Logo
Prodigy Resources

Security Engineer

Prodigy Resources, WorkFromHome

Save Job

Our client is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers.

Job Description

We're seeking a senior level Security Engineer to lead secure configuration, continuous monitoring, and compliance engineering efforts. You'll drive baseline hardening, risk assessments, and automation across cloud and on-prem systems, ensuring adherence to federal mandates and Zero Trust principles.

Requirements

  • U.S. Citizenship is required
  • Must be able to obtain a Public Trust
  • This position is primarily remote, but it requires the ability to attend occasional meetings in DC, MD, VA, WV, NJ, and OK as needed

Qualifications and Experience

  • Bachelor's degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT field
  • Minimum 8 years of relevant experience in enterprise security engineering and compliance
  • In-depth understanding of the Continuous Diagnostics and Mitigation program and its phases
  • Proficiency in Zero Trust principles: micro-segmentation, least-privilege access, continuous verification
  • Expertise in the NIST Risk Management Framework (RMF) (SP 800-37/800-53)
  • Familiarity with the Cybersecurity Assessment and Secure Mission (CASM) model
  • Knowledge of FISMA requirements and annual reporting processes
  • Experience applying FedRAMP controls for cloud service providers and managing authorization packages
  • Strong knowledge of DISA STIG and SCAP automation for multiple OS platforms
  • Ability to map organizational controls to CISA CDM dashboard metrics and drive data integrations
  • Excellent communication, documentation, and stakeholder-management skills

Required Skills

  • MS SQL Server (2019/2022), AWS GovCloud, Azure compliance baselines, AWS RDS, Power Platform & M365 Baselines, SharePoint 2019, Tomcat 9/10

Identity & Access Management

  • Okta, CyberArk EPM & Privileged Access Management, ClearPass, Active Directory

Monitoring & Reporting

  • Power BI, DLP / Information Protection solutions, Risk assessment workflows

Responsibilities

  • Lead Secure Configuration Management baselines for applications, operating systems, databases, network devices, and platforms
  • Conduct Continuous Diagnostics and Mitigation (CDM) program activities—vulnerability management, configuration management, identity & access controls, and incident response
  • Perform risk assessments and manage POA&Ms; oversee Cybersecurity Assessment and Secure Mission (CASM) workflows
  • Implement and automate DISA STIG and SCAP standards across Windows, Red Hat, iOS/iPadOS, macOS, and Chrome environments
  • Design and enforce Zero Trust controls: micro-segmentation, least-privilege access, continuous verification of users, devices, and services
  • Apply NIST RMF (SP 800-37/800-53) controls from system categorization through continuous authorization
  • Facilitate FedRAMP compliance for cloud services; author and maintain SSPs, SARs, and authorization packages
  • Map security controls to CISA CDM dashboard metrics; integrate data into monitoring solutions
  • Collaborate with stakeholders to define baseline exceptions, track remediation progress, and report metrics
  • Maintain documentation in enterprise wiki and compliance portals; manage Jira boards for tasks and exceptions
  • Mentor junior security engineers and coordinate cross-team compliance reviews
#J-18808-Ljbffr