Lead Security Engineer

Requirements

• Cloud Security Architecture: Design, architect, and implement secure, scalable cloud infrastructure across an Azure platform, ensuring alignment with Zero Trust principles and defense-in-depth strategies.
• Identity, Credential, and Access Management (ICAM): Architect, implement, and maintain secure ICAM solutions, including federated identity, Role-Based Access Control (RBAC), and robust encryption/key management systems (KMS) as required.
• DevSecOps Integration: Lead the integration of security tools and practices into CI/CD pipelines (DevSecOps workflows) to enable automated security testing, vulnerability scanning, and compliance validation.
• Governance and Compliance Leadership: Develop and lead strategic approaches for achieving and maintaining compliance with critical federal frameworks, including FedRAMP and NIST SP 800-53.
• System Documentation: Lead efforts to develop, maintain, and oversee all system security documentation, including System Security Plans (SSPs), standard operating procedures, security control baselines, implementation details, and other compliance workbooks/whitepapers.
• Audit Support: Lead security control assessments, support audits of the system, and drive the development and closure of Plan of Action & Milestones (POA&M) findings.
• Operations, Risk, and Strategy: Lead comprehensive threat modeling and vulnerability management efforts, conduct thorough Security Impact Analyses (SIAs) and risk assessments for new services, functionality, and proposed architectural changes, ensuring all risks are documented and mitigated.

Benefits

• Generous Paid Time Off
• 401k Matching
• Retirement Plan
• Visa Sponsorship
• Four Day Work Week
• Generous Parental Leave
• Tuition Reimbursement
• Relocation Assistance