CrawlJobs Logo

Information System Security Engineer - Senior

United States, San Antonio Employment contract 160000.00 - 175000.00 USD / Year · Job Posted May 30, 2026
Apply Position
Job Link Share

Job Description

In support of a challenging, critical, and rewarding program that provides integrated voice, video, and data services throughout the Information Technology lifecycle, Amentum is seeking a Senior Information System Security Engineer to join our dynamic team of IT professionals dedicated to fostering a positive and collaborative work environment. You must be a critical thinker, have a strong work ethic, and be able to work independently or as a member of a team in a dynamic environment. We value candidates who are detail-oriented while also being able to think and react quickly to emerging and unique problem sets. To be successful, you must be able to rapidly adapt and learn how to operate the front and back end of new products and processes.

Job Responsibility

  • Experience creating custom dashboards, writing queries, building, and generating reports, and setting up alerts and notifications using all the Cyber tools (Splunk, Tenable, Trellix)
  • Demonstrated proficiency with recognizing and onboarding new data sources into the cyber tools and analyzing the data for anomalies and trends
  • Primarily responsible for maintaining the test and operational environments to include all cybersecurity tool sets and collaborating with systems and network engineers
  • Use knowledge, skills, and ability to conduct research for designing, integrating, and implementing security controls into current and future products/systems thus ensuring these systems can be accredited based on compliance with the Joint Special Access Program Implementation Guide (JSIG)
  • Recommend the components to implement system security requirements using intimate knowledge of security design best practices for information systems throughout the system development life cycle to support the generation of security engineering products
  • Assist with the design, deployment, and administration of a multi-site, distributed Splunk environment including Multi-site Clustering, Search Head Clustering, Universal Forwarders, Deployer, and Deployment Server
  • Configure, operate, and maintain Trellix and its components (ePolicy Orchestrator, Trellix Agent, Data Loss Prevention, Host Intrusion Prevention System, Policy Auditor, Asset Baseline Monitor, and Virus Scan Enterprise) on Windows and Linux creating exceptions to allow essential processes to continue uninterrupted
  • Administration/operation of information security compliance tools/platforms with a special concentration in managing Tenable Security Center and NESSUS
  • Provide Tier 1, 2, and 3 maintenance support for deployed cyber security technologies
  • Assist with periodic and regular security assessments
  • Assist with the development and maintenance of information security policies, standards, and control procedures to enable compliance with RMF
  • Assist with POA&M management, mitigation statement formulation, and interfacing with system administrators to resolve open findings of high and at-risk systems
  • Perform security assessments on hardware/software products to include physical, virtual, boundary, and security appliances
  • Implement continuous monitoring tools and processes, development of improvements to security assessments regarding accuracy and efficiency as well as integration of new techniques to improve the confidentiality – integrity – availability of network/operational systems at multiple classifications levels

Requirements

  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
  • Ability to work both independently and as part of a team in a dynamic environment
  • Bachelor's Degree in a related field (Cyber and/or Engineering)
  • 8 years of relevant experience
  • Must possess, or be able to obtain, one of the following 8140 IAT Level II or III baseline certifications before a start date: Level II certifications include – CCNA Security, GISCP, GSEC, Security+ CE, SSCP. Level III certifications include – CASP CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH

Nice to have

  • Ability to work within VMWare, VCenter, and Nutanix building Red Hat systems
  • Configure, operate, and maintain ForeScout, Tripwire and Ivanti tool suites
  • Possess understanding and experience with common cybersecurity toolsets and processes to include STIGS, IAVA Management and Implementation, and OPORD/FRAGO support
  • Demonstrated experience in analysis simulation environment, configuration/troubleshooting software/hardware enhancements, application deployments, and infrastructure upgrades in a dynamic information system hosting environment
  • Proficiency with Red Hat/Linux
  • Managing Red Hat Satellite/Ansible
  • At least one of the following certifications is preferred: Splunk Core Certified Advanced Power User, Splunk Enterprise Certified Administrator, Splunk Enterprise Certified Architect, and/or Splunk Core Certified Consultant

What we offer

  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Information System Security Engineer - Senior

