CrawlJobs Logo

Senior System Security / Cybersecurity Engineer

United States, Woburn 50.00 - 85.00 USD / Hour · Job Posted March 01, 2026
Apply Position
Job Link Share

Job Description

We are seeking a Senior System Security / Cybersecurity Engineer with experience supporting secure system development, risk management, embedded protection strategies, and the technical documentation required to meet DoD security requirements. This role focuses on integrating System Security Engineering (SSE) practices across complex hardware and software systems and requires a strong understanding of security architectures, analysis methodologies, and technical leadership. This senior‑level position supports secure design, implementation, verification, and sustainment throughout the entire engineering lifecycle.

Job Responsibility

  • Supporting secure system development, risk management, embedded protection strategies, and the technical documentation required to meet DoD security requirements
  • Integrating System Security Engineering (SSE) practices across complex hardware and software systems
  • Supporting secure design, implementation, verification, and sustainment throughout the entire engineering lifecycle
  • Collaboration with system engineering, cybersecurity, software, hardware, and program leadership teams
  • Requires proactive communication, cross‑disciplinary coordination, and continuous engagement in secure system development

Requirements

  • Bachelor’s degree in Science, Technology, Engineering, or Mathematics (STEM)
  • Minimum 8+ years of prior engineering experience
  • Active Secret clearance required at start
  • Demonstrated experience in System Security Engineering (SSE) and/or Cybersecurity Engineering
  • Experience working with the NIST Risk Management Framework (RMF)
  • Experience in one or more of the following: System security architecture
  • Embedded security
  • Anti‑Tamper (AT) engineering
  • Secure embedded computing
  • Reverse engineering or vulnerability assessment
  • Experience creating system‑security documentation, such as: System security requirements
  • Security architecture/design artifacts
  • Security plans, program protection artifacts, or policy documents
  • Strong technical, analytical, and communication skills

Nice to have

  • Experience in engineering leadership or technical management
  • Hands‑on experience with security toolsets, such as: Anti‑virus and endpoint protection
  • Vulnerability assessment tools
  • Host‑based or network‑based intrusion detection (HIDS/NIDS)
  • Multi‑factor authentication (MFA)
  • Security Information and Event Management (SIEM) tools (Splunk strongly preferred)
  • Scripting experience (e.g., Linux Bash, Python)
  • Experience implementing security controls across: Operating systems (Linux, UNIX, Windows)
  • Embedded software
  • LAN/WAN environments
  • DoD 8570/8140 IAT Level II certifications, such as: Security+
  • CISSP
  • CEH
  • Experience in: Security feature development and vulnerability analysis
  • Operating system hardening
  • Secure configuration and account‑management best practices
  • Knowledge of DoD and Federal IA processes, including: Certification and Accreditation (C&A)
  • IA controls and documentation
  • RMF package development
  • Familiarity with Program Protection Plans (PPP) and related directives
  • Experience contributing to U.S. Government contract proposals as an IA/SSE subject‑matter expert
  • Strong ingenuity, creativity, and ability to design innovative security solutions

What we offer

  • Medical, dental, vision, life, disability, and other insurance plans
  • ESPP (employee stock purchase program)
  • 401K program with company match after 12 months
  • HSA (Health Savings Account on the HDHP plan)
  • SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions
  • Corporate discount savings program
  • On-demand training program
  • Access to certification prep and a library of technical and leadership courses/books/seminars after 6+ months tenure
  • Certification discounts and other perks to associations that include CompTIA and IIBA
  • Dedicated customer service team
  • Certified Career Coach

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior System Security / Cybersecurity Engineer

8 matching positions

Information System Security Engineer - Senior

In support of a challenging, critical, and rewarding program that provides integ...
Location
Location
United States , Warrenton
Salary
Salary:
185000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
Job Responsibility
Job Responsibility
  • Endpoint Security Engineering (Trellix/ePO): Expertly design, configure, and maintain Trellix components (ePO, Trellix Agent, DLP, HIPS, Policy Auditor, ABM, and VSE) across Windows and Linux environments
  • Author and deploy endpoint security policies for ENS modules (Threat Prevention, Firewall, Web Control) based on DISA STIGs and organizational needs
  • Develop custom signatures, rules, and exceptions to address zero-day threats and specific operational requirements
  • Validate custom exceptions to ensure uninterrupted operation of mission-critical processes without compromising compliance
  • Vulnerability Management (ACAS/Nessus): Design enterprise-wide vulnerability scanning strategies and manage the deployment of Security Centers and Nessus scanners
  • Serve as the final escalation point for complex scan issues, credentialing problems, and system communication failures
  • Configure automated reporting of compliance data to continuous monitoring systems and risk-scoring repositories
  • Security Integration & Engineering: Integrate Trellix and ACAS with tools such as Splunk, XSOAR, and ServiceNow to automate workflows and enhance incident response
  • Provide authoritative recommendations and ACAS-generated artifacts to support the Assessment and Authorization (A&A) process and RMF packages for Authority to Operate (ATO)
  • Lead the maintenance and scalability of test, development, and operational environments, collaborating with Network and DevSecOps teams to enhance resilience
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Information System Security Engineer - Senior

