Role Description

We are hiring a Cybersecurity Engineer to support customer deployments in classified environments, ensuring Istari’s platform operates securely, compliantly, and reliably in real-world mission systems.

This role sits within Customer Success and focuses on hands-on system and infrastructure security—not just documentation or policy.

Depending on your background, you may lean more toward:

• System hardening (Windows/Linux)
• Secure network infrastructure (classified environments)

In this role, YOU will be the difference between a platform that looks secure on paper, and one that actually works inside real classified mission environments.

What You'll Do

• Deploy and secure Istari’s platform in:
  • SIPR, JWICS, and air-gapped environments
• Implement and validate:
  • DISA STIGs
  • NIST 800-53 / 800-171 controls
• Perform hands-on security work, including:
  • System hardening (Windows & Linux)
  • Vulnerability scanning (ACAS/Nessus)
  • STIG validation and remediation
  • POA&M management
• Design, configure, or support secure network architectures, including:
  • Segmentation, boundary defense, and routing in classified environments
• Troubleshoot and resolve:
  • Security configuration issues
  • Connectivity and compliance blockers
• Work directly with:
  • Customer security teams (ISSO, ISSM, AO, SCA)
  • Program and infrastructure teams
• Provide feedback to engineering on:
  • Real-world deployment constraints
  • Security gaps and improvements

Qualifications

• Active TS clearance with SCI eligibility
• Security+ (required) — CISSP, CISM, or CASP+ preferred
• 4+ years of hands-on experience in cybersecurity, system administration, or network engineering
• Direct experience with:
  • NIST 800-53 / 800-171
  • DISA STIGs
• Experience operating in:
  • Classified environments (SIPR, JWICS, SAP)

Requirements

• Experience Profile A: System Hardening (System Administration)
  • Strong experience securing Windows and/or Linux systems
  • Hands-on System Patching, STIG implementation and validation
  • Experience running scans, remediating findings, and managing POA&Ms
• Experience Profile B: Secure Infrastructure (Network Engineering)
  • Experience designing or supporting secure network architectures in classified environments
  • Knowledge of network segmentation, boundary defense, and secure connectivity
  • Familiarity with STIGs for network devices and infrastructure

Benefits

• $116,000 - $174,000 a year (may be additionally eligible for stipend, one-time incentive, or % differential for clearance)