Security Engineer / Architect Job at SD Solutions, LLC (Washington, District of Columbia)

Security Engineer 4 - FedRAMP Compliance Architect

PagerDuty is seeking a Security Engineer 4 - FedRAMP Compliance Architect to joi...

Location

United States

Salary:

176000.00 - 281000.00 USD / Year

PagerDuty

Expiration Date

Until further notice

Requirements

5+ years of experience in cloud security architecture, compliance, or cybersecurity engineering
at least 3 years of experience supporting FedRAMP Moderate or High authorization
deep expertise in FedRAMP, NIST 800-53, FISMA, and cloud security best practices
strong ability to assess security risks and recommend technical and procedural mitigations
experience working with AWS GovCloud, Azure Government, or other federal cloud environments
experience with audit preparation, risk assessments, and working with third-party assessors (3PAOs)
exceptional written and verbal communication skills for creating and managing FedRAMP documentation

Job Responsibility

Design, implement, and maintain system architectures to align with FedRAMP requirements
serve as the subject matter expert (SME) on FedRAMP, advising internal teams on security best practices, control implementations, and risk mitigation strategies
collaborate with engineering, operations, product, and corporate IT teams to develop secure cloud-based architectures that meet federal compliance mandates
implement governance strategy on technical security controls, including access management, configuration, encryption, logging, monitoring, and vulnerability management
support annual assessments, security control reviews, and audits, coordinating with third-party assessors (3PAO) and government sponsors
technical support for external stakeholders on customer responsibilities
key contributor to the development and maintenance of the System Security Plan (SSP), Policies and Procedures, Configuration Management Plan, Secure System Development Life Cycle, and other FedRAMP documentation
partner with the GRC (Governance, Risk, and Compliance) team to efficiently track and resolve security findings

What we offer

Competitive salary
comprehensive benefits package from day one
flexible work arrangements
company equity
ESPP (Employee Stock Purchase Program)
retirement or pension plan
generous paid vacation time
paid holidays and sick leave
Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO
paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent

Fulltime

Security Engineer 4 - FedRAMP Compliance Architect

PagerDuty is seeking a Security Engineer 4 - FedRAMP Compliance Architect to joi...

Location

United States , Atlanta

Salary:

176000.00 - 281000.00 USD / Year

PagerDuty

Expiration Date

Until further notice

Requirements

5+ years of experience in cloud security architecture, compliance, or cybersecurity engineering, with at least 3 years of experience supporting FedRAMP Moderate or High authorization
Deep expertise in FedRAMP, NIST 800-53, FISMA, and cloud security best practices
Strong ability to assess security risks and recommend technical and procedural mitigations
Experience working with AWS GovCloud, Azure Government, or other federal cloud environments
Experience with audit preparation, risk assessments, and working with third-party assessors (3PAOs)
Exceptional written and verbal communication skills for creating and managing FedRAMP documentation

Job Responsibility

Design, implement, and maintain system architectures to align with FedRAMP requirements
Serve as the subject matter expert (SME) on FedRAMP, advising internal teams on security best practices, control implementations, and risk mitigation strategies
Collaborate with engineering, operations, product, and corporate IT teams to develop secure cloud-based architectures that meet federal compliance mandates
Implement governance strategy on technical security controls, including access management, configuration, encryption, logging, monitoring, and vulnerability management
Support annual assessments, security control reviews, and audits, coordinating with third-party assessors (3PAO) and government sponsors
Technical support for external stakeholders on customer responsibilities
Key contributor to the development and maintenance of the System Security Plan (SSP), Policies and Procedures, Configuration Management Plan, Secure System Development Life Cycle, and other FedRAMP documentation
Partner with the GRC (Governance, Risk, and Compliance) team to efficiently track and resolve security findings

What we offer

Competitive salary
Comprehensive benefits package from day one
Flexible work arrangements
Company equity
ESPP (Employee Stock Purchase Program)
Retirement or pension plan
Generous paid vacation time
Paid holidays and sick leave
Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO
Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)

Fulltime

Principal Security Architect

As a Security Architect, your role involves designing, reviewing, and enhancing ...

