Security Engineer/Cyber Security Analyst jobs in United States
info-icon
This job has closed.
company-logo

Ampcus Inc · 2 months ago

Security Engineer/Cyber Security Analyst

positionChantilly, VA
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

Ampcus Inc. is a certified global provider of a broad range of Technology and Business consulting services. They are seeking an experienced Security Engineer or Cybersecurity Analyst to guide AI and ML systems from development to a secure, production-ready state while ensuring compliance with security requirements. The role involves leading the ATO process, partnering with engineering teams, and implementing security controls specific to AI workloads.

Data ManagementInformation Technology
check
H1B Sponsor Likelynote

Responsibilities

Serve as the subject matter expert on NIST Special Publication 800-53 security controls and the end-to-end RMF process
Lead and manage the entire ATO process for new and existing systems, from initial assessment to successful accreditation
Develop, maintain, and update all critical security documentation, including the System Security Plan (SSP), Security Assessment Report (SAR), Plan of Action and Milestones (POA&M), and Continuous Monitoring Strategy
Conduct security control assessments, gap analyses, and work directly with engineering teams to implement necessary remediation
Partner with AI/ML engineers and data scientists to embed security into the AI development lifecycle (AISecOps)
Perform threat modeling for AI systems, focusing on unique risks such as data poisoning, model inversion, adversarial attacks, and prompt injections
Develop and implement security controls specific to AI/ML workloads, including securing training data pipelines, model repositories, and inference endpoints
Assess the security posture of AI services and APIs and ensure their configuration meets compliance requirements
Design and implement security architecture for cloud-based (AWS, Azure, GCP) and on-premises systems hosting sensitive AI workloads
Configure and manage security tools for vulnerability scanning, intrusion detection, and log management (e.g., Tenable, Splunk, Wiz)
Implement and validate identity and access management (IAM) policies, network security controls, and data encryption standards
Establish and manage a continuous monitoring program to maintain security posture and ATO status
Analyze security findings and audit logs to identify and respond to potential incidents or compliance deviations
Stay current with emerging cybersecurity threats, especially those targeting AI/ML systems, and evolving NIST guidelines

Qualification

NIST Risk Management FrameworkNIST 800-53 security controlsCloud security AWSCloud security AzureCloud security GCPSecurity assessment toolsInfrastructure-as-code (Terraform)AI/ML security hardeningDevOps/DevSecOps practicesSecurity frameworksRelevant certificationsCommunication skills

Required

Bachelor's degree in computer science, Cybersecurity, Information Technology, or a related field, or equivalent practical experience
5 years of hands-on experience in cybersecurity engineering or analyst role
Demonstrable, expert-level experience with the NIST RMF and successfully achieving Client for federal or DoD systems
Deep understanding of NIST 800-53 (Rev 4 or 5) security controls and how to implement them technically
Strong technical background in cloud security (AWS, Azure, or GCP) and infrastructure-as-code (e.g., Terraform, CloudFormation)
Experience with security assessment and scanning tools
Excellent written and verbal communication skills, with the ability to translate complex technical requirements for engineers and business justification for management

Preferred

Direct, hands-on experience securing AI/ML, GenAI, or Large Language Model (LLM) platforms in a production environment
Knowledge of AI-specific security concerns (e.g., OWASP Top 10 for LLMs, MITRE ATLAS)
Relevant certifications such as: CISSP, CISM, CAP, CISA, Security
Cloud: AWS Certified Security – Specialty, Azure Security Engineer Associate, Google Professional Cloud Security Engineer
Experience with DevOps/DevSecOps practices and tools (CI/CD pipelines, GitLab, Jenkins)
Familiarity with other security frameworks such as FedRAMP, FISMA, or DoD SRG

Company

Ampcus Inc

twittertwittertwitter
company-logo
Ampcus is a global business, technology consulting and an staff augmentation firm specializing in AI/ML,digital solutions, Cybersecurity & Risk management, Testing, Forensics & Fraud services and human capital management.
dateFounded in 2004
location
Chantilly, Virginia, USA
people-size1001-5000 employees
web-link
http://www.ampcus.com

H1B Sponsorship

Ampcus Inc has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (14)
2024 (13)
2023 (7)
2022 (16)
2021 (13)
2020 (18)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Raj Narayan
Sr. Vice President, Strategic Sales
linkedin

Recent News

EIN Presswire
Ampcus Inc. Names Julie Potter Vice President of Sales
2025-08-18
EIN Presswire
Ampcus Expands BFSI Team, Taps Global IT Industry Veteran Raj Narayan
2025-07-31
Seattle TechFlash
Empowering entrepreneurs fuels economic growth in Greater Washington
2025-07-15
Company data provided by crunchbase