Cyber Security Engineer

Lead Cybersecurity Engineer – Compliance

Employment Type: Direct Hire

Location: Hybrid (3 days onsite) – Oshkosh, WI (Preferred)

Alternate locations: McConnellsburg, PA / Hagerstown, MD / Orlando, FL

Relocation Assistance: Available

Travel: Up to 4x/year if not based in Oshkosh

Salary Range: $112,000 – $155,000 (based on experience)

About the Role:

One of our leading Client designs and builds mission-critical vehicles and technology for defense, municipal, and commercial customers worldwide. Protecting the confidentiality, integrity, and availability of our information assets is foundational to that mission. As a Lead Cybersecurity Engineer – Compliance, you will be part of our cybersecurity compliance program—guiding teams through CMMC, UK Cyber Essentials, PCI DSS, and other regulatory certifications—and serve as the subject matter expert who turns complex requirements into pragmatic, risk-based technical controls.

Key Responsibilities:

• Lead or support cybersecurity compliance efforts across the organization, including preparation and execution of audits/assessments (CMMC, ISO, etc.)
• Translate cybersecurity control requirements into system-level configurations
• Interpret system security capabilities for compliance requirements and align with regulatory obligations
• Prepare detailed reports identifying policy, process, and control gaps, with remediation strategies
• Guide cross-functional teams (IT, Engineering, HR, Finance) on implementation of compliant technical controls
• Develop program budgets and coordinate compliance strategies across global teams
• Ensure technical implementation aligns with regulatory frameworks like CMMC, DFARS, NIST 800-171/172, PCI DSS, SOC2
• Contribute to the organization’s cybersecurity strategy and roadmap
• Lead or participate in internal IT audits and translate technical findings into business language
• Draft information security policies, procedures, and standards
• Test effectiveness and adherence of cybersecurity controls
• Stay current on cybersecurity trends, research, and regulatory updates

Required Qualifications:

• Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or equivalent field
• 6 years of experience in cybersecurity roles, including hands-on compliance or audit-related responsibilities
• Practical experience with one or more of the following:
• CMMC, NIST 800-171, ISO 27001, PCI DSS, SOC 2, DFARS, FAR
• Ability to translate regulatory requirements into technical implementation
• Experience conducting or participating in cybersecurity audits/assessments
• Strong communication skills to interact with technical and non-technical stakeholders

Preferred Qualifications:

• Graduate degree in Cybersecurity, Information Systems, or related discipline
• Industry-recognized certifications: CISSP, Security , CEH, GIAC, SSAP, etc.
• In-depth knowledge of defense compliance frameworks
• Hands-on background in at least one of the following: Cloud, Infrastructure, or Application Development
• Strong understanding of security controls across networks, apps, and OS
• Experience drafting and enforcing cybersecurity policies and standards
• Experience collaborating in cross-functional, geographically diverse teams
• Ability to obtain or currently hold an active U.S. Secret clearance

Work Environment & Conditions:

• Work Schedule: Monday to Friday (standard business hours), occasional overtime
• Hybrid work model: 3 days onsite, 2 days remote
• Occasional stress due to compliance deadlines or audit cycles
• May involve frequent sitting, typing, visual work, and limited lifting (up to 40 lbs)

Interview Process:

1. First Round – Video interview via Microsoft Teams
2. Final Round – Onsite interview at corporate headquarters (Oshkosh, WI)