Location

United States , San Francisco

Salary:

164000.00 - 290000.00 USD / Year

Ethos

Expiration Date

Until further notice

Requirements

7+ years of experience in Information Security with at least 2 years as a Security Architect
Bachelor’s Degree in Computer Science or related field, or an additional 3 years of pertinent work involvement preferred
Strong knowledge of prevalent security architectures, frameworks, standards and emerging threats along with strategies and technologies for defense
Deep understanding of network protocols, operating systems, databases, applied cryptography, least privilege, zero trust principles, identity & access management, and other core information security concepts
Expertise in cloud computing and its associated best security practices encompassing applications, infrastructure, storage, platforms, and data security
Ability to conduct threat modeling and risk assessments
Ability to come into our San Francisco, CA office once a week

Job Responsibility

Conduct Threat Modeling & Architectural Assessments to cover all Information Security domains to ensure Security by Design
Assess technologies and solutions to develop and enrich security capabilities
Identify security gaps and communicate associated business risks to relevant stakeholders
Craft solutions that harmonize business needs with security and compliance requirements
Verify the effectiveness of security controls in mitigating identified risks
Assist engineering projects across the Software Development Life Cycle (SDLC) and collaborate to prioritize product security elements effectively
Apply expertise in information security and application development to instigate organizational shifts aimed at managing and resolving security weaknesses and vulnerabilities
Contribute to the creation of security policies, standards, and guidelines
Devise and implement frameworks for data classification, retention, and disposal to ensure alignment with data privacy regulations
Spearhead initiatives for data security awareness and training

Fulltime

Security Engineering Lead

Citi's Application, Platform and Engineering team is looking for a Security Engi...

Location

United Kingdom , London

Salary:

Not provided

Citi

Expiration Date

Until further notice

Requirements

Bring your deep-dive application security engineering expertise from building production systems
thrive in a results-driven environment, where flexibility fuels impact
be a game-changer, ready to step beyond your designated role
love the synergy of pair programming
seize the opportunity to secure AI applications at scale
have a relentless passion to learn more about AI security, LLM attacks, and bringing your knowledge to shape Citi's secure AI future
proven track record of architecting and building secure, large-scale production applications and business-facing platforms from the ground up
hands-on experience finding and exploiting vulnerabilities, conducting red team exercises, and thinking like an attacker to strengthen defenses
experience building security tools and secure production systems with Go, Python, JavaScript
deep experience with HashiCorp Vault for enterprise-scale secrets management

Job Responsibility

Build secure AI products
conduct penetration testing and vulnerability research
design automated security solutions
identify and mitigate AI-specific vulnerabilities
lead security practices in development lifecycles
mentor engineers on secure coding practices.

What we offer

27 days annual leave plus bank holidays
discretional annual performance-related bonus
private medical care and life insurance
employee assistance program
pension plan
paid parental leave
special discounts for employees, family, and friends

Fulltime

Senior AI Security Engineer

Senior AI Security Engineer role in Citi's Application, Platform and Engineering...

Location

United Kingdom , London

Salary:

Not provided

Citi

Expiration Date

Until further notice

Requirements

Production system builder with security focus - proven track record of architecting and building secure, large-scale production applications and business-facing platforms from the ground up
Ethical hacking and penetration testing expertise - hands-on experience finding and exploiting vulnerabilities, conducting red team exercises
State-of-the-art security engineering with Go, Python, JavaScript
HashiCorp Vault mastery - deep experience writing custom plugins, creating secrets engines, implementing dynamic credentials
Enterprise authentication & authorization - designing and implementing OAuth, JWT, RBAC, and complex identity systems
API security and threat modelling - securing REST/GraphQL APIs, conducting threat assessments
AI/ML security and vulnerability research - understanding of LLM vulnerabilities, model security, prompt injection attacks
Security automation and tooling – automating manual security processes
Cloud-native security - securing containerized applications in Kubernetes, service mesh security
Incident response and forensics - experience investigating, analyzing, and responding to security incidents

Job Responsibility

Build secure AI products from 0-1 - Engineer production-grade, business-facing AI platforms with security built-in from day one
Conduct ethical hacking and red team activities - penetration testing, vulnerability research, and attack simulation
Design and build security tools and frameworks - Create automated security solutions that scale across fast-paced development cycles
Secure novel AI attack surfaces - Identify and mitigate LLM-specific vulnerabilities, prompt injection attacks, and AI model security risks
Lead 'shift left' security - Embed security practices throughout rapid development lifecycle while maintaining velocity
Mentor security practices - Guide other engineers on secure coding, vulnerability remediation, and security-first thinking

What we offer

27 days annual leave (plus bank holidays)
Discretional annual performance related bonus
Private Medical Care & Life Insurance
Employee Assistance Program
Pension Plan
Paid Parental Leave
Special discounts for employees, family, and friends
Hybrid working model (up to 2 days working at home per week)
Competitive base salary (annually reviewed)

Fulltime