Skip to main content
Search

Senior Security Engineer

Apply Job ID 28438 Date posted 03/27/2025

Job Family:

IT Cyber Security (Digital)


Travel Required:

Up to 10%


Clearance Required:

Ability to Obtain Public Trust

What You Will Do:

  • This position requires a diverse range of skillsets and the ability to work in a dynamic complex environment.  Skillsets include Security Engineering, Vulnerability Management, AWS Cloud Security, and Cloud Security Posture Management (CSPM).   Application of the NIST SP 800-53 Security Controls IAW Federal Government Risk Management Framework (RMF) are fundamental to the success of this program. A primary focus of this position will be helping to develop then manage an Information Security Continuous Monitoring (ISCM) reporting process using various security tools.  The candidate will need to possess a working knowledge of AWS Security Services.

  • The individual will be working with a team of engineers and architects to implement the RMF requirements for an Inter-Agency Grants Management System.  Analyzing system and software requirements to decompose and ensure security level requirements are implemented in the design process.

  • Typical tasks such as contributing to Plan of Action & Milestones (POA&M), Security Assessment Reports (SARs), System Security Plans (SSPs) and Risk Assessment Reports (RARs) will be part of the day-to-day responsibilities.

  • The Security Engineer will be working in an Agile engineering environment and assisting in the vulnerability finding (Coverity, Seeker, Inspector) and helping to prioritize the finding and technical debt in the backlog.  In addition, the candidate will provide application security guidance to Software Development Scrum Teams to comply with Agency Policies for Software Development Secure Coding Practices.

  • Participation in Security Operations activities, including vulnerability scanning, remediation, and patch management activities on Windows and AWS Linux operating systems, AWS Services and various COTS/GOTS applications, within an AWS Cloud environment.

  • Documenting Standard Operating Procedures (SOPs), and when needed, performing (or contributing to) software patch installation, other flaw remediation, antivirus updates, presentations, and reporting.


What You Will Need:

  • Bachelor’s degree in STEM

  • Minimum of 9 years of Information Security experience, preferably for US Federal Government customers or minimum of 7 years with a Master’s degree.

  • Experience with one or more of the following: Static Code Analysis, Dynamic Application Security Testing, Vulnerability Scanning, Compliance Scanning, Software Bill of Materials (SBOM) & Dependency Scanning utilizing industry standard tools such as AWS Inspector, Synopsys Seeker, Synopsys Coverity and Synopsys Black Duck.

  • Hands on experience with the implementation of security baselines i.e. Center for Internet Security (CIS) benchmarks for Linux, Windows and AWS Services, in addition to the documentation and mitigations of findings. 

  • Experience or demonstrated understanding of scanning, remediation and reporting of vulnerabilities discovered using tools such as Amazon Inspector (Vulnerability Scanning), Synopsys Coverity (SAST) and Synopsys Seeker (IAST).

  • Experience preparing technical documentation (SSP, SCTM, RAR, ISA, ASA, SOPs, POAMs) and related artifacts as required to satisfy security controls across all NIST 800-53 Rev. 5 families.

  • Demonstrated ability to communicate with a variety of stakeholders ranging from technical staffers up to senior program managers.

  • Strong focus on vulnerability management and AWS Cloud Security Services experience.

  • Security Plus (+) or Cloud+ Certification

  • Ability to obtain and maintain a Public Trust Clearance


What Would Be Nice To Have:

  • AWS Certified Security - Specialty

  • AWS Certified Solutions Architect - Professional

  • CISSP or CSSLP (or Associate equivalent) Certification

  • Proficiency in a Software Development language (C++, Java, Python)

  • CI/CD Pipeline and Automation experience

  • Networking Experience or Certification

The annual salary range for this position is $130,000.00-$216,000.00. Compensation decisions depend on a wide range of factors, including but not limited to skill sets, experience and training, security clearances, licensure and certifications, and other business and organizational needs.


What We Offer:

Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.

Benefits include:

  • Medical, Rx, Dental & Vision Insurance

  • Personal and Family Sick Time & Company Paid Holidays

  • Parental Leave

  • 401(k) Retirement Plan

  • Group Term Life and Travel Assistance

  • Voluntary Life and AD&D Insurance

  • Health Savings Account, Health Care & Dependent Care Flexible Spending Accounts

  • Transit and Parking Commuter Benefits

  • Short-Term & Long-Term Disability

  • Tuition Reimbursement, Personal Development, Certifications & Learning Opportunities

  • Employee Referral Program

  • Corporate Sponsored Events & Community Outreach

  • Care.com annual membership

  • Employee Assistance Program

  • Supplemental Benefits via Corestream (Critical Care, Hospital Indemnity, Accident Insurance, Legal Assistance and ID theft protection, etc.)

  • Position may be eligible for a discretionary variable incentive bonus

About Guidehouse
Guidehouse is an Equal Employment Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.


Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.


If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.


Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.

Apply