Mid-Cyber Security Specialist/Analyst (Dragos Experience)

Umbra builds next-generation space systems that observe the Earth in unprecedented fidelity. Our mission is to deliver global omniscience. To stay ahead of climate change, geopolitical risk, and other major crises and issues, we need a global understanding of what is changing, where, and how fast. Umbra provides easy access to the highest quality commercial satellite data available, an indispensable tool for the growing number of organizations monitoring the Earth. We empower our customers to create solutions that inform, inspire, and address our planet's most pressing needs. We’re helping to create a new industry that has never meaningfully existed before. As we continue to innovate, we are looking for a dedicated Senior Cloud Security Engineer to join our team. In this critical role, you will lead the charge in designing and implementing robust security measures across our cloud-based infrastructure. You will be responsible for ensuring the compliance, safety, and integrity of our systems while collaborating with engineering and operations teams to integrate security solutions seamlessly into our infrastructure. Your expertise will help in evaluating cloud services and deploy security controls that adhere to best practices, safeguarding our applications and sensitive data from cyber threats. If you are passionate about cloud security and want to make a tangible impact on space technology, we invite you to apply! Our aim is to hire this position to work in Umbra's Santa Barbara/Goleta, CA office. Key Responsibilities Possess a deep understanding of cloud security architecture, threat modeling, and compliance frameworks, and make informed decisions about security trade-offs and risk management. Work with cross-functional teams to design, implement, and continuously improve secure DevOps pipelines and secure software development lifecycles (SDLC). Design and implement security automation tools and processes to improve system security and minimize manual intervention in securing software releases. In partnership with product development and information security team members, support risk assessment activities of cloud environments to identify & remediate vulnerabilities and evaluate security posture. Collaborate with engineering teams to define secure cloud architectures and provide guidance on cloud services and technologies. Be the continuous advocate for improving security best practices and champion for a security minded culture with all technical staff to increase overall awareness and capabilities in addressing security risks. Monitor cloud environments for security incidents and anomalies, responding promptly to alarms, events, and threats Assist in compliance efforts with regulations and standards such as NIST 800-171 and CMMC, and others relevant to cloud security. Implement security frameworks, best practices, and processes for cloud security operations. Take ownership and follow through, consistently and independently delivering results. Possess initiative and urgency, with a bias toward action. Provide training and resources to team members to enhance awareness of cloud security risks and best practices. Other professional duties as assigned. Requirements Required Qualifications Bachelor's degree in Computer Science, Cybersecurity, or a related field. Relevant experience can be a substitute for a degree. 6+ years of experience in cloud security, or similar role deeply integrated into DevOps environments, integrating security into CI/CD pipelines. Strong knowledge of cloud security principles and practices, particularly with major cloud service providers (AWS, Azure, GCP). Experience with security infrastructure tools such as IAM & access control, encryption & key management, vulnerability management and threat detection systems. Experience working with Infrastructure as Code (Terraform, Cloud Formation etc). Familiarity with Kubernetes and container security principles. Familiarity with compliance frameworks and standards relevant to cloud security. Excellent problem-solving skills and the ability to communicate complex concepts clearly to technical and non-technical audiences. A strong understanding of networking concepts, security protocols, and risk management principles. Desired Qualifications Certifications such as Certified Cloud Security Professional (CCSP), AWS Certified Security – Specialty, or equivalent are a plus. Background in threat modeling, penetration testing, or security architecture reviews Experience working in the aerospace or defense sectors is an advantage. Experience with federal compliance frameworks (FedRAMP, CMMC) Strong analytical and strategic thinking skills. Benefits Flexible Time Off, Sick, Family & Medical Leave Medical, Dental, Vision, Life, LTD, STD (employer funded) Vol Life, Critical Illness, Accidental, Hospital Indemnity, Pet Insurance (employee funded) 401k with 3% non-elective company contribution Stock Options Free Parking Free lunch daily in office Umbra is an Equal Opportunity Employer. We do not discriminate in hiring on the basis of sex, gender