Senior Security Engineer

IonQ•Louisville, MD

5d•Hybrid

About The Position

IonQ is expanding its security engineering capabilities to support its mission in quantum technology and secure infrastructure. This role requires a Security Engineer who can balance hands-on engineering with the rigor needed for operating in commercial, federal, and regulated environments. The successful candidate will join a team that values collaboration, inclusivity, technical excellence, and thoughtful problem-solving. The role involves designing resilient, compliant systems and continually strengthening the organization's security posture, aligning with frameworks such as FedRAMP, NIST, and CMMC.

Requirements

3–5+ years of experience in security engineering, cloud security, or infrastructure/network security.
Experienced in writing automation scripts in Python, Powershell, or Bash.
Working knowledge of protocols such as DNS, HTTPS/S, TLS, and LDAP.
Familiarity with federal frameworks such as FedRAMP, NIST 800‑171, and CMMC Levels 1 & 2.
Experience configuring and securing AWS GovCloud, Azure Government, or similar regulated cloud platforms.
Understanding of the MITRE ATT&CK Framework and its application to threat hunting.
Experience working with vulnerability management programs in compliance-driven environments.
Clear and concise technical writing skills, with the ability to produce documentation suitable for audits and assessments.

Nice To Haves

Experience supporting, maintaining, or engineering for a FedRAMP-authorized system.
Experience working with incident response.
Background in generating SSPs, POA&Ms, ConMon evidence, or system architecture documentation.
Automation experience related to compliance workflows, evidence gathering, or configuration drift detection.
Certifications such as Security+, CySA+, CASP+, CCSP, CISSP, or related.
Secret Clearance or above.

Responsibilities

Deploy, configure, and maintain platforms including Splunk and Microsoft Sentinel.
Administer CrowdStrike Falcon EDR across enterprise endpoints, ensuring sensor coverage and policy enforcement.
Manage CrowdStrike DLP policies and Exposure Management to prioritize vulnerability posture and prevent data exfiltration.
Operate CrowdStrike modules and build Falcon Fusion SOAR playbooks to automate triage and remediation.
Conduct regular vulnerability testing and risk assessments to identify potential security threats and weaknesses in the organization’s infrastructure.
Deploy and administer Network Intrusion Detection (NID) system as a network security monitoring platform.
Configure and secure cloud environments such as Azure Government or AWS GovCloud in alignment with required baselines.
Develop and maintain documentation for security tool configurations and architecture.
Participate in Continuous Monitoring (ConMon) activities and ensure accurate, timely evidence submission.
Design and implement security tooling and controls in a cloud environment to protect the organization’s data and systems across mobile devices, workstations, servers and SaaS technologies.