In support of a challenging, critical, and rewarding program that provides integ...
Location
Location
United States , San Antonio
Salary
Salary:
160000.00 - 175000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
Job Responsibility
Job Responsibility
  • Experience creating custom dashboards, writing queries, building, and generating reports, and setting up alerts and notifications using all the Cyber tools (Splunk, Tenable, Trellix)
  • Demonstrated proficiency with recognizing and onboarding new data sources into the cyber tools and analyzing the data for anomalies and trends
  • Primarily responsible for maintaining the test and operational environments to include all cybersecurity tool sets and collaborating with systems and network engineers
  • Use knowledge, skills, and ability to conduct research for designing, integrating, and implementing security controls into current and future products/systems thus ensuring these systems can be accredited based on compliance with the Joint Special Access Program Implementation Guide (JSIG)
  • Recommend the components to implement system security requirements using intimate knowledge of security design best practices for information systems throughout the system development life cycle to support the generation of security engineering products
  • Assist with the design, deployment, and administration of a multi-site, distributed Splunk environment including Multi-site Clustering, Search Head Clustering, Universal Forwarders, Deployer, and Deployment Server
  • Configure, operate, and maintain Trellix and its components (ePolicy Orchestrator, Trellix Agent, Data Loss Prevention, Host Intrusion Prevention System, Policy Auditor, Asset Baseline Monitor, and Virus Scan Enterprise) on Windows and Linux creating exceptions to allow essential processes to continue uninterrupted
  • Administration/operation of information security compliance tools/platforms with a special concentration in managing Tenable Security Center and NESSUS
  • Provide Tier 1, 2, and 3 maintenance support for deployed cyber security technologies
  • Assist with periodic and regular security assessments
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Satellite Communications System Security Engineer, Senior

As a Satellite Communications Systems Security Engineer, you will identify the n...
Location
Location
United States , Fort Meade
Salary
Salary:
77600.00 - 176000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience implementing, testing, and validating STIGs, performing system self‑assessments, and creating STIG checklists
  • 7+ years of experience executing IAVM actions, such as IAVA alerts, bulletins, or tasking orders, and developing compliant engineering responses
  • 7+ years of experience deploying and validating ESS, ACAS, and CMRS, analyzing ACAS scans, developing remediation strategies, and implementing patches and upgrades
  • 7+ years of experience reviewing cybersecurity and engineering change requests to ensure operational availability and compliance
  • Knowledge of RMF and its application to networks and IT systems, such as Cisco routers, switches, Active Directory, or access control
  • Ability to manage users in Windows or Linux and administer VMs in VMware or Hyper‑V
  • Ability to accredit and secure DoD systems using RMF, perform IAVA analysis, document POA&Ms, and prepare security assessment artifacts
  • Top Secret clearance
  • Bachelor’s degree in Science, Technology, or Engineering
  • Security+ Certification
Job Responsibility
Job Responsibility
  • Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management
  • Implement infrastructure and cybersecurity controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises
  • Perform risk and vulnerability assessments in network, system, and application areas and leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise
  • Participate in the development of test strategies and conduct of testing, validating, and implementing applicable STIG requirements for current or new systems
  • Conduct periodic self-assessments of systems to ensure STIG compliance and create STIG checklists to support periodic self-assessments
  • Perform Information Assurance Vulnerability Management (IAVM) activities such as IA vulnerability alerts, bulletins, and tasking orders and develop a systematic approach for responses to IAVM related issues to maintain system compliance
What we offer
What we offer
  • health, life, disability, financial, and retirement benefits
  • paid leave
  • professional development
  • tuition assistance
  • work-life programs
  • dependent care
  • recognition awards program
Read More
Arrow Right

