IT Solutions Security Engineer

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related technical field.
• 4–6 years of experience in cybersecurity, system administration, or a related IT field.
• Deep hands-on experience with SentinelOne (or similar EDR tools), Microsoft 365 Security Center, and network security monitoring tools.
• Proven experience with CI/CD tools (e.g., GitLab, Jenkins, or GitHub Actions) and integrating security tooling like SonarQube, Snyk, or Aqua.
• Proven track record managing CMMC (Level 2+) and ISO 27001 frameworks, including audit preparation and control implementation.
• Familiarity with securing IaC templates (Terraform, CloudFormation, or Ansible) and container security (Docker/Kubernetes).
• Strong understanding of Windows and macOS security hardening, as well as Linux server environments.
• Applicants must have authorization to work for any employer in the United States. We are currently unable to sponsor or to take over sponsorship of an employment visa.
• Candidates must be able to obtain and maintain a U.S. government security clearance if required.

Nice To Haves

• CISSP, CISA, Security+, or specialized DevSecOps certifications (e.g., Certified DevSecOps Professional).

Responsibilities

• Lead the internal auditing, documentation, and continuous monitoring required to maintain CMMC and ISO certifications.
• Proactively identify hidden threats and vulnerabilities within the network using SentinelOne and other SIEM/EDR platforms; lead remediation efforts for security incidents.
• Integrate security controls and automated testing into the software development lifecycle (SDLC); collaborate with development teams to ensure secure coding practices and "shifting left" security.
• Maintain and optimize automated security scanning tools (SAST/DAST) within CI/CD pipelines to identify vulnerabilities early in the deployment process.
• Conduct technical reviews and risk assessments for OS updates and software patches, serving as the final approval authority before deployment to production environments.
• Design and implement scalable security solutions for cloud and on-premises environments, ensuring "security by design" in all IT projects.
• Perform regular scans and penetration testing simulations; prioritize and coordinate the mitigation of identified risks.
• Draft and update System Security Plans (SSP), Incident Response Plans, and standard operating procedures (SOPs) to align with evolving regulatory requirements.

Benefits

• competitive salaries
• a comprehensive benefits package
• a dynamic hybrid work environment
• a vibrant workplace
• growth opportunities in a variety of specialty areas