Security Engineer

About The Position

Requirements

• Three (3) years of experience in Infrastructure Engineering and a Bachelor’s Degree from an accredited college or university in Computer Science or a related discipline, or a Master's Degree with one (1) year experience, or a Ph.D with zero (0) years experience. In lieu of a Bachelors’ degree an additional four (4) years experience is required for a total of seven (7) years.1-2 years of experience in Python development, including hands-on coding projects
• Proficiency in Linux operating system, network security, including firewalls, VPNs, IDS/IPS, and monitoring tools.
• Hands-on experience with SIEM platforms such as Splunk, QRadar, or similar.
• Knowledge of security frameworks and standards (e.g., NIST, CIS, ISO 27001) and their application.
• Experience with vulnerability management tools (Nessus, OpenVAS, Qualys) and penetration testing tools (Kali Linux, Metasploit).
• Understanding of encryption technologies, identity management, and access controls.
• Familiarity with cloud security best practices for AWS, Azure, or GCP environments.
• Strong scripting skills (e.g., Python, PowerShell, Bash) to automate security tasks.
• Experience responding to security incidents and performing investigations.
• DOD 8570 IAT 2 or higher cert.

Nice To Haves

• Industry certifications such as CISSP, CISM, CEH, or OSCP.
• Experience with DevSecOps practices and security in CI/CD pipelines.
• Familiarity with Zero Trust architecture and implementation.
• Experience in forensics and malware analysis.
• Knowledge of container security (e.g., Docker, Kubernetes).
• Exposure to security in a hybrid cloud/on-premises infrastructure.

Responsibilities

• Implement and manage security technologies including firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, and security information and event management (SIEM) tools.
• Conduct vulnerability assessments, penetration testing, and regular security audits to identify risks and develop mitigation strategies.
• Monitor and respond to security incidents and alerts, performing root cause analysis and incident handling.
• Collaborate with development, IT, and operations teams to integrate security best practices across infrastructure and applications.
• Assist in the creation and maintenance of security policies, standards, and procedures, ensuring compliance with industry standards (e.g., NIST, ISO 27001).
• Manage identity and access management (IAM) solutions to enforce least privilege and role-based access controls (RBAC).
• Implement and manage encryption solutions to secure sensitive data at rest and in transit.
• Conduct threat modeling and risk assessments to improve the security posture of systems and applications.
• Assist in the development of automated security workflows using scripting (Python, Bash, or similar).
• Keep up with the latest cybersecurity trends, threat landscapes, and vulnerabilities to ensure proactive measures are taken.
• Participate in incident response and disaster recovery planning, testing, and documentation.

Benefits

• healthcare
• wellness
• financial
• retirement
• family support
• continuing education
• time off benefits