CrawlJobs Logo

Boundary Security Engineer

boozallen.com Logo

Booz Allen Hamilton

Location Icon

Location:
United States , Fort Meade

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

99.00 - 225.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

A well-designed secure network is critical to move data and enable the Department of Defense (DoD) to achieve their mission, but how can an organization make sure their network will fit their evolving needs? Crafting the right network with the right equipment and software requires a combination of technical skill and careful planning. That’s why we need you, a Boundary Security Engineer who knows how to utilize your craft to facilitate the needs of the DoD. As a security engineer on our team, you’ll work with the DoD to develop a reliable, secure network to support critical missions. You’ll collaborate with SMEs, customers, vendors, and users to learn the strategic goals and operational needs that shape the network requirements. You’ll then share your expertise during the planning of acquisition, installation, configuration, and maintenance of the network components. From resolving interoperability issues across platforms, to supporting the acquisition of hardware, you’ll put your hardware and software talents to good use. This is your chance to share your experience with backbone networks, cloud technologies, and core networking while broadening your security and network engineering work. You’ll dive into challenging hands-on problem-solving, and encounter opportunities to learn new tools and skills. We focus on growing as a team to make the best solutions for our customers.

Job Responsibility:

  • Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management
  • Implement infrastructure and cybersecurity controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises
  • Perform risk and vulnerability assessments in network, system, and application areas
  • Leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise
  • Design and test new boundary security capabilities in a lab environment and implement newly tested boundary security capabilities into production environments
  • Provide implementation teams with remote network firewall and security appliance support
  • Identify and support security requirements for switched and routed networks and implement network security best practice configuration and associated hardware and software
  • Discover and assess complex client enterprise network deployments, apply leading-edge security principles, theories, and concepts, and contribute to the development of new principles and concepts
  • Mentor or supervise employees in both company and technical competencies

Requirements:

  • 4+ years of experience with network security and the design of IT systems or networks for large commercial enterprises or government agencies
  • 4+ years of experience with firewall and enterprise security design, including device hardening, intrusion detection systems and intrusion prevention systems, SIEM, firewalls, internet protocol security, vulnerability assessment, and intrusion detection
  • Experience with Palo Alto firewalls and Cisco or Juniper firewalls
  • Secret clearance
  • HS diploma or GED
  • Ability to obtain a DoD 8570 IAT Level II Certification within 90 days of hire date

Nice to have:

  • Experience designing and implementing Cloud-native and over the top networking in AWS, Azure, or GCP
  • Knowledge of DoD IT and Cloud security policies, including STIGs and DoD Cloud SRG, and how to apply them to the design and implementation of Cloud solutions
  • Possession of excellent verbal and written communication skills, including public speaking, prior publications, and speaking engagements in industry or vendor forums
What we offer:
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program

Additional Information:

Job Posted:
May 05, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Booz Allen Hamilton - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Boundary Security Engineer

Security Engineer

Location
Location
Salary
Salary:
Not provided
ryzlabs.com Logo
Ryz Labs
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years total technical or security engineering experience with security focus
  • 2+ years of AWS or GCP experience implementing security and hardening activities, especially in a large or complex environments
  • 2+ years working in a CI/CD DevSecOps environment (Jenkins, Travis, Jira, GitHub, GitLab, etc.)
  • Experience with IAM solutions such as Okta and deep knowledge of AWS or GCP IAM and how to configure and maintain least-privilege and segregation of duty across boundaries
  • Knowledge and experience with EC2, ECS, S3, LBS, API Gateways, Bastion Hosts, VPC, Cloud Trail, Cloud Watch, Data Dog, SIEM and other cloud technologies
Job Responsibility
Job Responsibility
  • collaborate with our customers and suppliers to model security requirements against cloud capabilities
  • work closely with engineering teams, program management and senior stakeholders to translate requirements into achievable designs that raise the bar
  • function across teams ensuring that the strategic architecture is met across design, implementation, deployment and operation
  • playing a key role in defining the mechanisms that the company will use to validate how services are meeting all the security operational controls
  • work closely with the product and platform engineering teams to architect, implement, and operate effective cloud security controls
  • Partner with internal IT & Product Engineering stakeholders to assess gaps in products and platforms, design mitigating controls, and train and educate staff on remediations
  • Partner with the Business Technology and IAM teams to build a new Access Management and User Access Review system based on Lumos
  • Maintain inventory of cloud assets and ensure secure bootstrapping of deployed assets while monitoring for drift and potential threats across product engineering environment
  • Design and build the security components of the next phase of Sonder Security Roadmap
Read More
Arrow Right