identity, sexual orientation, race, color, religious creed, national origin, physical or mental disability, protected veteran status, or any other characteristic protected by federal, state, or local law. Employment Eligibility Verification In compliance with federal laws, all hired persons will be required to verify their identity and eligibility to work in the United States by completing the required Employment Eligibility Verification Form (I-9 Form) upon hire. ITAR/EAR Requirements This position may include access to technology and/or data that is subject to U.S. export controls pursuant to ITAR and EAR. To comply with federal export controls, all persons hired must be a U.S. citizen, U.S. national, U.S. lawful permanent resident, refugee or asylee as defined by 8 U.S.C. § 1324b(a)(3), or must otherwise be eligible to obtain the required authorizations from the U.S. Department of State and/or U.S. Department of Commerce as applicable.  Pay Transparency This job posting may cover multiple career levels. To ensure greater transparency, we provide base salary ranges for all roles, regardless of location. Our standard pay ranges are based on the role’s function and level, benchmarked against similar growth-stage companies. Compensation may vary based on geographical location, as certain regions may have different cost-of-living factors. The final offer will also be influenced by the candidate's skills, responsibilities, and relevant experience. Compensation Range The Compensation Range for this role is $140,000 - $175,000 DOE.

Implementing the Microsoft Defender solution and supporting the transition to emerging Microsoft technologies. Experience with the Microsoft Defender Suite including Microsoft Defender for Endpoint (MDE), Microsoft Defender for Office (MDO), Defender Cloud Apps (MDCA), and Mobile Threat Defender (MTD) is needed, and to assist with deployment of complex architectures based on Microsoft Intune, Endpoint manager, and 365 Defender center. In addition to implementing the Microsoft Defender solution including MDE, MDO, MDCA, and MTD, this position will be responsible for developing SOPs/TTPS for maintaining agent handlers, repositories, Microsoft Intune, Microsoft 365 Defender, and Microsoft Defender for Cloud Apps and support the transition from DoD Enterprise Capabilities to emerging Microsoft technologies. This position will deploy complex architectures based on Microsoft Intune, Endpoint manager, and 365 Defender center, coordinating efforts to test and verify solutions for future implementation. This position requires the ability to work core hours between 6:00 am to 6:00 pm during the week and participate in on-call rotation for after-hours support. Requirements Experience with Microsoft Intune and Microsoft Defender Experience with server management, including virtualization, and Windows server administration Experience with scripting languages, including PowerShell and KQL Experience with Azure in hybrid environments, Active Directory on prem and cloud, and Group Policies Experience with end user technology deployments and upgrades Experience with supporting Microsoft Defender for Endpoint (MDE), Microsoft Defender for Office (MDO), Microsoft Defender for Cloud and Sentinel, Microsoft Defender for Endpoint Mobile Threat Defense (MTD), Microsoft Endpoint Manager Admin Center, Microsoft Security Administration, Microsoft Office 365, and Microsoft Configuration management service center Active TS/SCI clearance; willingness to take a polygraph exam HS diploma or GED and 7+ years of experience with supporting IT projects and activities, Associate’s degree and 5+ years of experience with supporting IT projects and activities, or Bachelor’s degree and 3+ years of experience with supporting IT projects and activities DoD 8570 IAT Level II Certification, including CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP Certification  Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification, including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND Certification within 60 days of start date Optional Qualifications: Experience in managing and administrating systems associated with software deployments, patches, and scripts to a large enterprise environment Experience in collaborating with peers and managers to identify, manage, and generate appropriate reporting and metrics standards based on deployments and management needs Experience with managing complex IT projects involving multiple teams or organizations Experience with tracking and resolving incidents via ticket queue Experience with providing hands on PC and mobile support to end users Ability to be an active member and solve problems by recommending outside-the-box, cost effective solutions Ability to pay strict attention to detail Possession of excellent written and verbal communication and interpersonal skills Benefits Essential Network Security (ENS) Solutions, LLC is a service-disabled veteran owned, highly regarded IT consulting and management firm. ENS consults for the Department of Defense (DoD) and Intelligence Community (IC) providing innovative solutions in the core competency area of Identity, Credential and Access Management (ICAM), Software Development, Cyber and Network Security, System Engineering, Program/Project Management, IT support, Solutions, and Services that yield enduring results. Our strong technical and management experts have been able to maintain a standard of excellence in their relationships while delivering innovative, scalable and collaborative infrastructure to our clients. Why ENS? Free Platinum-Level Medical/Dental/Vision coverage, 100% paid for by ENS 401k Contribution from Day 1 PTO + 11 Paid Federal Holidays Long & Short Term Disability Insurance Group Term Life Insurance Tuition, Certification & Professional Development Assistance Workers’ Compensation Relocation Assistance