8 matching positions

Information System Security Engineer - Senior

In support of a challenging, critical, and rewarding program that provides integ...
Location
Location
United States , Warrenton
Salary
Salary:
185000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
Job Responsibility
Job Responsibility
  • Endpoint Security Engineering (Trellix/ePO): Expertly design, configure, and maintain Trellix components (ePO, Trellix Agent, DLP, HIPS, Policy Auditor, ABM, and VSE) across Windows and Linux environments
  • Author and deploy endpoint security policies for ENS modules (Threat Prevention, Firewall, Web Control) based on DISA STIGs and organizational needs
  • Develop custom signatures, rules, and exceptions to address zero-day threats and specific operational requirements
  • Validate custom exceptions to ensure uninterrupted operation of mission-critical processes without compromising compliance
  • Vulnerability Management (ACAS/Nessus): Design enterprise-wide vulnerability scanning strategies and manage the deployment of Security Centers and Nessus scanners
  • Serve as the final escalation point for complex scan issues, credentialing problems, and system communication failures
  • Configure automated reporting of compliance data to continuous monitoring systems and risk-scoring repositories
  • Security Integration & Engineering: Integrate Trellix and ACAS with tools such as Splunk, XSOAR, and ServiceNow to automate workflows and enhance incident response
  • Provide authoritative recommendations and ACAS-generated artifacts to support the Assessment and Authorization (A&A) process and RMF packages for Authority to Operate (ATO)
  • Lead the maintenance and scalability of test, development, and operational environments, collaborating with Network and DevSecOps teams to enhance resilience
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Senior Information System Security Engineer

Astrion has an exciting opportunity for a Senior Information System Security Eng...
Location
Location
United States , Bedford / Hanscom AFB, Massachusetts
Salary
Salary:
160000.00 - 175000.00 USD / Year
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must be a US Citizen
  • Must have an active Top Secret Clearance with SCI eligibility
  • MA/MS degree and at least 10 years of job experience
  • Minimum of ten years of progressive technical experience
  • Must meet DoDD 8140 IAT level II or higher
  • Certified Information Systems Security Professional (CISSP) required
  • SAP/SAR experience required
Job Responsibility
Job Responsibility
  • Lead the coordination of A&A documentation
  • Assist with design, development, implementation, integration of systems IA architecture
  • Serve as PMO expert of IA security protections and requirements
  • Assist in development of security plan of actions and milestone (POA&M) mitigations through timely assessment of POA&M corrective actions
  • Conduct technical and nontechnical reviews and observe audits as necessary to support development and test efforts
  • Demonstrate experience in: Security systems engineering involving hardware and software operating systems and application solutions
  • Security features and/or vulnerability of various operating systems
  • IA vulnerability testing
  • US Government contract proposals as IA/security engineering subject matter expert, and implementation of DoD and Federal IA A&A processes
  • IA controls and developing and maintaining associated A&A documentation IAW RMF
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
Read More
Arrow Right

Senior Information Security Engineer

SmartRecruiters is looking for a Senior Information Security Engineer to join th...
Location
Location
Poland
Salary
Salary:
Not provided
smartrecruiters.com Logo
SmartRecruiters
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in information security, governance, risk, and/or compliance roles with a technical orientation
  • Demonstrated compliance or auditing experience with at least one major framework
  • Solid understanding of controls auditing principles and evidence management
  • Knowledge of risk management methodologies and experience conducting or supporting risk assessments
  • Ability to manage and deliver on multiple complex projects simultaneously, with minimal supervision
  • The ability to investigate, question, and interpret internal and external IT security and compliance issues at both a governance and technical level
  • A strong understanding of technology, cloud-based products, and SaaS environments
  • Experience working across business units and geographical boundaries to engage engineering, business, and operational teams
  • Experience with ISO 27001
  • Excellent written and verbal communication skills in English
Job Responsibility
Job Responsibility
  • Identify manual, repetitive GRC processes and design automation blueprints to streamline them, including evidence collection, control monitoring, access reviews, policy enforcement checks, and compliance reporting
  • Build and maintain automated workflows using compliance platforms, scripting, or integration tools to reduce manual effort and improve audit-readiness
  • Develop reusable templates, playbooks, and standardised blueprints for recurring GRC activities (e.g., vendor assessments, internal audits, risk reviews) to ensure consistency and scalability
  • Collaborate with engineering and IT teams to integrate security and compliance checks into existing toolchains and CI/CD pipelines where applicable
  • Continuously evaluate and improve GRC tooling, data flows, and reporting to drive operational efficiency across the team
  • Manage stakeholder expectations and partner with internal teams to ensure effective management of IT risks and compliance obligations
  • Maintain regional and local stakeholder relationships, meeting schedules, minutes, and reports
  • Support the maintenance of the SOC 2 Type II framework, including evidence collection, control testing coordination, and audit support
  • Effectively manage ISO 27001 and ISO 22301 audit lifecycles and coordinate with stakeholders on ISMS and BCMS improvements
  • Support the maintenance and continuous improvement of the ISO 42001 (AI Management System) framework in alignment with the EU AI Act
Read More
Arrow Right

