Principal Cybersecurity Engineer

Job description

**Job ID:** **112707**

The Leonardo DRS Land Systems business is a recognized leader in the design and integration of complex technologies into new and legacy systems and platforms for global military and commercial customers.

We are a 5 year running Top Workplace in the Greater St. Louis area.

**Job Summary**

Leonardo DRS is seeking a full time Principal Cybersecurity Engineer for our Bridgeton, MO facility.

The selected candidate will be focusing on the security assessment and risk management of IT systems embedded within tactical vehicles.

This senior technical role will be critical in ensuring the confidentiality, integrity, and availability of sensitive data and systems operating in challenging and dynamic environments.

The ideal candidate will be a recognized subject matter expert in the Risk Management Framework (RMF), with a proven track record of applying it to complex, real-world systems.

This role requires advanced hands-on technical expertise, exceptional analytical skills, and the ability to act as a mentor and technical authority within the team.

**Job Responsibilities**

+ **Risk Management Framework (RMF) Implementation:** Provide senior technical guidance and oversight for the RMF process for IT systems within tactical vehicles, from system categorization (SP 800-60) through security control selection (SP 800-53), implementation, assessment, authorization, and continuous monitoring.
+ **Security Assessments:** Lead comprehensive security assessments of tactical vehicle IT systems, including hardware, software, and network configurations.

This includes vulnerability scanning, penetration testing (where appropriate and authorized), security architecture reviews, and configuration analysis.
+ **Documentation:** Develop and review detailed RMF documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessments, Plans of Action and Milestones (POA&Ms), and other required artifacts.

Ensure documentation not only complies with, but also sets the standard for, relevant regulations.
+ **Security Control Implementation and Validation:** Serve as a senior technical advisor to engineering teams, driving the implementation and validation of security controls on tactical vehicle systems.

This may involve hands-on configuration of systems, development of security hardening guidelines, and influencing system design.
+ **Vulnerability Management:** Direct the identification, analysis, and prioritization of vulnerabilities discovered through assessments or continuous monitoring.

Develop and champion remediation strategies, providing expert guidance to technical teams to implement solutions.
+ **Compliance:** Serve as a subject matter expert on all security activities and documentation, ensuring compliance with relevant Department of Defense (DoD) instructions, NIST publications (specifically 800-series), Cybersecurity Maturity Model Certification (CMMC), and other applicable regulations and policies (e.g., DoDI 8510.01, DoDI 8500.01).
+ **Collaboration:** Drive cross-functional collaboration with engineers, system administrators, program managers, and government representatives, acting as a key liaison to ensure security is integrated throughout the system lifecycle.
+ **Mentorship:** Actively mentor and guide junior engineers, fostering their professional growth and expanding the team’s overall technical capabilities.
+ **Continuous Improvement:** Stay current with the latest cybersecurity threats, vulnerabilities, and technologies relevant to tactical vehicle systems.

Recommend improvements to security processes and technologies.
+ **Travel:** This position may require travel to test facilities, potentially up to 25% travel, occasional travel for 1-2 week periods.

+ **Additional Responsibilities:** Support, communicate, reinforce and defend the mission, values and culture of the organization.

Attend appropriate engineering, customer or business meetings.

Lead less-experienced engineers.

**Qualifications**

+ Master's degree in Cybersecurity, Computer Science, Information Technology, Electrical Engineering, or a related technical field
+ Relevant cybersecurity certifications (e.g., CASP+, CISM, CISA, CRISC, Security+, (ISC)2 CAP, GSLC, CCNA, Network+)
+ Minimum of 8 years of experience in cybersecurity engineering, with a demonstrated focus on applying the Risk Management Framework (RMF).

This experience must include performing security assessments of IT systems.
+ Strong understanding of NIST SP 800-37, SP 800-53, SP 800-60, SP 800-160, and other relevant NIST publications
+ Experience conducting security assessments, including vulnerability scanning and security architecture reviews
+ Experience with vulnerability scanning tools, specifically Nessus or ACAS
+ Experience with a variety of security assessment tools, such as static code analyzers, dynamic application security testing (DAST) tools, or network analysis tools
+ Proficiency in both Linux and Windows operating systems
+ Experience with scripting in one or more common scripting languages (e.g., Python, PowerShell, Bash, Perl)
+ Experience with the configuration, security hardening, and/or troubleshooting of network hardware
+ Experience with security hardening techniques for operating systems (e.g., Windows, Linux), network devices, and applications
+ Excellent written and verbal communication skills, with the ability to clearly articulate technical information to both technical and non-technical audiences
+ Ability to work independently and as part of a team
+ Strong problem-solving and analytical skills

+ Ability to obtain and maintain a security clearance

U.S. Citizenship required.

This position requires an active DOD security clearance or the ability to obtain such clearance within a reasonable time after commencement of employment.

_The expected pay scale for this position is_ _$127,389.00/year - $171,975.00/year for the state of Illinois._ _Should the level, location, or scope of the position change during the hiring process, the pay scale may be modified accordingly.

When extending an offer of employment, Leonardo DRS considers factors such as (but not limited to) the scope and responsibilities of the position; any Federal Government contract labor categories and contract wage rates, the candidate’s relevant work experience, education/training, certifications, and key skills; internal equity; and market and business considerations._

_Taking care of our people is a top priority at Leonardo DRS.

We are proud to offer competitive salaries and comprehensive benefits, including medical, dental, and vision coverage, a company contribution to a health savings account, telemedicine, life and disability insurance, legal insurance, and a 401(k) savings plan.

We champion wellness programs that focus on physical, emotional, and financial well-being.

We develop our talent by offering programs and activities to support career-growth, professional development, and skill enhancement.

And we understand there is more to life than work, and the importance of offering flexible work schedules with our 9/80 program, competitive vacation, health/emergency leave, paid parental leave, and community service hours._
_*Some employees are eligible for limited benefits only_

_Leonardo DRS, Inc.

and its subsidiaries provide equal opportunities to all employees and applicants for employment and prohibit discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, protected veteran status, or any other characteristic protected by federal, state, or local laws.

#LSY_

Required Skill Profession

Other General