Skip to main content
H

Cybersecurity Engineer

hermeus

Location

Los Angeles, CA

Salary

$138,000 - $226,550 /yearly

Type

fulltime

Posted

Mar 19, 2026

via lever

Job Description

Hermeus is a venture-backed defense aviation company reclaiming the lost art of rapid iterative prototyping to build the fastest aircraft in the world today. By prioritizing relentless hardware iteration, we deliver high-speed systems at the pace of the modern battlefield. We work with the Department of War to provide the high-speed capabilities our nation and its allies need to maintain a durable, asymmetric advantage.

We are seeking a highly skilled and experienced Cybersecurity Engineer to join our team. The ideal candidate will have a strong background working within a defense contractor environment, bringing specialized knowledge of security best practices, regulatory compliance (e.g., CMMC, NIST 800-171), and robust system hardening. This role is critical in protecting our sensitive and classified information systems. A deep understanding of Microsoft security ecosystem, including Microsoft Entra ID (formerly Azure AD) and Microsoft Purview, is essential. The engineer will play a key role in our vulnerability management program, encompassing detection, analysis, and remediation, and will be central to performing in-depth risk analysis across our IT infrastructure.

Responsibilities:

Technical Implementation & Management

  • Design, implement, and manage security controls and configurations within the Microsoft ecosystem, with a focus on Entra ID and Purview.

  • Manage identity and access governance (IAG) using Entra ID, including conditional access policies, privileged identity management (PIM), and multi-factor authentication (MFA).

  • Utilize Microsoft Purview for data governance, data loss prevention (DLP), eDiscovery, and compliance management to meet defense contractor requirements.

  • Configure and maintain security solutions across cloud (Azure/Microsoft 365) and on-premises environments.

Vulnerability & Risk Management

  • Lead the organization's vulnerability detection and remediation efforts, utilizing industry-standard tools to identify, prioritize, and track security flaws.

  • Conduct comprehensive risk analysis and assessments (RAAs) on new and existing systems, providing actionable recommendations to mitigate identified threats.

  • Develop and implement patching and configuration management strategies to reduce the attack surface.

  • Respond to and investigate security incidents, performing root cause analysis and implementing preventative measures.

Compliance & Defense Sector Expertise

  • Ensure all security measures and procedures comply with mandatory defense industry regulations and frameworks (e.g., NIST SP 800-171, CMMC).

  • Participate in internal and external audits related to security compliance.

  • Develop and maintain security documentation, including System Security Plans (SSPs), Plan of Action and Milestones (POA&Ms), and standard operating procedures (SOPs).

Minimum Requirements:

  • Bachelor's degree in Computer Science, Information Technology, Cyber Security, or a related field (or equivalent work experience).

  • Minimum of 5 years of experience in a dedicated Cyber Security or Information Assurance role.

    • Proven experience working directly for or extensively with a U.S. defense contractor, including familiarity with controlled unclassified information (CUI) handling and protection.

    • Demonstrable expertise in Microsoft Entra ID (formerly Azure AD) administration, including tenant configuration, governance, and security feature deployment.

    • Hands-on experience with Microsoft Purview, particularly in managing data governance, compliance, and DLP policies.

    • Specialized experience in vulnerability management lifecycle (scanning, analysis, prioritization, remediation tracking) and using associated tools.

    • Strong background in security risk analysis, threat modeling, and formulating mitigation strategies.

    Preferred Skills & Experience:

    • Excellent written and verbal communication skills, with the ability to articulate complex security risks to both technical and non-technical stakeholders.

    • Proficiency with scripting languages (e.g., PowerShell, Python) for automation of security tasks.

    • Familiarity with Security Information and Event Management (SIEM) platforms.

    • Relevant security certifications such as: GIAC, CASP+, CEH, or Microsoft certifications (e.g., SC-300, SC-400, AZ-500) are highly desirable.

    Looking for more opportunities?

    Browse thousands of graduate jobs and entry-level positions.

    All JobsSoftware Engineer JobsData Scientist JobsCareer Tips
    Browse All Jobs
    More JobsApply Now