ARETUM, a leader in providing high-quality professional services and technology solutions, is seeking a qualified and motivated Information System Security Officer (ISSO) - Contingent. In this position, you will oversee the security of information systems, ensuring they are protected against unauthorized access, breaches, and vulnerabilities, while adhering to relevant security standards and best practices. ARETUM is committed to delivering innovative solutions across various sectors including Next Generation Analytics, Cyber Security, and Engineering Services. We pride ourselves on providing exceptional service to federal clients, enabling mission success through comprehensive security solutions. This is a contingent position, meaning employment is dependent upon the successful award of the associated contract to Aretum and completion of any required background investigation or security clearance verification.  Responsibilities Serve as the primary security point of contact for information systems and ensure compliance with security policies and procedures. Develop, implement, and enforce security policies to manage risks associated with information systems. Conduct risk assessments and security audits on information systems to identify vulnerabilities and recommend mitigations. Support the Risk Management Framework (RMF) processes, including documentation preparation, assessments, and continuous monitoring. Coordinate with other IT teams to integrate security throughout the lifecycle of information systems. Develop and provide security training and awareness programs for all personnel working on or supporting the information systems. Identify and report on existing security vulnerabilities, incidents, and mitigation efforts. Maintain and review security documentation, including System Security Plans (SSPs), and ensure they are updated as needed. Prepare and conduct regular security meetings, briefings, and reports to senior management regarding security statuses and compliance. Requirements A minimum of 3 years of experience in cybersecurity or information assurance roles supporting federal enterprises. Active DOD Secret Clearance or higher Proficiency in the Risk Management Framework (RMF), FISMA, and knowledge of security compliance standards (e.g., NIST, DoD policies). Strong understanding of security controls, assessment methodologies, and tools used for information system security. Experience with security documentation processes including System Security Plans (SSPs) and incident reporting. Strong analytical, problem-solving, and decision-making skills. Excellent verbal and written communication abilities. Industry-recognized certification in Information Assurance (e.g., CISSP, Security+, CAP) is preferred but not required. Work Environment & Physical Requirements This is a remote/work-from-home position. The employee is expected to maintain a professional and distraction-free home office environment with reliable internet access and the ability to participate in video and audio calls during standard working hours. Standard office equipment such as a computer, phone, and webcam will be used regularly.  Travel Requirement This is a remote position; however, occasional travel may be required based on project needs, client meetings, team collaboration events, or training sessions. Travel is expected to be less than 10% and will be communicated in advance whenever possible.  EEO & Pay Transparency Statement Aretum is committed to fostering a workplace rooted in excellence, integrity, and equal opportunity for all. We adhere to merit-based hiring practices, ensuring that all employment decisions are made based on qualifications, skills, and ability to perform the job, without preference or consideration of factors unrelated to job performance. As an Equal Opportunity Employer, Aretum complies with all applicable federal, state, and local employment laws. We are proud to support our nation’s veterans and military families, providing career opportunities that honor their service and experience. If you require a reasonable accommodation during the hiring process due to a disability, please contact our Talent Acquisition team for assistance. In compliance with Executive Order 13665, Aretum will not discharge or otherwise discriminate against employees or applicants for inquiring about, discussing, or disclosing their own pay or that of another employee or applicant. U.S. Work Authorization Applicants must be U.S. citizens and currently authorized to work in the United States on a full-time basis. This position supports a federal government contract and requires active Secret Clearance or better. Benefits Health Care Plan (Medical, Dental & Vision) Retirement Plan (401k, IRA) Life Insurance (Basic, Voluntary & AD&D) Paid Time Off (Vacation, Sick & Public Holidays) Family Leave (Maternity, Paternity) Short Term & Long Term Disability Training & Development

