Raft is hiring a
Cybersecurity Engineer

Summary

The job is for a Cybersecurity Engineer at Raft, a U.S.-based small business focusing on Distributed Data Systems and Complex Application Development. The role involves implementing and maintaining security solutions, conducting regular audits, and assisting with incident response activities. The ideal candidate should have 2+ years of experience in various cybersecurity domains and hold an Active Secret security clearance.

Requirements

• Oversee the implementation of security controls in line with organizational policies and regulatory requirements
• Conduct regular security audits, vulnerability assessments, and risk assessments for cloud-based environments
• Maintain System Security Plans (SSP), Plan of Actions and Milestones (POAM), and ensure system compliance with relevant security standards
• Ensure continuous monitoring and incident response processes are in place
• Participate in security authorization processes, ensuring that systems achieve Authority to Operate (ATO)
• Support the development of security documentation such as Security Assessment Reports (SARs), System Boundary Diagrams, PPS Lists, and Security Control Traceability Matrices (SCTM)
• Collaborate with development teams to embed security tools and processes into DevSecOps pipelines
• Provide guidance on the secure use of AWS cloud security offerings (CloudTrail, GuardDuty, Inspector, etc.), as well as containerization and orchestration technologies like Kubernetes and Docker
• Occasionally work in classified environments such as Closed Areas or SCIFs (Sensitive Compartmented Information Facilities) as needed
• Stay current with evolving security standards, technologies, and industry trends

Responsibilities

• Implement and maintain security solutions
• Participate in security testing
• Assist with incident response activities

Preferred Qualifications

• Familiarity with the NIST RMF or other security/risk frameworks
• Passionate about building automation in languages like Python, GoLang, or Typescript
• Experience with Azure or Google Cloud offerings
• Industry Certifications such as CKS or CKA, AWS Certified Solutions Architect – Professional, AWS Certified DevOps Engineer – Professional, CCSP, CompTIA Security+
• Associate’s or Bachelor’s degree in Information Security, Cybersecurity, Information Assurance, Computer Science, or similar field

Benefits

• Highly competitive salary
• Fully covered healthcare, dental, and vision coverage
• 401(k) and company match
• Take as you need PTO + 11 paid holidays
• Education & training benefits
• Annual budget for your tech/gadgets needs
• Monthly box of yummy snacks to eat while doing meaningful work
• Remote, hybrid, and flexible work options
• Team off-site in fun places!
• Generous Referral Bonuses