Cyber Security Engineer

About Company:

Kundlas Consulting Group LLC is a professional consulting firm specializing in construction inspection and compliance services for public infrastructure projects. Our core services include on-site inspection of roadway, bridge, and utility construction to ensure adherence to engineering specifications, safety standards, and contract requirements. We support clients with daily reporting, materials testing coordination, schedule tracking, and quality assurance oversight. Additional services include project management, grants management for federally funded infrastructure and disaster recovery programs.

About the Role:

The Cyber Security Engineer will support the U.S. Army Corps of Engineers (USACE) READI contract by ensuring cybersecurity compliance for systems and networks supporting emergency response, disaster recovery, infrastructure restoration, and continuity of operations activities. This role provides cybersecurity expertise to protect information systems, communications infrastructure, and operational technology environments from cyber threats while maintaining compliance with federal cybersecurity requirements and security frameworks.

The Cyber Security Engineer will support the implementation, monitoring, assessment, and maintenance of cybersecurity controls across enterprise systems, cloud environments, network infrastructure, and field-deployed technologies. The position requires close coordination with IT personnel, network engineers, system administrators, cybersecurity teams, and government stakeholders to ensure the confidentiality, integrity, and availability of critical systems supporting recovery operations.

Minimum Qualifications:

• Bachelor’s degree in Cyber Security, Computer Science, Information Technology, Information Systems, Network Engineering, or a related technical discipline.
• Demonstrated professional experience in cybersecurity engineering, information assurance, network security, or related cybersecurity roles.
• Strong knowledge of network security principles, firewalls, VPN technologies, intrusion detection/prevention systems, and endpoint security solutions.
• Experience conducting vulnerability assessments, security evaluations, risk assessments, and incident response activities.
• Familiarity with federal cybersecurity frameworks and standards including NIST, FISMA, RMF, CIS Controls, and related compliance requirements.
• Experience supporting secure network and system operations in enterprise environments.
• Strong written and verbal communication skills with the ability to coordinate with technical teams and government stakeholders.

Preferred Qualifications:

• Professional certifications such as CISSP, CISM, CEH, Security+, GIAC, CASP+, or equivalent cybersecurity credentials.
• Experience supporting USACE, DoD, FEMA, DHS, or other federal information technology and cybersecurity programs.
• Familiarity with NIST Risk Management Framework (RMF), Authority to Operate (ATO) processes, and federal compliance documentation.
• Experience securing cloud environments including Microsoft Azure, AWS, or hybrid cloud infrastructures.
• Experience with Security Information and Event Management (SIEM) platforms, threat monitoring tools, and security automation technologies.
• Knowledge of scripting languages such as Python, PowerShell, or Bash for security automation and system administration.

Responsibilities:

• Ensure cybersecurity compliance for systems, networks, and information technology assets supporting emergency response and recovery operations.
• Implement, maintain, and monitor cybersecurity controls in accordance with federal requirements, NIST guidance, and organizational security policies.
• Conduct vulnerability assessments, security scans, risk analyses, and compliance reviews to identify and mitigate cybersecurity risks.
• Monitor network traffic, system logs, security alerts, and threat intelligence sources to detect and respond to potential cybersecurity incidents.
• Support incident response, forensic analysis, containment activities, and corrective action planning following cybersecurity events.
• Review system configurations, access controls, security architectures, and network designs to ensure compliance with established security requirements.
• Coordinate with IT personnel, network engineers, system administrators, contractors, and government representatives to resolve cybersecurity issues and maintain secure operations.
• Prepare security documentation, compliance reports, risk assessments, and technical recommendations supporting federal cybersecurity programs.
• Support disaster recovery planning, continuity of operations activities, and cybersecurity readiness initiatives.
• Maintain awareness of emerging cyber threats, vulnerabilities, technologies, and federal cybersecurity guidance relevant to emergency management and recovery operations.

Skills:

The ideal candidate must possess strong expertise in cybersecurity engineering, network security, vulnerability management, and information assurance to support secure operations during emergency response and recovery activities. A thorough understanding of NIST cybersecurity frameworks, federal compliance requirements, risk management methodologies, and cybersecurity best practices is essential for protecting critical systems and maintaining regulatory compliance. Experience conducting vulnerability assessments, security monitoring, incident response, threat analysis, and risk evaluations is required to identify and mitigate evolving cybersecurity threats. The candidate should demonstrate proficiency with firewalls, intrusion detection and prevention systems, VPN technologies, endpoint protection platforms, SIEM tools, and security monitoring solutions. Strong analytical and problem-solving skills are necessary to assess security risks, investigate incidents, and develop effective remediation strategies. Excellent written and verbal communication skills are required for preparing technical documentation, supporting compliance activities, and coordinating with multidisciplinary teams and government stakeholders. The ability to adapt to dynamic operational environments and support mission-critical systems during emergency response and disaster recovery operations is essential for successful performance under the USACE READI contract.