Cybersecurity Engineer – PQC & Enterprise Security Integration Support
145k-150k/year
HHS - Remote (Fairfax VA/EST)
Clearance Requirement: All candidates must be US Citizens and be eligible to obtain a government clearance.
Enterprise Systems Engineering & Security Integration
Provide enterprise cybersecurity systems engineering, integration, and modernization support for HHS cybersecurity initiatives related to Post-Quantum Cryptography (PQC), Zero Trust (ZT), and enterprise security interoperability.
- Support analysis, coordination, and integration of cybersecurity technologies, systems, and enterprise security architectures across HHS environments
- Assess interoperability, dependencies, and integration considerations between cybersecurity tools, cryptographic technologies, governance processes, and enterprise systems
- Support implementation planning and coordination for cybersecurity modernization initiatives involving PQC readiness, cryptographic agility, and Zero Trust alignment
- Assist in evaluating system configurations, security architecture alignment, and technical dependencies across enterprise environments
- Collaborate with technical and program stakeholders to support secure, scalable, and interoperable cybersecurity modernization efforts
- Support enterprise cybersecurity engineering activities across cloud, hybrid, and on-premises environments, as applicable
Enterprise Cryptographic Assessment & Interoperability Analysis Support enterprise cryptographic discovery, dependency analysis, and interoperability assessment activities associated with cybersecurity modernization and PQC readiness initiatives.
- Support discovery and inventory activities related to cryptographic assets across enterprise environments
- Assess and review data related to cryptographic dependencies across enterprise systems, applications, and network environments to identify vulnerable cryptographic implementations and technologies impacted by PQC migration requirements
- Assist in identifying legacy systems, applications, and technologies that may not support PQC algorithms or cryptographic agility principles
- Support interoperability assessments and dependency analysis related to enterprise cryptographic modernization initiatives
- Assist with the evaluation of operational impacts, integration dependencies, and transition considerations associated with PQC modernization efforts
PQC Migration Planning & Engineering Support Support planning, coordination, and technical integration activities associated with Post-Quantum Cryptography modernization initiatives.
- Support the development of migration strategies and implementation roadmaps for transitioning enterprise cybersecurity environments toward PQC-capable solutions
- Assist with implementation planning for TLS 1.3 adoption and other modern cryptographic protocols
- Support evaluation of vendor documentation, product roadmaps, and PQC readiness statements for enterprise technologies and security platforms
- Assist with architecture reviews to support future-state cybersecurity environments, incorporating cryptographic agility principles
- Assist with the development of technical standards, implementation guidance, and engineering baselines supporting PQC migration and modernization activities
- Support evaluation of emerging cybersecurity technologies, standards, and modernization approaches related to PQC implementation considerations
Testing, Validation & Technical Assessment Support testing, validation, and technical assessment activities associated with cybersecurity modernization and PQC readiness initiatives.
- Assist with the development of testing procedures, interoperability assessments, and validation criteria for PQC-capable technologies and modernization initiatives
- Support review of test results, operational impacts, compatibility considerations, technical risks, and recommended remediation approaches
- Support pilot implementations, proof-of-concept activities, and technical coordination efforts related to PQC migration and cybersecurity modernization planning
- Support risk identification, impact assessments, and technical analysis associated with enterprise cybersecurity modernization efforts
Cybersecurity Modernization & Security Integration Support Provide engineering and integration support for enterprise cybersecurity modernization and implementation coordination activities.
- Provide engineering and integration support for the secure implementation of enterprise cybersecurity technologies and modernization initiatives
- Assist with risk assessments, vulnerability analysis, and interoperability evaluations related to cryptographic modernization and cybersecurity integration efforts
- Support alignment between cybersecurity modernization activities, Zero Trust strategies, and enterprise governance requirements
- Coordinate with cybersecurity teams, system owners, architects, engineers, governance stakeholders, and external partners to support modernization and integration activities
- Support technical meetings, engineering reviews, working groups, and coordination efforts across enterprise cybersecurity initiatives
Zero Trust & Governance Integration Support alignment between Post-Quantum Cryptography modernization activities, Zero Trust strategies, and enterprise cybersecurity governance requirements.