Senior Cybersecurity Engineer - Security Operations

GM’s Cybersecurity Team safeguards the company’s global information assets, netw...
Location
Location
United States , Austin; Warren
Salary
Salary:
Not provided
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science or a related field, or equivalent professional experience
  • 7+ years in systems development, with a proven track record of delivering complex solutions
  • Minimum 4+ years in SecOps or cybersecurity-focused roles
  • Strong programming skills in scripting languages, C++, and Rust
  • Solid understanding of Linux OS internals and kernel-level operations
  • Hands-on experience with cloud development and architecture (AWS, Azure, GCP)
  • Proficiency in troubleshooting complex distributed systems
  • Experience integrating systems via APIs, webhooks, and other protocols
  • Familiarity with AI-driven integrations and data enrichment workflows
  • Strong problem-solving and analytical abilities
Job Responsibility
Job Responsibility
  • Design, develop, and maintain security-focused platforms using scripting languages, C++, and Rust
  • Implement modern development processes (CI/CD, DevOps, Agile) to ensure efficient and reliable delivery
  • Build scalable solutions across Linux-based environments and cloud-native architectures
  • Integrate diverse systems using APIs, webhooks, and other communication protocols
  • Develop and maintain integrations with AI-driven tools and data enrichment platforms to enhance SecOps capabilities
  • Ensure interoperability across heterogeneous environments and security tools
  • Collaborate with SecOps teams to design and implement advanced monitoring, detection, and response solutions
  • Troubleshoot complex systems and resolve performance, reliability, and security issues
  • Apply cybersecurity best practices to safeguard infrastructure and applications
  • Architect and manage cloud-based environments (AWS, Azure, GCP) with a focus on security and scalability
What we offer
What we offer
  • Relocation benefits (eligible)
  • Well-being support from day one
  • Inclusive workplace fostering belonging
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Engineer - Security Operations Engineering

GM’s Cybersecurity Team safeguards the company’s global information assets, netw...
Location
Location
United States
Salary
Salary:
125200.00 - 158600.00 USD / Year
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science or a related field, or equivalent professional experience
  • 7+ years in systems development, with a proven track record of delivering complex solutions
  • Minimum 4+ years in SecOps or cybersecurity-focused roles
  • Strong programming skills in scripting languages, C++, and Rust
  • Solid understanding of Linux OS internals and kernel-level operations
  • Hands-on experience with cloud development and architecture (AWS, Azure, GCP)
  • Proficiency in troubleshooting complex distributed systems
  • Experience integrating systems via APIs, webhooks, and other protocols
  • Familiarity with AI-driven integrations and data enrichment workflows
  • Strong problem-solving and analytical abilities
Job Responsibility
Job Responsibility
  • Design, develop, and maintain security-focused platforms using scripting languages, C++, and Rust
  • Implement modern development processes (CI/CD, DevOps, Agile) to ensure efficient and reliable delivery
  • Build scalable solutions across Linux-based environments and cloud-native architectures
  • Integrate diverse systems using APIs, webhooks, and other communication protocols
  • Develop and maintain integrations with AI-driven tools and data enrichment platforms to enhance SecOps capabilities
  • Ensure interoperability across heterogeneous environments and security tools
  • Collaborate with SecOps teams to design and implement advanced monitoring, detection, and response solutions
  • Troubleshoot complex systems and resolve performance, reliability, and security issues
  • Apply cybersecurity best practices to safeguard infrastructure and applications
  • Architect and manage cloud-based environments (AWS, Azure, GCP) with a focus on security and scalability
What we offer
What we offer
  • medical
  • dental
  • vision
  • Health Savings Account
  • Flexible Spending Accounts
  • retirement savings plan
  • sickness and accident benefits
  • life insurance
  • paid vacation & holidays
  • incentive pay program based on company performance, job level, and individual performance
  • Fulltime
Read More
Arrow Right

Senior Information System Security Engineer

Astrion has an exciting opportunity for a Senior Information System Security Eng...
Location
Location
United States , Bedford / Hanscom AFB, Massachusetts
Salary
Salary:
160000.00 - 175000.00 USD / Year
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must be a US Citizen
  • Must have an active Top Secret Clearance with SCI eligibility
  • MA/MS degree and at least 10 years of job experience
  • Minimum of ten years of progressive technical experience
  • Must meet DoDD 8140 IAT level II or higher
  • Certified Information Systems Security Professional (CISSP) required
  • SAP/SAR experience required
Job Responsibility
Job Responsibility
  • Lead the coordination of A&A documentation
  • Assist with design, development, implementation, integration of systems IA architecture
  • Serve as PMO expert of IA security protections and requirements
  • Assist in development of security plan of actions and milestone (POA&M) mitigations through timely assessment of POA&M corrective actions
  • Conduct technical and nontechnical reviews and observe audits as necessary to support development and test efforts
  • Demonstrate experience in: Security systems engineering involving hardware and software operating systems and application solutions
  • Security features and/or vulnerability of various operating systems
  • IA vulnerability testing
  • US Government contract proposals as IA/security engineering subject matter expert, and implementation of DoD and Federal IA A&A processes
  • IA controls and developing and maintaining associated A&A documentation IAW RMF
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
Read More
Arrow Right

