Information Security Engineer-

About The Position

Requirements

• 7+ years of demonstrated IT Security engineering experience providing guidance to technical teams
• 5+ years of demonstrated experience performing threat modeling and security risk assessments.
• 5+ years of demonstrated network engineering and administration experience
• 5+ years of demonstrated experience designing and implementing security controls in on‑premise and cloud environments.
• Strong experience with secure SDLC practices in Agile and DevSecOps environments.
• Demonstrated experience authoring SSPs, POA&Ms, and technical audit documentation.
• Significant experience working with ISO/IEC 27001/27002, NIST SP 800‑171, and NIST SP 800‑53.
• Experience supporting and participating in audits and assessments (e.g., SOC 2, ISO 27001, Cyber Essentials).
• Strong written and verbal communication skills with the ability to explain technical concepts to auditors, leadership, and business stakeholders.
• Significant experience working in Jira and Confluence.
• Ability to pass background investigation to attain and maintain Trusted Role access to company systems.
• Core network services (HTTP, SMTP, DNS) and supporting server technologies.
• Encryption technologies (IPSec, SSL/TLS).
• Network security controls (firewalls, proxies, NAC, phishing prevention, etc.).
• SIEM and logging architectures; familiarity with FIM technologies.
• Windows Active Directory and domain services.
• U.S. Citizens only
• Due to customer requirements, U.S. Citizenship is required.
• Ability to gain and maintain Trusted Role is required

Nice To Haves

• Experience designing, building, or integrating security automation and control validation solutions
• CMMC CCA or CCP certification
• Experience as a FedRAMP auditor and/or implementer
• CISSP or other comparable advanced technical security certifications
• Hands-on experience with Governance, Risk, and Compliance (GRC) tools
• Strong knowledge of cloud computing environments and architectures
• Experience administering Windows Domains and Active Directory
• Familiarity with endpoint protection technologies, including HIPS/HIDS
• Experience with web application development, including Java and related technologies
• Demonstrated ability to design multi-tier, highly available, scalable, and multi-threaded systems
• Knowledge of secure development frameworks (e.g., OWASP SAMM, Microsoft Security Development Lifecycle, IBM Secure Engineering Framework)
• Experience with Public Key Infrastructure (PKI) and identity federation technologies (e.g., SAML)
• Understanding of Identity and Access Management (IAM) principles and solutions
• Experience with business continuity and disaster recovery (BC/DR) planning
• Familiarity with data protection technologies, including Data Loss Prevention (DLP), data labeling, and Information Rights Management (IRM)
• Experience implementing S/MIME-based secure email solutions
• Familiarity with SharePoint security and administration

Responsibilities

• Design and evaluate secure architectures across cloud and on-premise environments, including identity, access, network, and platform services.
• Partner with infrastructure, DevOps, and application teams to embed security into system design and delivery pipelines.
• Translate security requirements into enforceable technical controls.
• Provide hands-on support for implementation and validation of security controls.
• Perform threat modeling and technical risk assessments for new and existing systems.
• Integrate security controls into CI/CD pipelines and infrastructure-as-code workflows.
• Partner with engineering teams to ensure secure deployment patterns are practical and scalable.
• Support secure implementation of identity federation, privileged access, and authentication services.
• Enable continuous validation of security controls, including configuration drift detection and policy enforcement.
• Reduce reliance on manual review by designing automated control validation and monitoring mechanisms.
• Support internal and external audits (e.g., ISO 27001, SOC 2, Cyber Essentials, Kantara, FPKI, FedRAMP, CMMC) by translating technical implementations into defensible evidence.
• Contribute to the development of technical control narratives aligned with system architecture.
• Implement and validate controls and remediation of findings across engineering teams.
• Drive in audit readiness activities, with a focus on engineering-driven evidence and automation rather than manual collection.

Benefits

• We believe in employee development: we promote internally and provide training and educational assistance
• We provide a fun, engaged workplace, with social and community-building events
• We offer comprehensive benefits and flexible time off plans