Application Security Engineer

This role is for a senior engineer with hands-on experience in building applicat...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Expertise of cloud engineering and application security, demonstrated by previous roles in the domain and industry certification
  • good understanding of security capabilities supporting application development such as authentication, authorization, credential management, certificate management, encryption for on-prem and cloud
  • understanding of container orchestration technologies
  • hands-on experience developing high-performance solutions following Agile methodologies ideally backend Java experience
  • containers K8s hands on experience understanding the lifecycle of a containers and integration with security boundaries-advantage
  • experience in building end to end solutions for the cloud domain in a secure manner
  • familiarity with GoLang, Node.js UI authentication is an advantage.
Job Responsibility
Job Responsibility
  • Technical engineer working with key stakeholders of cloud engineering and application security experts
  • explore and resolve key application security gaps and drive their resolutions
  • develop modules that resolve identified gaps in a centralized optimized manner such as credential management, authentication, authorization, end-to-end scanning tools
  • act as an advisor and expert lead to various development teams across the company to help them improve their expertise within cloud engineering and application security.
  • Fulltime
Read More
Arrow Right

Product Security Engineer

We are seeking a Product Security Engineer with expertise in operating system se...
Location
Location
United States , Palo Alto
Salary
Salary:
137861.00 - 240000.00 USD / Year
1x.tech Logo
1X Technologies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience contributing and shipping C/C++ code (or similar) to production
  • Strong experience with Linux operating system internals and security mechanisms
  • Hands-on expertise with secure boot and verified boot implementations
  • Familiarity with Trusted Execution Environments (e.g., OP-TEE or similar)
  • Proven track record of applying least-privilege principles and hardening root-level services
  • Proficiency with systemd and sandboxing, including namespacing, privilege restrictions, syscall filtering, and other techniques
  • Experience designing security tools, automation, and templates for developers
  • Knowledge of device access control and Linux permissions management
  • Solid understanding of CI/CD integration for security validation
  • Experience with NVIDIA Orin or similar SoC platform preferred
Job Responsibility
Job Responsibility
  • Develop and maintain secure critical services for Linux system
  • Implement secure boot chains from fused hardware keys, ensuring verified OS and data partitions with rollback protection
  • Integrate OP-TEE to safeguard sensitive assets such as mTLS certificates and disk encryption keys
  • Harden system services using least-privilege operations, systemd features, namespacing, and syscall filtering
  • Build hardening templates and automation tools to streamline security boundary enforcement for developers
  • Automate security validation processes within CI/CD pipelines
  • Design and enforce device access controls for Linux systems
What we offer
What we offer
  • Health, dental, and vision insurance
  • 401(k) with company match
  • Paid time off and holidays
  • Fulltime
Read More
Arrow Right

Cloud Application Security Lead

Cloud Application security lead is a Senior VP engineer with hands-on experience...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Expertise of cloud engineering and application security, demonstrated by previous roles in the domain and industry certification
  • Good understanding of security capabilities supporting application development such as authentication, authorization, credential management, certificate management, encryption for on-prem and cloud
  • Understanding of container orchestration technologies
  • Hands-on experience developing high-performance solutions following Agile methodologies ideally backend Java experience
  • Containers K8s hands on experience understanding the lifecycle of a containers and integration with security boundaries-advantage
  • Experience in building end to end solutions for the cloud domain in a secure manner
  • Familiarity with Java required, advantage - GoLang, Node.js, authentication
Job Responsibility
Job Responsibility
  • Technical engineering leadership and hands on development working with key stakeholders of cloud engineering and application security experts
  • Explore and resolve key application security gaps and drive their resolutions
  • Develop modules that resolve identified gaps in a centralized optimized manner such as: credential mgmt, authentication, authorization, end to end scanning tools
  • Act as an advisor and expert lead to various development teams across the company, to help them improve their expertise within cloud engineering and application security
What we offer
What we offer
  • Generous holiday allowance starting at 22 days
  • Private medical insurance packages
  • Employee Assistance Program
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Engineer

