Senior Cybersecurity Engineer

Senior Cybersecurity Engineer
Location: Washington, DC
Salary Range $137,000 to $142,000 per year

Kiakahi LLC is looking for an experienced Senior Cybersecurity Engineer to join its team.

Security Operations & Continuous Monitoring

• Execute security operations through centralized monitoring of system logs, endpoint activity, and network traffic using enterprise tools such as ACAS, Nessus, SCAP, and endpoint security platforms
• Configure and maintain SIEM platforms (Microsoft Sentinel), including data connector configuration, correlation rule development and tuning, and SOAR playbook development for automated response workflows
• Provide continuous visibility into vulnerabilities, system anomalies, and potential threats across both cloud and on-premises infrastructure
• Conduct proactive threat hunting on a defined schedule, executing hypothesis-driven queries across the log estate to identify behavioral patterns below automated detection thresholds

Threat Detection & Incident Response

• Perform log aggregation, correlation analysis, and validation of indicators of compromise
• Coordinate containment, investigation, and remediation actions when potential incidents are identified
• Isolate affected systems, validate system integrity, and document all actions to support reporting and compliance requirements
• Execute incident response activities in accordance with the NIGC IR plan
• Security Tool Administration
• Deploy and operationally manage Microsoft Defender EDR, IDS/IPS solutions, and Azure/M365 security controls in the hybrid production environment
• Lead implementation and sustainment of vulnerability management and centralized log management solutions
• Integrate CDM program tools with Microsoft Sentinel as additional telemetry sources for continuous monitoring posture reporting
• Configure Syslog aggregation pipelines from on-premises network and server infrastructure

Regulatory Compliance & Framework Implementation

• Apply NIST SP 800-37 RMF methodology across Defense, Intelligence, and Civilian frameworks
• Support FISMA compliance through implementation of NIST SP 800-53 control families and continuous monitoring under NIST SP 800-137
• Monitor CISA guidance channels for new Binding Operational Directives (BODs) and Emergency Directives, assessing applicability within five business days
• Develop and maintain System Security Plans (SSPs) and Security Control Traceability Matrices (SCTMs)

Experience

This position requires the candidate to be a US Citizen and capable of passing a National Agency Check with Investigation to obtain a Public Trust.

• Minimum six (6) continuous years of experience in cybersecurity engineering and security operations
• Senior-level proficiency with direct, hands-on experience with the following technologies:
• SIEM platforms (Microsoft Sentinel, Splunk)
• SOAR tools and automated response workflows
• NDR (Network Detection and Response)
• EDR (Endpoint Detection and Response) - Microsoft Defender
• Identity Management systems (Microsoft Entra ID)
• Vulnerability scanning tools (ACAS, Tenable.SC, Nessus, SCAP)
• Linux and Windows Server administration
• Cisco Networking infrastructure
• VMware virtualization environments

Technical Knowledge

• Deep RMF expertise across Defense, Intelligence, and Civilian frameworks (NIST SP 800-37, CNSSI 1253, ICD 503)
• Familiarity with NIST 800-series publications (800-30, 800-53, 800-137, 800-160/161) and FIPS-199/200
• Experience with eMASS for RMF package management
• Proficiency in DISA STIG hardening and SCAP validations

Certifications (Required/Preferred)

• CISSP (Certified Information Systems Security Professional)
• CompTIA SecurityX (CASP+) CE, CySA+, Security+, or equivalent
• Additional preferred: GIAC GCCC, Navy Qualified Validator

Education

• Bachelor's degree in Information Systems, Cybersecurity, Computer Science, or related field
• Master's degree preferred

This position supports a small federal agency operating a hybrid IT environment consisting of:

On-premises: Cisco networking infrastructure, VMware Hypervisor (<50 servers), Windows Server and Linux OS

Cloud: Microsoft Azure IaaS/PaaS, Microsoft Entra ID (Azure AD), Microsoft 365 (Exchange/SharePoint/Teams)

Security Stack: Microsoft Sentinel SIEM, Defender EDR, CDM Tools

User Base: Fewer than 150 users across headquarters and distributed locations

Performance Expectations

• Ability to operate independently with minimal oversight in a small-team federal environment
• Immediate contribution upon onboarding with minimal ramp-up period
• Deliver measurable improvements in detection accuracy and reduction in false positives

Physical Requirements

Work may involve sitting or standing for extended periods of time.  Position may require typing and reading from a computer screen.  Must have sufficient mobility, including but not limited to bending, reaching, and kneeling to complete daily duties in a timely and efficient manner.  May include lifting weigh up to thirty (30) pounds as necessary.

Benefits

• Medical, dental, vision, disability, and life insurance
• Flexible Spending Accounts
• 401(k)
• PTO
• Professional Development
• Paid federal holidays
• Paid Parental Leave

Company Summary

Headquartered in San Diego, CA, Kiakahi LLC is a Native Hawaiian Organization (NHO) owned SBA Small Disadvantaged Business specializing in global information technology and offering professional solutions in IT Design & Installation, Cybersecurity Engineering & Support, Application Integration & Development, Software & Hardware Engineering, Network & Systems Management, Information Systems Security, and Business Management Services.

L