CrawlJobs Logo
Amentum Logo Amentum · IT - Software Development

Information System Security Engineer - Senior

United States, Warrenton 185000.00 USD / Year · Job Posted May 30, 2026
Apply Position
Job Link Share

Job Description

In support of a challenging, critical, and rewarding program that provides integrated voice, video, and data services throughout the Information Technology lifecycle, Amentum is seeking Senior Information System Security Engineer (ISSE) to serve as a subject matter expert in the design, implementation, and optimization of enterprise security toolsets. The successful candidate will lead the engineering efforts for the Trellix (ePO) ecosystem and the ACAS (Nessus) suite, ensuring mission-critical assets remain secure, compliant, and resilient. This role requires a blend of high-level security architecture, hands-on troubleshooting, and the ability to drive secure-by-design principles across the System Development Life Cycle (SDLC). You must be a critical thinker, have a strong work ethic, and be able to work independently or as a member of a team in a dynamic environment. We value candidates who are detail-oriented while also being able to think and react quickly to emerging and unique problem sets. To be successful, you must be able to rapidly adapt and learn how to operate the front and back end of new products and processes.

Job Responsibility

  • Endpoint Security Engineering (Trellix/ePO): Expertly design, configure, and maintain Trellix components (ePO, Trellix Agent, DLP, HIPS, Policy Auditor, ABM, and VSE) across Windows and Linux environments
  • Author and deploy endpoint security policies for ENS modules (Threat Prevention, Firewall, Web Control) based on DISA STIGs and organizational needs
  • Develop custom signatures, rules, and exceptions to address zero-day threats and specific operational requirements
  • Validate custom exceptions to ensure uninterrupted operation of mission-critical processes without compromising compliance
  • Vulnerability Management (ACAS/Nessus): Design enterprise-wide vulnerability scanning strategies and manage the deployment of Security Centers and Nessus scanners
  • Serve as the final escalation point for complex scan issues, credentialing problems, and system communication failures
  • Configure automated reporting of compliance data to continuous monitoring systems and risk-scoring repositories
  • Security Integration & Engineering: Integrate Trellix and ACAS with tools such as Splunk, XSOAR, and ServiceNow to automate workflows and enhance incident response
  • Provide authoritative recommendations and ACAS-generated artifacts to support the Assessment and Authorization (A&A) process and RMF packages for Authority to Operate (ATO)
  • Lead the maintenance and scalability of test, development, and operational environments, collaborating with Network and DevSecOps teams to enhance resilience
  • Deliver Tier 1–3 maintenance and incident response for the full cybersecurity portfolio (ACAS, Trellix, Splunk, XSOAR)
  • Deep understanding of DISA STIGs, NIST 800-53, and the Risk Management Framework (RMF)

Requirements

  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
  • Ability to work both independently and as part of a team in a dynamic environment
  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Bachelor’s Degree in a related field (Cyber and/or Engineering)
  • 8 years of relevant experience
  • Must possess, or be able to obtain, one of the following 8140 IAT Level II or III baseline certifications before a start date: Level II certifications include – CCNA Security, GISCP, GSEC, Security+ CE, SSCP
  • Level III certifications include – CASP CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH

Nice to have

  • RHEL Administration: Proficient understanding of Red Hat Enterprise Linux (RHEL) 8 and 9, including the ability to monitor and maintain cybersecurity tools at the OS level
  • SOAR Automation: Experience managing the full lifecycle of XSOAR infrastructure, including building complex playbooks, custom scripts, and integrations to automate cyber workflows
  • Splunk O&M: Proficiency in Splunk Operations & Maintenance, including managing distributed components, index management, version upgrades, and creating custom dashboards via the Monitoring Console

What we offer

  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
Amentum - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Information System Security Engineer - Senior

