Job Description
Wanted: An experienced
Senior Security Engineer with demonstrated ability to bring extensive experience and training in information security management into a customer’s organization.
As a Senior Security Engineer, You Will
- Work with the latest, cutting edge technology.
- Work with a team of driven, supportive and highly skilled professionals.
- Receive a robust benefits package that includes Employee Stock Ownership Plan!
- Enjoy flexibility managing your work hours and personal needs with a single accrual leave plan.
A week in the life of a
Senior Security Engineer:
- Implement/monitor information security on the large programs and contracts to ensure that integrity, confidentiality, and availability were within the acceptable risk levels.
- Work with the Information Security and Privacy Group (ISPG) to schedule and facilitate annual Adaptive Capabilities Testing (ACT) security assessments for the federal systems supporting EAOS: ensure the security of all networks and systems within these enterprise environments, by proactively identifying and mitigating system issues and vulnerabilities. Security engineering and compliance; and Implementing IT security measures.
- Support DevSecOps initiatives by developing/implementing test-driven security within the continuous integration/continuous delivery (CI/CD) pipeline for improving security through feedback loops.
- Monitor security aspects of information systems and their environment; develop and update security plans; review system changes; and assess the security impact of those changes.
- Look for opportunities to imbed automated security validation processes within the work scope of the systems administrators.
- Function as the Information System Security Officer (ISSO) for a FISMA-regulated information system that obtained an authorization to operate (ATO) by the designated Certification Authority.
- Provide expertise with NIST SP 800-128, NIST SP 800-137, NIST IR 8011, CMS Security Automation Framework, CMS Acceptable Risk Safeguards (ARS 3.1), and the Federal Risk and Authorization Management Program (FedRamp).
Company Awards
- Forbes National Best Midsize Companies
- Energage National Best Workplaces, National
- Washington Post Best Workplaces
Veteran Hiring Awards
- GOLD AWARD by U.S. Department of Labor HIRE Vets Medallion Program
- TOP 10 MILITARY FRIENDLY EMPLOYER by MilitaryFriendly.com
- BEST FOR VETS EMPLOYER by Military Times
AMERICAN SYSTEMS is committed to pay transparency for our applicants and employee-owners. The salary/hourly range for this position is $106,000- $177,000. Actual compensation will be determined based on several factors permitted by law. AMERICAN SYSTEMS provides for the welfare of its employees and their dependents through a comprehensive benefits program by offering healthcare benefits, paid leave, retirement plans (including ESOP and 401k), insurance programs, and education and training assistance.”
Job Requirements
- A minimum of 10 years of recent and relevant experience.
- Required certification: CISSP
- Domain expertise: Systems tools, Security, Applications.
- Technical skills: MS Endpoint Configuration Manager (formerly known as System Center Configuration Manager (SCCM)), HCL BigFix, ForcePoint One, McAfee VirusScan Enterprise (VSE), SentinelOne, Symantec Endpoint Protection (SEP), TrendMicro Deep Security, BurpSuite Enterprise, Chef InSpec, Confluence, HP WebInspect, HCL AppScan (formerly known as IBM AppScan), Jenkins, Jira, Tenable Nessus, WhiteHat Security.