Lead Cybersecurity Engineer – Senior

Location: National Capital Region (Washington, DC) – Hybrid/Onsite
Clearance: Must be able to pass background check (U.S. work authorization required)

Salary: $150,000-$175,000

Position Overview

We are seeking a Senior Lead Cybersecurity Engineer to provide technical leadership across enterprise cybersecurity engineering, monitoring architecture, and security tool implementation. This role will drive improvements in detection capabilities, security controls, and overall cyber defense posture within a complex hybrid environment.

Key Responsibilities

• Lead cybersecurity engineering efforts across:
  • SIEM and monitoring platforms
  • Cloud and endpoint security tools
  • Vulnerability management solutions
• Design and support:
  • Data source onboarding
  • Alert tuning and reduction of false positives
  • Detection engineering and correlation rules
  • Dashboarding and reporting
• Translate cybersecurity risks into actionable engineering solutions and implementation plans
• Provide guidance on:
  • Secure architecture design
  • Zero Trust alignment
  • Tool integration and control implementation
• Support incident response, root cause analysis, and advanced troubleshooting
• Develop and maintain:
  • Standard operating procedures (SOPs)
  • Engineering diagrams and documentation
  • Implementation plans and technical reports
• Collaborate with SOC, NOC, SOAR, PAM, and vulnerability management teams
• Mentor junior engineers and provide technical leadership across teams
• Brief stakeholders on cybersecurity risks, solutions, and engineering strategies

Required Qualifications

• 8–10+ years of experience in:
  • Cybersecurity engineering
  • Security architecture
  • SIEM / monitoring engineering
  • Cloud or enterprise security operations
• 5+ years leading:
  • Security engineering initiatives
  • Tool implementations and monitoring design
  • Detection engineering and alert optimization
• Experience supporting complex enterprise environments (on-prem, cloud, hybrid)
• Strong ability to translate security risks into engineering solutions

Technical Expertise

• SIEM / Monitoring Platforms:
  • Splunk, Microsoft Sentinel, Elastic, QRadar, LogRhythm, or similar
• Security Tools & Platforms:
  • AWS, Azure
  • Microsoft Defender, CrowdStrike, Carbon Black
  • Tenable, Rapid7, Nessus
• Core Capabilities:
  • Alert tuning and correlation rule development
  • Log source onboarding and data engineering
  • Dashboard and visualization development
  • Security control implementation

Frameworks & Methodologies

• Knowledge of:
  • NIST, FISMA, RMF
  • Zero Trust architecture
  • Incident response lifecycle
  • Vulnerability management practices

Education

• Bachelor’s degree in Cybersecurity, IT, Computer Science, Engineering, or related field (or equivalent experience)

Certifications (Required/Preferred)

• Preferred certifications include:
  • CISSP, ISSEP, CISM, CASP+, CCSP
  • ITIL Foundation
  • Cloud or SIEM platform certifications