Senior Information Security Engineer

Mastercard is seeking candidates to join the Data Protection team with a focus o...
Location
Location
Ireland , Dublin 18
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
October 10, 2026
Flip Icon
Requirements
Requirements
  • Experience operating or designing security governance or enforcement programs in large, complex environments
  • Strong understanding of information security, data protection, and risk management, particularly as applied to SaaS and third party technologies
  • Demonstrated ability to make and defend risk based decisions that balance security, policy, and business impact
  • Experience working cross functionally with Legal, Privacy, Compliance, and Technology teams
  • Ability to clearly document decisions and articulate technical and business impact to diverse audiences
  • Strong verbal and written communication skills, including executive ready summaries
  • Demonstrated technical competency in security engineering through hands on experience or relevant qualifications
  • Design and implement data models and analytics frameworks to support Shadow IT blocking decisions, escalation tracking, and governance reporting
  • Develop automated processes and dashboards to provide visibility into blocking activity, unblock requests, escalation outcomes, and trend analysis
  • Evaluate and integrate data sources (e.g., SaaS discovery tools, cloud telemetry, intake systems) to ensure accurate and timely Shadow IT decisioning data
Job Responsibility
Job Responsibility
  • Contribute to the execution of the Shadow IT and Data Protection roadmap, with primary ownership of enforcement, escalation, and governance processes
  • Develop and maintain a Shadow IT blocking strategy framework for unapproved applications, including: Blocking criteria and decision thresholds, Risk scoring aligned to data sensitivity, access, and exposure, Defined escalation paths for exceptions and high impact cases
  • Document all blocking decisions with clear business justification, technical impact assessment, and alignment to security and data protection policy
  • Establish and maintain communication protocols to notify stakeholders of application blocks, including timelines, approved alternatives, and available support resources
  • Manage unblock requests and escalations and exception processing, coordinating with Security Operations and business stakeholders to evaluate risk and determine outcomes
  • Partner with application, platform, and business teams to define paths to compliance, including remediation, onboarding to approved services, or decommissioning
  • Track and report Shadow IT metrics, including blocking trends, unblock volumes, escalation outcomes, incidents, and stakeholder satisfaction
  • Work side by side with other team members to build and mature the Shadow IT governance process, while taking lead ownership of defined processes such as: Escalations and exception handling, Cross functional coordination, Technical impact assessment, Policy alignment and enforcement
  • Build and operationalize a next generation Shadow IT governance model that provides transparency, consistency, and defensibility across the enterprise
  • Develop a way to automatically tag approved apps
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer

The Sr. Information Security Engineering job collaborates with various business ...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Information Security or IT Technology
  • 3+ years of experience leading complex enterprise-wide integration programs and efforts as an individual contributor
  • 3+ years of engineering experience with vulnerability management tools such as Nexpose, Tenable
  • 3+ years of engineering experience with operating systems such as Linux and Windows Server
  • 2+ years of self-leadership experience
  • 2+ years of experience writing Python, GRAPH (GQL)
  • 2+ years of experience working with services in AWS, GCP, OCI, and Azure
Job Responsibility
Job Responsibility
  • Provides operations and engineering support for critical security systems and services including servers, endpoint security, computer forensics, vulnerability/penetration assessment/mitigation, and security event management
  • Leads the cost/benefit evaluation of cloud solutions compared to virtual private networks, dedicated hosting, and in-house solutions
  • Reviews technical feasibility of adopting external cloud based IT platform and infrastructure services within the organization
  • Leads the identification of portions of the organization's IT platform/infrastructure with the highest potential return for cloud deployment
  • Facilitates implementation of the organization's global strategies and initiatives to enhance Information Technology plans, operations and procedures
  • Ensures the execution of vulnerability analysis and exploitation of applications, operating systems and networks
  • Reports identified intrusion or incident paths and methods discovered through testing and evaluation procedures
  • Designs, develops and implements countermeasures, systems integration and tools specific to cyber and information operations
  • Resolves and documents complex malware and intrusion issues within the system as they occur
  • Functions as an internal information security consultant on the standards, complex issues and best practices for the organization
Read More
Arrow Right