Northstrat is seeking an Information Systems Security Engineer to join our team. The ideal candidate will have experience in the following areas: secure software engineering practices in support of Department of Defense (DoD) or Intelligence Community (IC) customers, application of NIST Special Publications 800 security controls and the Risk Management Framework (RMF) process, and system vulnerability scanning. Key Responsibilities Planning and managing the system application of NIST Special Publications 800 series security controls. Perform system vulnerability scanning, documenting results, and working with the development team to address security findings. Generation of comprehensive system security documentation and artifacts, to include a Plan of Action and Milestones (POA&M), for obtaining and maintaining Interim Authorization to Test (IATT), Authority to Connect (ATC) and Authorization to Operate (ATO). Work collaboratively with team members, Information Assurance, Information Security Engineering, and other Subject Matter Experts to resolve security issues Maintain thorough documentation of all activities and communications through ticketing systems, operational briefs, and status reports. Requirements Must have bachelor’s degree in a STEM related field. Must have 6 plus years of relevant experience. CompTIA Security+ certification is required. Must have US citizenship An active Top-Secret clearance is required with SCI or SCI eligible. Knowledge of, and practical experience with the NIST Special Publications 800 Series and the Risk Management Framework (RMF) process. Familiar with secure software engineering practices in support of Department of Defense (DoD) or Intelligence Community (IC) customers. Experience with Authorization and Accreditation (A&A) process using RMF for classified systems obtaining and maintaining Interim Authorization to Test (IATT), Authority to Connect (ATC) and Authorization to Operate (ATO). Experience with vulnerability scanning, and testing/validation of false positives/negatives. Experience writing POA&M’s and working with team members on how to remediate findings. Experience with security tools such as: Assured Compliance Assessment Solution (ACAS), and Security Technical Implementation Guide (STIG)'s. Familiar with information security principles and best practices. Excellent communication and collaboration skills. Ability to work independently and as part of a team Preferred Qualifications Familiar with tiered security environments (U, S, TS). Familiar with AWS security services. Familiar with AWS infrastructure services. Familiar with Agile development methodologies. Benefits Work/Life Balance Northstrat values true work life balance. We offer power of choice benefits designed to best meet the needs of you and your lifestyle. Our benefits programs are designed to support and encourage wellness, healthy living, retirement investment, and lifetime learning. Pay Range There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. We also offer competitive compensation, benefits, and professional development opportunities. Please refer to our Benefits section for additional details.   Flex Time Northstrat does not mandate specific working hours. Although project requirements may dictate schedules, a Northstrat employee is only required to work an average of 8 hours per weekday over the course of a month. For example: John worked 12 hours on June 1st to meet a project deadline. On June 15th, John only worked 4 hours because he left early for a long weekend. John’s IBA was not debited for time off because flex time allowed him to carry over those 4 hours from June 1st. Individual Benefits Account (IBA) To attract and retain the highest quality staff, Northstrat provides a unique and versatile benefits package, the Individual Benefit Account (IBA), which places the power of choice in the hands of our greatest asset – the employee. The purpose of the IBA is to provide attractive benefits to all full-time employees of Northstrat on a flexible basis that enables each covered employee to select a package that best suits his or her needs. Whether those needs are paid time off, medical expenses, prescription drug expenses, cash disbursement, or a combination of any of these, the IBA provides flexibility to help you meet your specific goals. The IBA can be used for such things as: IBA Benefits accrue each month in the amount equivalent to 50% of the employee’s monthly compensation rate. That is, the effective dollar amount of this accrual is in addition to an employee’s salary. Profit Sharing Plan (PSP) The PSP is a qualified retirement plan that Northstrat funds quarterly on the employee’s behalf through the IBA in the amount equivalent to 25% (up to the IRS contribution limit) of the employee’s compensation. That is, of the 50% accrual in the IBA, half of the amount accrued is applied to the PSP. Stock Options Because Northstrat is an employee-owned company, all new employees are offered stock options. Employees have the opportunity to receive additional stock options based on accomplishment of individual performance goals. Stock owners elect the Board of Directors and are directly impacted by the success of the company. Lifelong Learning Our culture promotes and nurtures a growth environment. We hire and scale rapidly to meet the needs of our partner customers. Through periodic company sponsored training events, and the ability to use IBA funds for reimbursement of work-related education expenses you will have the opportunity to continually grow your skills and abilities. Join Our Talented Team We hire the BEST employees and value each one. Since 2021, The Washington Post has recognized Northstrat among its "Top Workplaces". We think that your friends and family will like it here too, so we offer employee referral incentives. Northstrat is an Equal Opportunity Employer We are committed to fostering an inclusive, diverse workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, disability, veteran status or other legally protected status.

Work individually or in a small integrated team to develop innovative solutions to enable secure and reliable operations of enterprise computer systems. Develop new concepts and processes and analyze root causes and resolve complex issues utilizing your knowledge of industry. Performs systems administration of cyber tools sets and server systems connected to networks across multiple classification domains. Provide support to developmental and operational systems including day-to-day operations, monitoring, and problem resolution for all client/server/storage/network devices, etc. Install, configure and manage operating system and application software as necessary. Support Linux & Windows systems engineering efforts in system design and evaluation, solution engineering, software development, or system administration. Requirements 3+ years of experience as a system administrator Experience with installing or configuring devices, applications, and security tools, including Fidelis Experience maintaining, engineering, deploying, and configuring Fidelis DLP and XPS appliances, including DirectSensor 10G, Mail DLP, and CommandPost, through both iLO and connected directly to the appliance via SSH or Console Port Experience operating and maintaining Linux servers, including operating systems and applications, patching, and other updates Ability to analyze and respond to Fidelis system logs, security logs, and other events to troubleshoot Fidelis appliance stack and network issues to ensure it remains fully operational Active TS/SCI clearance; willingness to take a polygraph exam HS diploma or GED and 7+ years of experience as a system administrator, Associate’s degree and 5+ years of experience as a system administrator, or Bachelor’s degree and 3+ years of experience as a system administrator Active DoD 8570 IAT Level II Certification, including Security+ CE, CCNA - Security, GSEC, SSCP, CySA+, GICSP, or CND Certification Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider (CSSP) - Infrastructure Support (IS) certification, including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND within 60 days of start date. Optional Qualifications: Experience with operating and maintaining Microsoft Windows and Linux servers to include operating systems. Prior experience as a SOC analyst, Hunt analyst, or DLP analyst, or have previously used Fidelis DLP in an administrative & monitoring capacity. Familiarity with DoD Risk Management Framework. Experience automating deployments and configuration management. Experience as a network administrator or systems engineer. Experience in using Active Directory to manage Windows policies. Knowledge of different layers of the technology stack, including network, application frameworks, database systems, and vendor solutions. Knowledge of Git and Atlassian tools, including Jira and Confluence and Microsoft Visio (or like product) graphic and flowchart design. Benefits Essential Network Security (ENS) Solutions, LLC is a service-disabled veteran owned, highly regarded IT consulting and management firm. ENS consults for the Department of Defense (DoD) and Intelligence Community (IC) providing innovative solutions in the core competency area of Identity, Credential and Access Management (ICAM), Software Development, Cyber and Network Security, System Engineering, Program/Project Management, IT support, Solutions, and Services that yield enduring results. Our strong technical and management experts have been able to maintain a standard of excellence in their relationships while delivering innovative, scalable and collaborative infrastructure to our clients. Why ENS? Free Platinum-Level Medical/Dental/Vision coverage, 100% paid for by ENS 401k Contribution from Day 1 PTO + 11 Paid Federal Holidays Long & Short Term Disability Insurance Group Term Life Insurance Tuition, Certification & Professional Development Assistance Workers’ Compensation Relocation Assistance

