Information Systems Security Engineer Senior

Ultra Electronics Group

3d•Remote

About The Position

Protecting What Matters. Powering the Future of Naval Technology. Your work here has global impact. From developing sonar and radar systems to advancing unmanned and undersea platforms, our technologies empower the U.S. Navy and allied forces to operate in some of the world’s most complex environments. As the maritime and underwater battlespace evolves, we continue to push boundaries—driven by innovation, accountability, and a shared commitment to excellence. Join us as we shape the future of naval warfare—safeguarding the seas and strengthening navies worldwide. Nationality Requirements Due to the nature of the programs we support, certain roles may require candidates to meet U.S. nationality requirements and be eligible to obtain a security clearance. Position Summary Ultra Maritime is seeking a hands-on Information Systems Security Engineer Senior (ISSE) to support cybersecurity engineering and compliance for unclassified environments handling CUI. This role blends technical implementation with compliance engineering, focused on NIST SP 800-171 and CMMC Level 2 readiness and sustainment. This is a fully remote role with occasional travel to UM sites.

Requirements

Typically, a Bachelor Degree (or equivalent) in Computer Science, Information Technology, Cybersecurity, or a related field with 4+ years of experience.

Nice To Haves

Demonstrated, hands-on experience implementing NIST SP 800-171 controls, preferably in manufacturing environments
Experience supporting CMMC Level 2 readiness or assessments.
Strong background in on-prem infrastructure security, including: Windows and/or Linux server hardening Active Directory or hybrid identity environments Virtualized infrastructure (VMware/Hyper-V) Network segmentation and firewall policy design
Experience with security tooling: vulnerability scanners, EDR, SIEM, MFA/IAM, configuration management.
Experience securing environments handling CUI (unclassified).
Ability to move fluidly between documentation and technical implementation.
Strong communication skills with engineers, IT staff, and leadership.
Experience remediating findings from 800-171 assessments or pre-CMMC readiness reviews.
Experience with hybrid environments (on-prem + cloud).
Familiarity with NIST SP 800-53 and other relevant security standards for classified systems.
CompTIA Security+ certification or equivalent.
Understanding of risk management frameworks used in government environments.
May be required to maintain security clearance.

Responsibilities

Lead implementation and sustainment of NIST SP 800-171 controls and CMMC Level 2 practices.
Develop and maintain compliance artifacts: SSPs POA&Ms Asset inventories, boundary definitions Network and data flow diagrams
Conduct internal gap assessments and readiness reviews for CMMC.
Support evidence collection and technical walkthroughs during audits.
Translate compliance requirements into actionable technical work items.
Design, implement, and harden on-premise systems supporting CUI environments (Windows/Linux servers, AD/Entra ID hybrid, virtualization, network segmentation).
Implement and tune technical security controls, including: Identity & access management (MFA, least privilege, RBAC) Endpoint security (EDR, device hardening, patching) Vulnerability scanning and remediation Centralized logging and monitoring (SIEM) Secure configuration baselines (CIS/STIG-aligned)
Partner with IT infrastructure to implement network security controls (firewalls, VLANs, NAC, secure remote access).
Support secure system builds, change management, and incident response in CUI environments.
Help integrate security into on-prem and hybrid architectures (VMware/Hyper-V + cloud where applicable).