Senior Security Engineer – Medical Device Cybersecurity & Compliance

Job Description: Senior Security Engineer – Medical Device Cybersecurity & Compl...
Location
Location
India , Ahmedabad
Salary
Salary:
Not provided
arrow.com Logo
Arrow Electronics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 6 years of experience in cybersecurity
  • At least 3 years focused on medical devices, embedded systems, or IoT security
  • Proven track record in authoring security design, defining technical requirements, and documenting security architectures aligned with regulatory needs
  • Hands-on experience in embedded system security including secure boot, firmware security, threat modeling techniques (e.g., STRIDE, DREAD), and product-level risk assessments
  • Strong understanding of IEC 81001-5-1, IEC 60601-4-5, AAMI TIR 57, and AAMI TIR 97
  • Working knowledge of the medical device product development lifecycle and quality standards like ISO 14971
  • Demonstrated expertise in vulnerability management and penetration testing of connected products across device and cloud ecosystems
  • Excellent problem-solving skills, critical thinking, and ability to lead gap analysis and remediation activities in regulated environments
  • Strong collaboration skills with the ability to influence cross-functional teams including R&D, compliance, and product management
Job Responsibility
Job Responsibility
  • Drive end-to-end cybersecurity integration across the medical device product development life cycle
  • Develop and maintain cybersecurity for medical products, including security requirements specifications, risk assessments, threat models, and product security architecture documentation
  • Conduct thorough gap assessments to evaluate compliance with IEC 81001-5-1, IEC 60601-4-5, AAMI TIR 57, and AAMI TIR 97 standards, and implement remediation measures
  • Perform hands-on vulnerability assessments, penetration testing, and secure code reviews of embedded devices, IoMT components, and connected systems
  • Collaborate closely with development, compliance, and regulatory teams to ensure product security measures meet both internal security policies and external regulatory expectations
  • Support SBOM management, software supply chain risk evaluations, and third-party component analysis
  • Provide expert input on secure communication protocols, encryption standards, data protection for both at-rest and in-transit data, and cloud-based connectivity of medical systems
  • Assist in developing incident response strategies
  • Contribute to the continuous enhancement of internal secure development processes, tools, and methodologies, while championing security best practices within product teams
  • Fulltime
Read More
Arrow Right

Senior Cyber Security Engineer – Security Services

The Role: At General Motors, our Cyber Security organization protects the compa...
Location
Location
United States , Austin, Texas; Warren, Michigan
Salary
Salary:
Not provided
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cyber Security, Computer Science, Information Technology, Engineering, or a related field
  • 6+ years of experience in Cyber Security, Information Security, or Identity and Access Management
  • Strong experience with enterprise IAM integrations in a complex environment
  • Hands-on experience with SAML, OAuth 2.0, OpenID Connect, and related authentication technologies
  • Strong development or automation background, including scripting or programming with Python, PowerShell, JavaScript, Java, or similar
  • Experience with cloud identity platforms such as Microsoft Entra ID, AWS, GCP, or similar
  • Strong understanding of access control, encryption, and secure application architecture
  • Demonstrated ability to lead technical initiatives across cross-functional teams
Job Responsibility
Job Responsibility
  • Lead secure application onboarding design and implementation across the enterprise
  • Define and support authentication and authorization patterns including SAML, OAuth 2.0, and OpenID Connect
  • Establish scalable standards for identity integration, access management, and application onboarding
  • Design and build automation to streamline onboarding, validation, configuration, and support processes
  • Develop reusable tools, scripts, APIs, and workflows to reduce manual effort and improve consistency
  • Expand self-service capabilities for application teams while maintaining security guardrails
  • Partner with application owners, developers, architects, and business stakeholders to gather requirements and guide secure onboarding
  • Advise teams on secure integration patterns and control requirements
  • Drive onboarding strategy aligned to cybersecurity, IAM, and enterprise architecture goals
  • Support deployment and user adoption of enterprise security tools and systems across application teams and stakeholders
What we offer
What we offer
  • This job may be eligible for relocation benefits
  • Fulltime
Read More
Arrow Right