Cybersecurity Engineer – Email & Endpoint Security jobs in United States
cer-icon
Apply on Employer Site
company-logo

Nightwing · 7 hours ago

Cybersecurity Engineer – Email & Endpoint Security

positionVirginia, United States
timeFull-time
remoteOnsite
seniorityMid Level

Nightwing provides technically advanced full-spectrum cyber, data operations, systems integration and intelligence mission support services. They are seeking a Cybersecurity Engineer focused on email security and endpoint protection, responsible for delivering engineering services, implementing security controls, and responding to security incidents.

Information Technology & Services

Responsibilities

Plan, implement, configure, upgrade, and monitor security controls protecting enterprise networks, endpoints, and collaboration/email platforms (Proofpoint, O365, MS Defender, CrowdStrike)
Engineer and maintain email security capabilities including anti-phishing, malware detonation/analysis, impersonation protection, URL/attachment defense, and policy tuning; support improvements to mail flow and authentication (e.g., SPF/DKIM/DMARC alignment as applicable)
Engineer and maintain endpoint security (EDR/NGAV) capabilities including prevention policies, detection tuning, containment workflows, device isolation/quarantine procedures, and fleet-wide deployment/health monitoring
Assess vulnerabilities and security risks across email and endpoint ecosystems; propose, implement, and validate risk mitigation strategies (hardening, policy updates, rule tuning, and control coverage improvements)
Ensure appropriate security controls and governance are in place to safeguard digital files and critical infrastructure, including configuration baselines, access controls, and monitoring/telemetry standards
Respond to security incidents (phishing, account compromise, malware, ransomware, endpoint outbreaks) by coordinating triage, containment, eradication, recovery, and lessons learned—leveraging Defender and CrowdStrike response actions and Proofpoint intelligence/workflows
Integrate and optimize tooling outputs (alerts, logs, and threat intelligence) across platforms to improve detection fidelity, reduce false positives, and enhance operational response (including workflow automation where applicable)
Support year-round tracking, reporting, and guidance for POA&Ms and CMMC assessments, including control implementation evidence, remediation planning, and ongoing control effectiveness validation for email and endpoint security domains

Qualification

Email SecurityEndpoint ProtectionProofpointMicrosoft 365/O365Microsoft DefenderCrowdStrikeVulnerability AssessmentCollaborationTeamwork

Required

Experience in delivering cybersecurity engineering services with a focus on email security and endpoint protection
Proficiency in planning, implementing, configuring, upgrading, and monitoring security controls protecting enterprise networks, endpoints, and collaboration/email platforms (Proofpoint, O365, MS Defender, CrowdStrike)
Ability to engineer and maintain email security capabilities including anti-phishing, malware detonation/analysis, impersonation protection, URL/attachment defense, and policy tuning
Experience in supporting improvements to mail flow and authentication (e.g., SPF/DKIM/DMARC alignment as applicable)
Ability to engineer and maintain endpoint security (EDR/NGAV) capabilities including prevention policies, detection tuning, containment workflows, device isolation/quarantine procedures, and fleet-wide deployment/health monitoring
Experience in assessing vulnerabilities and security risks across email and endpoint ecosystems
Ability to propose, implement, and validate risk mitigation strategies (hardening, policy updates, rule tuning, and control coverage improvements)
Experience in ensuring appropriate security controls and governance are in place to safeguard digital files and critical infrastructure
Ability to respond to security incidents (phishing, account compromise, malware, ransomware, endpoint outbreaks) by coordinating triage, containment, eradication, recovery, and lessons learned
Experience in integrating and optimizing tooling outputs (alerts, logs, and threat intelligence) across platforms to improve detection fidelity, reduce false positives, and enhance operational response
Ability to support year-round tracking, reporting, and guidance for POA&Ms and CMMC assessments

Company

Nightwing

twitter
company-logo
We are the intelligence services company that continually redefines the edge of the possible to keep advancing our national security interests.
people-size1001-5000 employees
web-link
https://nightwing.com

Funding

Current Stage
Late Stage
Company data provided by crunchbase