​This is a Full-Time, Remote position (listed under Charlotte, NC, but remote-eligible) focused on the intersection of Enterprise IT and Industrial Control Systems (ICS). As a “Level II” engineer, you will be a hands-on practitioner responsible for implementing the technical safeguards that protect critical infrastructure for the U.S. Navy and other DoD agencies.

• ​Salary Range: Up to $83,133 (dependent on location and experience)
• ​Clearance: U.S. Citizenship with the ability to obtain a DoD Secret Clearance.
• ​Core Environment: Windows, Linux, and specialized embedded systems like VxWorks.
• ​Frameworks: Risk Management Framework (RMF), STIG/SRG compliance.

​Key Responsibilities: Vulnerability Management & ICS Security

​This role requires a blend of offensive testing knowledge and defensive engineering to protect “mission-critical” environments.

​Vulnerability Assessment & Penetration Testing

​You will perform active vulnerability assessments and penetration testing activities to identify security risks. Unlike standard IT roles, you must evaluate these risks within the context of Industrial Control Systems, where stability is paramount. You will recommend mitigation strategies and document them through POA&M (Plan of Action and Milestones) entries.

​STIG Compliance & OS Hardening

​A primary duty is the implementation and validation of STIG (Security Technical Implementation Guides) and SRG (Security Requirements Guides). You will perform operating system hardening across Windows and Linux, as well as embedded platforms like VxWorks, ensuring that configuration baselines meet the rigorous standards required for a Navy Authorization to Operate (ATO).

​Defensive Control Engineering

​You will be responsible for the configuration and tuning of IDS/IPS, firewalls, and Access Control Lists (ACLs). In an ICS environment, this often involves implementing Network Segmentation to isolate sensitive control traffic from the general enterprise network, reducing the lateral movement capabilities of an adversary.

​Required Qualifications and Skills

​Pantheon Data is looking for an engineer who has moved past entry-level work and can handle specialized OS environments.

• ​Education: Bachelor’s degree in a technical/ABET-accredited program (Cyber, Electrical Engineering, Math, etc.).
• ​Experience: 5 years of professional cybersecurity experience, with at least 1–2 years focused on ICS infrastructure or specific security controls (IDS/IPS, firewalls).
• ​OS Knowledge: Experience maintaining Windows, Linux, or VxWorks / embedded operating systems.
• ​Compliance: Familiarity with the RMF process and maintaining compliance tracking for DoD systems.
• ​Certifications (Preferred): OSCP (Offensive Security Certified Professional) or CEH (Certified Ethical Hacker).
• ​Travel: Ability to support CONUS/OCONUS travel as assigned for client site requirements.

​Summary of Role Impact

​Pantheon Data provides the “infrastructure resiliency” that the U.S. Coast Guard and Navy rely on for global operations. As a Cybersecurity Engineer II, you are the technical specialist ensuring that the hardware and software controlling these missions remain impenetrable. Your ability to harden embedded systems and tune network defenses directly prevents cyber-physical attacks, ensuring that mission-critical systems remain available and secure in contested environments.