- Support coordination activities related to the integration of PQC modernization efforts within Zero Trust and enterprise cybersecurity environments
- Analyze relationships between encryption, identity, access management, segmentation, interoperability, and cryptographic agility within enterprise systems
- Assist in aligning cybersecurity modernization activities with applicable federal cybersecurity guidance, governance frameworks, and HHS security requirements
- Support interoperability considerations between technical security controls, enterprise architectures, and operational cybersecurity environments
- Assist with technical assessments, risk considerations, and governance alignment activities associated with enterprise cryptographic modernization initiatives
Documentation, Reporting & Stakeholder Coordination Support operational visibility, technical documentation, reporting, and stakeholder coordination activities across cybersecurity modernization initiatives.
- Assist with the development and maintenance of technical documentation, implementation procedures, engineering diagrams, architecture artifacts, and operational guidance
- Support preparation of reports, technical summaries, status updates, technical briefings, leadership presentations, and decision support materials
- Document identified risks, issues, dependencies, implementation considerations, and recommendations associated with PQC migration and cybersecurity modernization activities
- Support the development of inventory reports, migration-related documentation, dashboards, trackers, and reporting artifacts required for federal reporting and compliance activities
- Communicate technical concepts, modernization impacts, and interoperability considerations clearly to both technical and non-technical stakeholders
- Contribute to continuous improvement efforts supporting enterprise cybersecurity modernization, systems integration, and governance alignment
Qualifications Required:
- Bachelor's degree in Cybersecurity, Information Systems, Computer Science, Engineering, or related technical discipline
- 8+ years of experience supporting federal cybersecurity, enterprise systems engineering, systems integration, or cybersecurity modernization initiatives
- At least one professional certification such as CISSP, CISM, CCSP, CAP, TOGAF, SABSA, or ISO/IEC 27001 Lead Implementer/Auditor
- Experience supporting enterprise cybersecurity architectures, interoperability efforts, or large-scale modernization programs within a federal environment
- Familiarity with Zero Trust principles, cybersecurity governance frameworks, and federal security requirements
- Knowledge of NIST cybersecurity frameworks, FISMA, and enterprise cybersecurity best practices
- Experience supporting enterprise cybersecurity governance, architecture coordination, or technical integration across complex federal environments
- Strong analytical, organizational, and communication skills with the ability to coordinate across technical and non-technical stakeholders
Preferred:
- Experience supporting HHS, OIS, or similar federal cybersecurity organizations
- Familiarity with Post-Quantum Cryptography (PQC) concepts, NSM-10, OMB M-23-02, Zero Trust Architecture, emerging standards, and implementation considerations
- Experience supporting Governance, Risk, and Compliance (GRC) integration or interoperability initiatives
- Familiarity with enterprise architecture, cloud security, or cybersecurity modernization programs
- Experience developing technical documentation, architecture diagrams, dashboards, or implementation tracking artifacts
- Experience conducting cryptographic inventories or supporting Automated Cryptographic Discovery and Inventory (ACDI) tools
- Experience supporting testing and implementation of TLS 1.3 or cryptographic agility initiatives
- Familiarity with Microsoft Power Platform, ServiceNow, SharePoint, or enterprise reporting and collaboration tools
Core Competencies
- Enterprise Cybersecurity Systems Integration
- Post-Quantum Cryptography (PQC) Fundamentals
- Cryptographic Protocols and Technologies
- Network Security Architecture
- Secure Communications (TLS, IPsec, SSH, VPNs, PKI)
- Cybersecurity Modernization Support
- Systems Engineering & Interoperability
- Cryptographic Discovery and Inventory
- Enterprise Security Architecture Coordination
- Stakeholder Coordination & Technical Communication
- Risk Analysis & Technical Documentation
- Operational Reporting & Continuous Improvement
Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status").
Pay: $145,000.00 - $150,000.00 per year
Application Question(s):
- This position has a clearance requirement that all candidates must be US Citizens and be able to obtain a government clearance. Do you meet this requirement?
Education:
Experience:
- Federal Cybersecurity: 8 years (Required)
- Enterprise Security Architecture: 8 years (Required)
- Zero Trust: 6 years (Required)
- NIST/FISMA/RMF: 6 years (Required)
- Post-Quantum Cryptography (PQC): 1 year (Required)
License/Certification:
- CISSP, CISM, CCSP or TOGAF (Required)
Security clearance:
Work Location: Remote
