Delta Defense LLC powers the USCCA®, the nation’s largest self-defense membership organization. They are seeking a Cybersecurity Engineer who will help build and advance a modern security engineering program across product engineering, cloud infrastructure, and analytics teams.
Responsibilities:
- Lead application security across the software development lifecycle by partnering with Engineering and DevOps to integrate security into design, development, testing, and deployment
- Perform threat modeling, secure design reviews, code reviews, and implement automated SAST, DAST, SCA, and secrets detection within CI/CD pipelines while enabling engineering teams to deliver secure software at scale
- Design, implement, and continuously improve web application and API security controls across the enterprise
- Develop and tune WAF policies, conduct API security assessments, identify business logic vulnerabilities, and establish secure-by-design standards that reduce risk without unnecessarily impacting developer velocity
- Plan and execute penetration testing activities against web applications, APIs, cloud environments, and supporting infrastructure
- Validate vulnerabilities through manual testing, prioritize findings based on business risk, and partner with engineering teams to ensure timely remediation and measurable risk reduction
- Develop and enforce security controls governing enterprise AI platforms and internally developed AI capabilities
- Establish policies for data classification, model usage, access controls, audit logging, and secure integration of AI technologies while ensuring responsible adoption across the organization
- Perform security assessments of Retrieval-Augmented Generation (RAG), agentic AI systems, MCP integrations, and large language model applications
- Identify and mitigate risks including prompt injection, indirect prompt injection, insecure tool use, excessive agent permissions, model abuse, and data leakage using industry guidance such as the OWASP LLM Top 10 and MITRE ATLAS
- Contributes to technical investigation and response activities for security incidents including threat analysis, digital forensics, containment, eradication, and root cause analysis
- Operate a risk-based vulnerability management program that prioritizes remediation based on exploitability, business impact, and threat intelligence rather than scanner severity alone
- Measure remediation effectiveness, track risk reduction, and ensure security controls align with frameworks including NIST CSF, CIS Controls, OWASP, PCI DSS, and organizational security standards
- Contributes to maintenance of secure cloud environments across AWS, Google Cloud, and DigitalOcean
- Design and implement cloud security architecture including IAM, Kubernetes security, container security, Infrastructure-as-Code security scanning, secrets management, workload protection, and Zero Trust network controls
- Design and build security automation that improves operational efficiency and security outcomes using scripting, APIs, Infrastructure as Code, and AI-assisted workflows
- Develop integrations between security platforms, automate repetitive security processes, and leverage AI responsibly to enhance detection, investigation, and response while maintaining appropriate governance and oversight
- Serve as a trusted technical advisor across Engineering, Infrastructure, and Product teams by providing security guidance, mentoring engineers, evaluating emerging technologies, and translating complex security risks into practical engineering solutions
- Continuously research evolving threats, techniques, and defensive capabilities to improve the organization’s overall security posture
Requirements:
- Minimum 3 years of cybersecurity engineering experience working closely with application, software, data engineering, DevOps, cloud, infrastructure, or security operations teams
- Deep cybersecurity engineering capability across application security, cloud and infrastructure security, data platform security, detection engineering, and vulnerability management, with practical experience securing modern cloud-first environments and large-scale SaaS and data platforms
- Hands-on application security experience with SAST, DAST, SCA, secure code review, API security, WAF tuning, threat modeling, CI/CD security, and secrets management using tools such as Doppler, Semgrep, Snyk, Burp Suite, OWASP ZAP, Cloudflare, HashiCorp Vault, or equivalent
- Proficient in at least one programming or scripting language with the ability to read, write, and exploit code in a security context; Python, JavaScript, PHP, Golang, or Rust preferred
- Working knowledge of AI security risks and controls, including prompt injection, indirect prompt injection, model abuse, data leakage, agentic workflow vulnerabilities, OWASP LLM Top 10, MITRE ATLAS, and emerging AI security tooling
- Practical cloud and infrastructure security experience across DigitalOcean, AWS, GCP, Kubernetes, IAM, CSPM, IaC scanning, container security, zero-trust/SASE architectures, and security tooling such as EDR, SIEM, CASB, SWG, DLP, IDS/IPS, and PAM
- Communicates risk clearly in business terms, influences cross-functional stakeholders without direct authority, stays composed and decisive during active incidents, drives remediation to closure, and demonstrates the Core Values of Delta Defense, LLC
- Experience securing applications, APIs, cloud platforms, CI/CD pipelines, Kubernetes environments, data platforms, and modern engineering ecosystems using technologies such as JavaScript, PHP, PostgreSQL, Kafka, NeonDB, GitLab, Python, Snowflake, dbt, Fivetran, Databricks, Tableau, Informatica, Kestra, or related technologies
- Strong understanding of security frameworks and control models, including NIST CSF, CIS Controls, PCI DSS, Cyber Defense Matrix, ISO 27001, OWASP, and MITRE ATT&CK
- Bachelor's degree in Computer Science, Information Security, Cybersecurity, Information Technology, or a related field preferred; equivalent work experience and relevant certifications may be considered in lieu of a degree
- Preferred certifications include CCSP, CASP+, Security+, CEH, GPEN, GWAPT, or other relevant cloud, application security, AI security, offensive security, or security engineering certifications