As a Senior Cybersecurity Engineer, you will be at the forefront of driving secu...
Location
Location
United States , Bellevue; Overland Park; Frisco; Herndon
Salary
Salary:
103400.00 - 186400.00 USD / Year
https://www.t-mobile.com Logo
T-Mobile
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree Computer Science or Information Technology or equivalent work experience
  • 4-7 years Experience in info security technology or related field
  • Experience with incident handling for Security breaches
  • Expert in security subject areas
  • 2-4 years Technical Project Management
  • Experience with high level design architecture, security technologies, Networking, web services and SOA
  • Understanding of encryption, obfuscation, tokenization technologies
  • Medium to advance knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)
  • Knowledge of federal & compliance regulations e.g. SOX, PCI & CPNI
  • Familiarity with load balancers (ex – A10, F5), firewalls (ex – CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex – CyberArk), SIEM (ex – ArcSight), Log & Event (ex – Splunk), Intrusion IDS/IPS (ex – Symantec) , Cloud Platform (ex – PCF, Docker), Scanning (ex – Qualys), AppSec (ex - Veracode)
Job Responsibility
Job Responsibility
  • Leads security, compliance, and risk assessments on projects throughout project lifecycle
  • Improves process efficiency by creating and implementing creative and sustainable changes to existing deployment methodologies
  • Leads the identification of security needs & recommends plans/resolutions
  • Implements, tests & monitors info security improvements
  • Maintains transparency inside & outside of information security at the People management level
  • Communicate with groups such as application support, engineering ops, finance, privacy, risk management, etc
  • Leads information security policy lifecycle throughout, including intake, creation, review, approval, implementation, publishing, communication & maintenance
  • Implements security projects driven by groups both internal and external to info security
  • Mentors peers and junior team members in security technologies, enterprise solution design and facilitation and effective customer interaction
  • Experience with implementation of various threat modeling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC, Mobile Application threat model, Cyber Threat Tree, and data flow diagram
What we offer
What we offer
  • Competitive base salary and compensation package
  • Annual stock grant
  • Employee stock purchase plan
  • 401(k)
  • Access to free, year-round money coaches
  • Medical, dental and vision insurance
  • Flexible spending account
  • Paid time off
  • Up to 12 paid holidays
  • Paid parental and family leave
  • Fulltime
Read More
Arrow Right

Staff Security Engineer, IAM

We are looking for a Staff Security Engineer (L6) with deep expertise in Identit...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
deliveroo.co.uk Logo
DELIVER
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in software or security engineering, with significant hands-on technical depth
  • Strong experience in at least one modern programming language (Go, Java, Scala, Python, or similar)
  • Proven experience designing and operating IAM systems in a cloud-first environment
  • Deep understanding of authentication and authorisation protocols: SAML, OAuth2 / OIDC, SCIM, MFA and modern identity assurance methods
  • Experience with identity providers and directories such as Okta, Azure AD, Google Cloud Identity, or Active Directory
  • Hands-on experience with identity governance platforms (e.g., ConductorOne, SailPoint IdentityNow), including lifecycle management, access reviews, and ABAC models
  • Strong understanding of cloud IAM (AWS IAM, GCP IAM, Azure RBAC)
  • Experience building secure integrations and automation using REST APIs and event-driven architectures
  • Experience leading significant cross-team security initiatives
  • Strong knowledge of RBAC, ABAC, PAM, and Zero Trust architecture principles
Job Responsibility
Job Responsibility
  • Own and evolve Deliveroo’s IAM architecture across identity providers (e.g., Okta, Azure AD, Google Cloud Identity), identity governance (e.g., ConductorOne, SailPoint IdentityNow), and cloud IAM (AWS/GCP)
  • Design scalable solutions for authentication, authorisation, provisioning, deprovisioning, RBAC/ABAC, JIT access, and privileged access management
  • Drive improvements to access governance processes including certifications, SoD controls, and policy enforcement
  • Lead implementations and technical integrations between domains, ensuring engineering core principles are adhered to
  • Develop ‘Paved Roads’ for stakeholders enforcing IAM best good practices to teams
  • Developing bespoke integrations between IAM platforms and internal systems to ensure seamless lifecycle management and access governance
  • Building middleware solutions to address edge cases (e.g. automated group creation where authoritative HR data does not exist)
  • Designing and implementing self-service RBAC capabilities that enable business teams to manage roles within defined guardrails
  • Creating automation layers that enhance ROI from commercial tooling by reducing manual effort and embedding controls into engineering workflows
  • Extending off-the-shelf platforms with APIs, event-driven services, and workflow orchestration to meet Deliveroo’s scale and complexity
What we offer
What we offer
  • 25 days annual leave plus bank holidays, increasing with length of time spent working at Deliveroo
  • One day of paid leave per year to volunteer with a registered charity
  • Funded single cover healthcare on our core plan, with the option to add family members at own cost
  • On-site gym (HQ), discounted external gym membership
  • Access to wellbeing apps such as LesMills+, Strava, Headspace, Yogaia via GymPass
  • Discounted dental insurance and a range of other flexible benefits, such as critical illness cover, partner life cover, travel insurance, health assessments
  • Life assurance
  • Maternity, paternity and maternity and shared parental leave, eligible from day one of employment
  • Excellent kit to enable working from home and a parent-friendly working culture
  • Access to free mortgage advice
Read More
Arrow Right