Senior Information Security Engineer

At Qualia, we've built the leading B2B real estate technology that transforms th...
Location
Location
United States
Salary
Salary:
180000.00 - 200000.00 USD / Year
qualia.com Logo
Qualia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of professional information security experience, with both a strong defensive foundation and familiarity with offensive techniques
  • Genuine curiosity about how systems work and how they break
  • The ability to write code—whether it's a quick automation script or a more substantial detection tool
  • Hands-on experience with: Security operations tooling (e.g., SIEMs, IDS/IPS, WAFs, log monitoring platforms)
  • Core IT domains, including endpoint management, networking, web applications, and cloud infrastructure
  • Identity and access management concepts (e.g., SSO, MFA, role-based access controls)
  • Navigating the security implications of emerging technologies—including AI and large language models—as the company evaluates and adopts new tools
  • Security automation and orchestration: experience connecting tools, writing integrations, or building workflows that reduce response times and manual effort
  • Penetration testing tools (e.g., Nmap, Nessus, Metasploit, Burp Suite, or similar)
  • The ability to translate complex security concepts into clear, actionable language for technical and non-technical audiences alike
Job Responsibility
Job Responsibility
  • Partner with stakeholders across the business to identify gaps and strengthen Qualia's security posture
  • Uncover security weaknesses in technologies and processes through threat modeling, security assessments, and the development of practical security baselines
  • Build and operate tooling across the full security lifecycle: prevention, detection, investigation, and response
  • Evaluate the security posture of cloud environments, including reviewing configurations, monitoring for drift, and ensuring alignment with organizational security baselines
  • Serve as a point of escalation for customer-reported security concerns, triaging issues, communicating clearly with affected parties, and driving issues to resolution
  • Triage and reproduce vulnerability findings from penetration tests, internal tooling, and external reports—and communicate associated risk clearly to the right audiences
  • Scale security impact through automation and education, making the whole organization more security-aware
What we offer
What we offer
  • competitive equity and benefits package
  • comprehensive health plans
  • a 401k program
  • commuter benefits
  • professional development
  • parental leave
  • a flexible time off policy
  • robust online onboarding program
  • biweekly all hands meetings
  • a variety of internal virtual events to keep employees connected
  • Fulltime
Read More
Arrow Right

Satellite Communications System Security Engineer, Senior

As a Satellite Communications Systems Security Engineer, you will identify the n...
Location
Location
United States , Fort Meade
Salary
Salary:
77600.00 - 176000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience implementing, testing, and validating STIGs, performing system self‑assessments, and creating STIG checklists
  • 7+ years of experience executing IAVM actions, such as IAVA alerts, bulletins, or tasking orders, and developing compliant engineering responses
  • 7+ years of experience deploying and validating ESS, ACAS, and CMRS, analyzing ACAS scans, developing remediation strategies, and implementing patches and upgrades
  • 7+ years of experience reviewing cybersecurity and engineering change requests to ensure operational availability and compliance
  • Knowledge of RMF and its application to networks and IT systems, such as Cisco routers, switches, Active Directory, or access control
  • Ability to manage users in Windows or Linux and administer VMs in VMware or Hyper‑V
  • Ability to accredit and secure DoD systems using RMF, perform IAVA analysis, document POA&Ms, and prepare security assessment artifacts
  • Top Secret clearance
  • Bachelor’s degree in Science, Technology, or Engineering
  • Security+ Certification
Job Responsibility
Job Responsibility
  • Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management
  • Implement infrastructure and cybersecurity controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises
  • Perform risk and vulnerability assessments in network, system, and application areas and leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise
  • Participate in the development of test strategies and conduct of testing, validating, and implementing applicable STIG requirements for current or new systems
  • Conduct periodic self-assessments of systems to ensure STIG compliance and create STIG checklists to support periodic self-assessments
  • Perform Information Assurance Vulnerability Management (IAVM) activities such as IA vulnerability alerts, bulletins, and tasking orders and develop a systematic approach for responses to IAVM related issues to maintain system compliance
What we offer
What we offer
  • health, life, disability, financial, and retirement benefits
  • paid leave
  • professional development
  • tuition assistance
  • work-life programs
  • dependent care
  • recognition awards program
Read More
Arrow Right

Senior Software Engineer, Information Security

We are seeking a Senior Software Engineer to design, build, and scale secure ent...
Location
Location
United States of America , Bentonville
Salary
Salary:
90000.00 - 180000.00 USD / Year
walmart.com Logo
Walmart
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Technology, or related field and 5 years' experience in information technology within the past 10 years OR 7 years' experience in information technology or related field within the past 10 years.
Job Responsibility
Job Responsibility
  • Design, build, and maintain scalable services supporting MFA, PR-MFA, and CBA
  • Implement secure registration, recovery, lifecycle, and enforcement workflows
  • Contribute to enterprise-scale rollout strategies for phishing-resistant MFA and certificate-based authentication
  • Integrate MFA capabilities into identity providers, SSO platforms, VPN solutions, and endpoint systems
  • Apply FIDO2/passkey and CBA (PKI, certificates) concepts in production systems
  • Build automation to support hardware authenticator enrollment, recovery, and lifecycle operations
  • Develop dashboards and metrics to monitor adoption, rollout health, reliability, and security posture
  • Participate in architectural design discussions and contribute to long-term technical strategy
  • Mentor junior engineers and promote engineering best practices through code reviews, documentation, and knowledge-sharing sessions
What we offer
What we offer
  • medical, vision and dental coverage
  • 401(k), stock purchase and company-paid life insurance
  • PTO (including sick leave), parental leave, family care leave, bereavement, jury duty, and voting
  • short-term and long-term disability, company discounts, Military Leave Pay, adoption and surrogacy expense reimbursement
  • PTO and/or PPTO
  • Live Better U education benefit program
  • annual or quarterly performance bonuses
  • stock
  • Fulltime
Read More
Arrow Right