Cyber / Systems Security Engineering Specialist

About the position MTSI is seeking Cyber / Systems Security Engineering Specialist (with MBSE experience) to support cyber engineering and platform/system security activities across platform program environments. The role blends hands-on technical administration/security operations with Systems Security Engineering (SSE) practices, supporting secure configurations, vulnerability management, compliance, and security documentation. Plus, limited MBSE experience (ability to interpret interfaces and architecture intent from program models [SysML] and technical baselines). Some telework authorized.

Responsibilities

• Execute cybersecurity compliance and engineering activities across lab, integration, and operational support environments (RDT&E and/or program networks as assigned).
• Perform vulnerability management activities including ACAS scanning coordination, patching support, remediation tracking, and security posture reporting.
• Apply DISA STIGs/SRGs for Windows, Linux, hypervisors, and network devices; support scripted evaluation where applicable.
• Support secure network segmentation concepts (VLANs, trunking, routing boundaries), firewall policy implementation/validation, and VPN administration (as directed).
• Administer and maintain Linux-based systems and services (RHEL/CentOS/Ubuntu), including directory integration and authentication controls where required.
• Support virtualization platforms (VMware ESXi/vCenter) and backup/recovery practices; help ensure availability and configuration compliance.
• Contribute to SSE/RMF-relevant artifacts and periodic submissions (plans, evidence, control implementations, scan outputs, POA&M support).
• Read/interpret relevant architecture/interface products WBBB/RIBS-P to ensure security controls align with system boundaries and intended behavior.

Requirements

• 10+ years experience in DoD/DoD-adjacent IT, system administration, and/or cybersecurity support
• Strong Linux administration background (RHEL preferred) and demonstrated STIG implementation experience
• Experience with ACAS vulnerability scanning and remediation workflows
• Working knowledge of enterprise networking fundamentals (routing/switching, VLANs, firewall policy concepts)
• Experience supporting virtualization (VMware ESXi/vSphere) and backup/recovery
• A current SSBI or Federal Investigative Standard Tier 5 (T5) or Tier 5 Reinvestigation (T5R) within the last 5 years. A final DoD Secret or Top Secret clearance. Eligibility for Top Secret in accordance with Intelligence Community Directive (ICD) 704 and Special Access Program (SAP) in accordance with SAP Nomination Policy (SAPNP) with no disqualifying security issues that will deem a candidate ineligible for access.

Nice-to-haves

• Current Top Secret Clearance
• HBSS/ePO client product experience
• Familiarity with GitLab administration/secure CI/CD support in segmented environments
• Basic scripting/automation (Python, PowerShell, Ansible)
• Exposure to SSE/RMF processes and artifact preparation in program environments
• Experience supporting classified spaces and handling procedures

Apply tot his job Apply To this Job