Staff Software Engineer I - Internal Access Management

We are seeking a Staff Software Engineer to lead the technical vision, architect...
Location
Location
Salary
Salary:
225100.00 - 264500.00 CAD / Year
confluent.io Logo
Confluent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of engineering experience
  • 4+ years in security, IAM, or distributed systems
  • Deep expertise in Kubernetes, workload identity, cloud IAM (AWS, GCP, Azure), and zero-trust architectures
  • Strong understanding of authentication technologies: IAM, OAuth2, OIDC, policy engines, and modern zero-trust principles
  • Proven track record leading multi-team technical initiatives at a Staff or Senior Staff level
  • Strong knowledge of distributed systems, cloud infrastructure, container orchestration, and service mesh
  • Excellent communication and stakeholder-influence skills across engineering and security domains
Job Responsibility
Job Responsibility
  • Define and drive the long-term architecture and roadmap for Internal Access Management across Kubernetes and multi-cloud environments
  • Architect and implement least privilege, just-in-time access, and zero-trust models across Confluent services
  • Build and evolve scalable access-authorization workflows and lifecycle management systems using technologies such as SPIFFE/SPIRE, OPA, cloud IAM policies, workload identity, and internal enforcement engines
  • Strengthen security boundaries through threat modeling, defense-in-depth practices, and comprehensive access-auditing capabilities
  • Partner with cross-functional teams—including Platform, Kafka, Observability, Developer Productivity, Release Engineering, and SRE—to drive adoption of secure identity and access patterns
  • Mentor senior engineers, elevate engineering standards, and influence architectural decisions across the organization
  • Communicate complex technical decisions clearly and align stakeholders across engineering and security
What we offer
What we offer
  • Remote-First Work
  • Robust Insurance Benefits
  • Flexible Time Away
  • The Best Teammates
  • Experience Ambassadors
  • Open and Honest Culture
  • Well-Being and Growth
  • Offers Equity
  • Fulltime
Read More
Arrow Right
New

Lead Security Architect

We are looking for a Lead Security Architect to define and evolve the company’s ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
instadeep.com Logo
InstaDeep
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in enterprise and cloud security architecture
  • 5+ years in identity, access, and network trust design
  • 3+ years facilitating threat modeling and secure design reviews
  • Strong experience defining architecture standards and translating principles into practical patterns
  • Experience working across enterprise IT, cloud platforms, infrastructure, and product environments
  • Experience engaging with senior stakeholders across technical and non-technical functions
  • Security architecture at enterprise and cloud scale
  • Zero Trust and IAM architecture
  • Secure integration and trust-boundary design
  • Threat modeling and architecture review governance
Job Responsibility
Job Responsibility
  • Security architecture leadership
  • Define architecture principles and implementation patterns for Zero Trust, identity, authorization, trust boundaries, segmentation, secure integration, and secure access
  • Set the strategic direction for enterprise, cloud, and data security architecture
  • Define target-state architecture for Enterprise IT, Cloud, and Infrastructure, including IAM and identity trust models, reverse proxy and secure access architecture, network and data segmentation, cloud-native control patterns
  • Lead the development of architecture standards for secure integration between IT and product environments
  • Partner closely with Global IT Security Engineering on IAM, endpoint, VPN, reverse proxy, and access-tool integration
  • Define security architecture for AI/ML workflows, cloud-native data platforms, and ML pipelines
  • Establish and maintain AI/ML trust-boundary models
  • Support architecture and product teams on secure AI adoption
  • Shape standards for data governance and access design, ML pipeline trust boundaries, model and data protection patterns, secure use of AI assistants and AI-enabled workflows
  • Fulltime
Read More
Arrow Right