Senior Security Engineer - Remote

ICFReston, VA
Remote
Match Resume

About The Position

The Work: ICF is looking for an enthusiastic Senior Security Engineer to join our team and help with ensuring our environments and applications meet Federal Security Standards. If you are Security Engineer interested in applying your expertise in Security Engineering in a consulting environment, then this may be the role for you. Job Location: This position requires that the job be performed in the United States. If you accept this position, you should note that ICF does monitor employee work locations and blocks access from foreign locations/foreign IP addresses, and also prohibits personal VPN connections. Our core work hours are 10am - 4pm Eastern Time with the option to start earlier or work later depending on your time zone. However, please note our client is on the east coast and may sometimes start a meeting earlier than 10:00 which may require your participation. Travel for a conference or to another ICF location for collaboration may be required once a year. What You Will Do: The selected candidate will be required to work on multiple products and must be able to develop and present secure solutions and advice to technical teams as well as leadership. The candidate will further be required to assess risks and advise on security standards, best practices, and solutions. All this must be done by maintaining security quality and customer satisfaction. Various tools are used to detect vulnerabilities and the security engineer documents these vulnerabilities and works with developers to get them corrected. The security engineer will need to work on a path to production for new applications ensuring all the documentation and appropriate steps are taken and approved to have a highly secure production application and environment.

Requirements

  • Bachelor’s Degree
  • 5+ years of professional security engineering experience
  • Candidate must be able to obtain and maintain a Public Trust
  • Candidate must reside in the U.S., be authorized to work in the U.S., and all work must be performed in the U.S.
  • Candidate must have lived in the U.S. for three (3) full years out of the last five (5) years

Nice To Haves

  • Hands on experience that includes:
  • NIST 800‑53 security controls
  • System hardening and implementation of DoD STIGs
  • Leading incident response activities
  • Data management and applied cryptography
  • Cloud security and infrastructure (AWS, Azure, and/or GCP)
  • Awareness of OWASP Top Ten and CWE Top 25
  • Linux command line usage (e.g., bash, sh, zsh)
  • Scripting in Python, Perl, or similar languages
  • Prior experience in consulting or healthcare is an advantage but not essential.
  • Strong engineering background
  • Application architecture experience
  • Federal Government contracting work experience
  • One or more of the following certifications is preferred: OSCP/OSCE/OWSE CISSP GPEN GXPN Security + CEH
  • Good leadership and team-working skills.
  • Highly effective analytical, problem-solving, and decision-making capabilities.
  • Excellent communication and interpersonal skills to interface effectively at all levels of the business.
  • Organized, detailed oriented and able to prioritize and multi-task.
  • Ability to self-organize, prioritize and conduct work on multiple projects under tight deadlines in a fast-paced environment.
  • Prior experience working remotely full-time

Responsibilities

  • Perform Static Application Security Testing (SAST) to identify potential vulnerabilities in the application code and infrastructure
  • Perform Dynamic Application Security Testing (DAST)
  • Create and update threat models for FISMA systems
  • Assist and lead security incident response
  • Assist with documentation of System Security plan and Contingency Plans for related projects
  • Ensure security systems are up to date and create documentation and planning for all security-related information, including incident response and disaster recovery plans
  • Review policies and procedures for compliance with applicable standards; and to identify areas of improvement for finding remediation
  • Interact with senior level management, including the ISSO
  • Use security assessment tools such as Nessus, Snyk, AWS GuardDuty and AWS Inspector
  • Apply a demonstrated understanding of cryptography to secure web applications and data at rest
  • Work with development teams to review and correct code written in higher level programming languages and scripts
  • Work with DevOps teams to securely harden Linux based machines and cloud infrastructure

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Number of Employees

1-10 employees

Job Search Resources

Similar Senior Security Engineer - Remote job opportunities

Senior Security Engineer
Map Ssg
Map Ssg7d • $170,000 - $300,000 • Remote
Senior Cloud Cyber Security Engineer
Sentara Health
Sentara Health • Virginia Beach, VA3d • Remote
Security Operations Engineer
SitusAMC
SitusAMC2d • $110,000 - $140,000 • Remote
Senior Offensive Security Engineer, Red Team
PGBPGNGLOBAL
PGBPGNGLOBAL • Cincinnati, OH4d • $110,000 - $165,000 • Remote
Senior Security Engineer
East West Bank
East West Bank • Dallas, TX10d • $160,000 - $220,000
Senior Security Engineer
Skyview Group Inc
Skyview Group Inc • Dallas, TX9d
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service