ARETUM is actively seeking an Information System Security Engineer (ISSE) - Contingent to join our esteemed team. As an ISSE, you will play a pivotal role in ensuring the security of our clients' information systems. This position is ideal for a detail-oriented professional who thrives in a fast-paced environment and is committed to safeguarding data and critical assets. At ARETUM, we provide dynamic solutions in areas such as Cyber Security, Engineering Services, and IT Systems, aiming to empower our Federal clients with the most effective and secure technologies available. This is a contingent position, pending the successful award of the associated contract and the necessary security clearance verification. This is a contingent position, meaning employment is dependent upon the successful award of the associated contract to Aretum and completion of any required background investigation or security clearance verification.  Responsibilities Design, implement, and maintain security systems and protocols to protect sensitive information and infrastructures. Conduct security assessments, vulnerability analyses, and audits to identify and mitigate risks across information systems. Develop and maintain security documentation, including System Security Plans (SSPs), security requirements, and risk management assessments. Oversee the integration of security within the systems development lifecycle (SDLC) and collaborate with various teams to ensure compliance. Respond to security incidents and perform detailed investigations and root cause analysis. Implement and maintain continuous monitoring strategies to ensure compliance with federal regulations and standards. Provide technical expertise in areas such as firewalls, intrusion detection systems, and encryption technologies. Keep abreast of the latest security trends, technologies, and regulatory changes to advise on and implement relevant best practices. Prepare and deliver technical reports and security status updates to management and stakeholders. Requirements A minimum of 5 years of experience in information security engineering or a related field. Active DOD Secret Clearance or higher. Proficient knowledge of security frameworks and guidelines such as NIST, RMF, and FISMA. Hands-on experience with security engineering principles and associated tools. Strong understanding of network, application, and database security practices. Excellent problem-solving skills and the ability to assess complex security scenarios. Strong interpersonal and communication skills for effective collaboration with technical and non-technical audiences. Relevant industry certifications such as Security+, CISSP, or CEH are preferred. Work Environment & Physical Requirements This is a remote/work-from-home position. The employee is expected to maintain a professional and distraction-free home office environment with reliable internet access and the ability to participate in video and audio calls during standard working hours. Standard office equipment such as a computer, phone, and webcam will be used regularly.  Travel Requirement This is a remote position; however, occasional travel may be required based on project needs, client meetings, team collaboration events, or training sessions. Travel is expected to be less than 10% and will be communicated in advance whenever possible.  EEO & Pay Transparency Statement Aretum is committed to fostering a workplace rooted in excellence, integrity, and equal opportunity for all. We adhere to merit-based hiring practices, ensuring that all employment decisions are made based on qualifications, skills, and ability to perform the job, without preference or consideration of factors unrelated to job performance. As an Equal Opportunity Employer, Aretum complies with all applicable federal, state, and local employment laws. We are proud to support our nation’s veterans and military families, providing career opportunities that honor their service and experience. If you require a reasonable accommodation during the hiring process due to a disability, please contact our Talent Acquisition team for assistance. In compliance with Executive Order 13665, Aretum will not discharge or otherwise discriminate against employees or applicants for inquiring about, discussing, or disclosing their own pay or that of another employee or applicant. U.S. Work Authorization Applicants must be U.S. citizens and currently authorized to work in the United States on a full-time basis. This position supports a federal government contract and requires Active Secret Clearance or higher. Benefits Health Care Plan (Medical, Dental & Vision) Retirement Plan (401k, IRA) Life Insurance (Basic, Voluntary & AD&D) Paid Time Off (Vacation, Sick & Public Holidays) Family Leave (Maternity, Paternity) Short Term & Long Term Disability Training & Development