8 matching positions

Information System Security Engineer - Senior

In support of a challenging, critical, and rewarding program that provides integ...
Location
Location
United States , San Antonio
Salary
Salary:
160000.00 - 175000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
Job Responsibility
Job Responsibility
  • Experience creating custom dashboards, writing queries, building, and generating reports, and setting up alerts and notifications using all the Cyber tools (Splunk, Tenable, Trellix)
  • Demonstrated proficiency with recognizing and onboarding new data sources into the cyber tools and analyzing the data for anomalies and trends
  • Primarily responsible for maintaining the test and operational environments to include all cybersecurity tool sets and collaborating with systems and network engineers
  • Use knowledge, skills, and ability to conduct research for designing, integrating, and implementing security controls into current and future products/systems thus ensuring these systems can be accredited based on compliance with the Joint Special Access Program Implementation Guide (JSIG)
  • Recommend the components to implement system security requirements using intimate knowledge of security design best practices for information systems throughout the system development life cycle to support the generation of security engineering products
  • Assist with the design, deployment, and administration of a multi-site, distributed Splunk environment including Multi-site Clustering, Search Head Clustering, Universal Forwarders, Deployer, and Deployment Server
  • Configure, operate, and maintain Trellix and its components (ePolicy Orchestrator, Trellix Agent, Data Loss Prevention, Host Intrusion Prevention System, Policy Auditor, Asset Baseline Monitor, and Virus Scan Enterprise) on Windows and Linux creating exceptions to allow essential processes to continue uninterrupted
  • Administration/operation of information security compliance tools/platforms with a special concentration in managing Tenable Security Center and NESSUS
  • Provide Tier 1, 2, and 3 maintenance support for deployed cyber security technologies
  • Assist with periodic and regular security assessments
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Senior Information System Security Engineer

Astrion has an exciting opportunity for a Senior Information System Security Eng...
Location
Location
United States , Bedford / Hanscom AFB, Massachusetts
Salary
Salary:
160000.00 - 175000.00 USD / Year
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must be a US Citizen
  • Must have an active Top Secret Clearance with SCI eligibility
  • MA/MS degree and at least 10 years of job experience
  • Minimum of ten years of progressive technical experience
  • Must meet DoDD 8140 IAT level II or higher
  • Certified Information Systems Security Professional (CISSP) required
  • SAP/SAR experience required
Job Responsibility
Job Responsibility
  • Lead the coordination of A&A documentation
  • Assist with design, development, implementation, integration of systems IA architecture
  • Serve as PMO expert of IA security protections and requirements
  • Assist in development of security plan of actions and milestone (POA&M) mitigations through timely assessment of POA&M corrective actions
  • Conduct technical and nontechnical reviews and observe audits as necessary to support development and test efforts
  • Demonstrate experience in: Security systems engineering involving hardware and software operating systems and application solutions
  • Security features and/or vulnerability of various operating systems
  • IA vulnerability testing
  • US Government contract proposals as IA/security engineering subject matter expert, and implementation of DoD and Federal IA A&A processes
  • IA controls and developing and maintaining associated A&A documentation IAW RMF
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
Read More
Arrow Right

Senior System Security and Information Assurance Engineer

The Senior PAM Engineer will play a critical role within Line of Effort 2, respo...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Top Secret clearance with SCI eligibility
  • Master’s degree (MA/MS) in Cybersecurity, Information Technology, Computer Science, Engineering, or related field
  • 10+ years of professional experience in cybersecurity, systems engineering, or information assurance
  • Meets Cyber Engineer – Senior labor category requirements, including independent execution of all functional duties and support to mission-critical program elements
  • DoD 8570 IAT Level II certification or higher (e.g., Security+ CE, CCNA Security)
  • Deep expertise in Privileged Access Management (PAM) architectures and Zero Standing Privilege concepts
  • Hands-on experience implementing Just-In-Time (JIT) access workflows
  • Experience integrating PAM solutions with Active Directory, SIEM platforms (Splunk), and Identity Governance (IGA) tools
  • Experience producing technical documentation to support RMF and ATO processes (LLDs, SSPs, SOPs)
  • Ability to lead or oversee the efforts of less senior staff as required by program needs
Job Responsibility
Job Responsibility
  • Lead the installation, configuration, and technical implementation of an enterprise Privileged Access Management (PAM) solution (Delinea-focused) across multiple network enclaves
  • Discover, inventory, and onboard privileged user, administrator, and service accounts into a secure credential vault
  • Design and enforce policies for Just-In-Time (JIT) access, session monitoring, and session recording to achieve zero standing privileges
  • Develop scripts and API-based integrations between the PAM solution, Splunk SIEM, and Identity Governance (IGA) platforms
  • Support RMF accreditation activities by developing Low-Level Design (LLD) documents, System Security Plans (SSPs), and Standard Operating Procedures (SOPs)
  • Support Authority to Operate (ATO) efforts through security control implementation and technical validation
  • Lead enterprise rollout of PAM policies from pilot groups to full operational enforcement
  • Collaborate with Zero Trust architects, identity teams, and cyber engineers to ensure alignment with enterprise security architecture
Read More
Arrow Right

