastructure-as-code deployments, and cloud configurations across AWS, Azure, and Google platforms.

Policy Compliance and Risk Management: Support Certification and Accreditation (C&A) and Continuous Authorization (CA) activities in alignment with NIST RMF. Develop and maintain documentation such as System Security Plans (SSP), Security Assessment Reports (SAR), and Security Impact Analysis (SIA) reviews.

Audit and Documentation Support: Assist the ISSO and governance teams in preparing for internal and external audits. Maintain accurate records of control implementations, policy exceptions, and remediation efforts. Ensure documentation aligns with 12 FAM, 5 FAH-6, and CSB guidance.

Cloud Security and SECaaS Integration: Implement cloud-native security tools and manage centralized dashboards that integrate cloud, on-premises, and hybrid threat data. Provide security oversight for cloud environments including IaaS, PaaS, and SaaS.

End-of-Day Checks and Classified Operations: Perform classified system checks, maintain secure transfer protocols for OpenNet/ClassNet, and manage assets associated with the Classified Hard Drive Program. Deliver role-based security briefings to users across the OBO/IRM suite.