Senior System Information Assurance and Security Engineer

Barbaricum is seeking a highly skilled System Information Assurance and Security...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD TS/SCI Clearance
  • Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (Master’s preferred)
  • 10+ years of experience in enterprise identity and access management architecture
  • Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
  • Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
  • Experience with DoD enterprise solutions such as Radiant Logic, Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
  • Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
  • Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
  • IAM / DoD Certification IAT Level II (e.g., Security+ CE, SSCP, GSEC)
Job Responsibility
Job Responsibility
  • Execute engineering solutions for identity credential and access management for Zero Trust implementation across enterprise systems
  • Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
  • Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
  • Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
  • Conduct the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
  • Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
  • Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
  • Lead proof-of-concepts (POCs) and technology evaluations for emerging identity
Read More
Arrow Right

Senior Information Security Engineer - CTFC

Wells Fargo is seeking a Senior Information Security Engineer.
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 29, 2026
Flip Icon
Requirements
Requirements
  • 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 4+ years of hands-on experience in Cyber Security, with a strong focus on Security Operations
  • 4+ years of experience working with enterprise SIEM platforms, preferably Splunk, including use case development, log analysis, and alert tuning
  • Solid understanding of cybersecurity frameworks and methodologies, including the Cyber Kill Chain, MITRE ATT&CK, and NIST frameworks
  • Proven experience in Security Incident Response, including detection, investigation, containment, mitigation, and remediation processes
  • Advanced knowledge of networking concepts, protocols, and security standards, along with deep understanding of Linux/Unix and Windows OS internals and system configurations
  • Strong analytical and problem-solving skills, with the ability to correlate events and identify potential threats across diverse environments
  • Bachelor’s and/or Master’s degree in computer science, Information Systems, or a related field
  • Industry-recognized certifications such as CHFI, OSCP, CEH, or equivalent are highly preferred
  • Experience with SOAR platforms (e.g., XSOAR), threat intelligence integration, and automation/orchestration is an added advantage
Job Responsibility
Job Responsibility
  • Lead or participate in computer security incident response activities for moderately complex events
  • Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
  • Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
  • Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
  • Review and correlate security logs
  • Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
  • Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
  • Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
  • Monitor, triage, and investigate security alerts, ensuring timely and effective case handling and resolution
  • Conduct detailed security investigations, performing analysis, correlation, and validation of potential threats
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer

Mastercard is seeking candidates to join the Data Protection team with a focus o...
Location
Location
Ireland , Dublin 18
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
October 10, 2026
Flip Icon
Requirements
Requirements
  • Experience operating or designing security governance or enforcement programs in large, complex environments
  • Strong understanding of information security, data protection, and risk management, particularly as applied to SaaS and third party technologies
  • Demonstrated ability to make and defend risk based decisions that balance security, policy, and business impact
  • Experience working cross functionally with Legal, Privacy, Compliance, and Technology teams
  • Ability to clearly document decisions and articulate technical and business impact to diverse audiences
  • Strong verbal and written communication skills, including executive ready summaries
  • Demonstrated technical competency in security engineering through hands on experience or relevant qualifications
  • Design and implement data models and analytics frameworks to support Shadow IT blocking decisions, escalation tracking, and governance reporting
  • Develop automated processes and dashboards to provide visibility into blocking activity, unblock requests, escalation outcomes, and trend analysis
  • Evaluate and integrate data sources (e.g., SaaS discovery tools, cloud telemetry, intake systems) to ensure accurate and timely Shadow IT decisioning data
Job Responsibility
Job Responsibility
  • Contribute to the execution of the Shadow IT and Data Protection roadmap, with primary ownership of enforcement, escalation, and governance processes
  • Develop and maintain a Shadow IT blocking strategy framework for unapproved applications, including: Blocking criteria and decision thresholds, Risk scoring aligned to data sensitivity, access, and exposure, Defined escalation paths for exceptions and high impact cases
  • Document all blocking decisions with clear business justification, technical impact assessment, and alignment to security and data protection policy
  • Establish and maintain communication protocols to notify stakeholders of application blocks, including timelines, approved alternatives, and available support resources
  • Manage unblock requests and escalations and exception processing, coordinating with Security Operations and business stakeholders to evaluate risk and determine outcomes
  • Partner with application, platform, and business teams to define paths to compliance, including remediation, onboarding to approved services, or decommissioning
  • Track and report Shadow IT metrics, including blocking trends, unblock volumes, escalation outcomes, incidents, and stakeholder satisfaction
  • Work side by side with other team members to build and mature the Shadow IT governance process, while taking lead ownership of defined processes such as: Escalations and exception handling, Cross functional coordination, Technical impact assessment, Policy alignment and enforcement
  • Build and operationalize a next generation Shadow IT governance model that provides transparency, consistency, and defensibility across the enterprise
  • Develop a way to automatically tag approved apps
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer

The Sr. Information Security Engineering job collaborates with various business ...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Information Security or IT Technology
  • 3+ years of experience leading complex enterprise-wide integration programs and efforts as an individual contributor
  • 3+ years of engineering experience with vulnerability management tools such as Nexpose, Tenable
  • 3+ years of engineering experience with operating systems such as Linux and Windows Server
  • 2+ years of self-leadership experience
  • 2+ years of experience writing Python, GRAPH (GQL)
  • 2+ years of experience working with services in AWS, GCP, OCI, and Azure
Job Responsibility
Job Responsibility
  • Provides operations and engineering support for critical security systems and services including servers, endpoint security, computer forensics, vulnerability/penetration assessment/mitigation, and security event management
  • Leads the cost/benefit evaluation of cloud solutions compared to virtual private networks, dedicated hosting, and in-house solutions
  • Reviews technical feasibility of adopting external cloud based IT platform and infrastructure services within the organization
  • Leads the identification of portions of the organization's IT platform/infrastructure with the highest potential return for cloud deployment
  • Facilitates implementation of the organization's global strategies and initiatives to enhance Information Technology plans, operations and procedures
  • Ensures the execution of vulnerability analysis and exploitation of applications, operating systems and networks
  • Reports identified intrusion or incident paths and methods discovered through testing and evaluation procedures
  • Designs, develops and implements countermeasures, systems integration and tools specific to cyber and information operations
  • Resolves and documents complex malware and intrusion issues within the system as they occur
  • Functions as an internal information security consultant on the standards, complex issues and best practices for the organization
Read More
Arrow Right

Senior Information Security Engineer

At Qualia, we've built the leading B2B real estate technology that transforms th...
Location
Location
United States
Salary
Salary:
180000.00 - 200000.00 USD / Year
qualia.com Logo
Qualia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of professional information security experience, with both a strong defensive foundation and familiarity with offensive techniques
  • Genuine curiosity about how systems work and how they break
  • The ability to write code—whether it's a quick automation script or a more substantial detection tool
  • Hands-on experience with: Security operations tooling (e.g., SIEMs, IDS/IPS, WAFs, log monitoring platforms)
  • Core IT domains, including endpoint management, networking, web applications, and cloud infrastructure
  • Identity and access management concepts (e.g., SSO, MFA, role-based access controls)
  • Navigating the security implications of emerging technologies—including AI and large language models—as the company evaluates and adopts new tools
  • Security automation and orchestration: experience connecting tools, writing integrations, or building workflows that reduce response times and manual effort
  • Penetration testing tools (e.g., Nmap, Nessus, Metasploit, Burp Suite, or similar)
  • The ability to translate complex security concepts into clear, actionable language for technical and non-technical audiences alike
Job Responsibility
Job Responsibility
  • Partner with stakeholders across the business to identify gaps and strengthen Qualia's security posture
  • Uncover security weaknesses in technologies and processes through threat modeling, security assessments, and the development of practical security baselines
  • Build and operate tooling across the full security lifecycle: prevention, detection, investigation, and response
  • Evaluate the security posture of cloud environments, including reviewing configurations, monitoring for drift, and ensuring alignment with organizational security baselines
  • Serve as a point of escalation for customer-reported security concerns, triaging issues, communicating clearly with affected parties, and driving issues to resolution
  • Triage and reproduce vulnerability findings from penetration tests, internal tooling, and external reports—and communicate associated risk clearly to the right audiences
  • Scale security impact through automation and education, making the whole organization more security-aware
What we offer
What we offer
  • competitive equity and benefits package
  • comprehensive health plans
  • a 401k program
  • commuter benefits
  • professional development
  • parental leave
  • a flexible time off policy
  • robust online onboarding program
  • biweekly all hands meetings
  • a variety of internal virtual events to keep employees connected
  • Fulltime
Read More
Arrow Right