Security Engineer jobs at Snap

MANTECH seeks a motivated, career and customer-oriented Cyber Security Engineer Lead to join our team in Springfield, VA. The Cyber Security Engineer Lead is responsible for the detection, identification, analysis, and reporting of cyber threats, intrusions, anomalous activities, and potential misuse of systems. This role supports the protection of customer's digital assets and sensitive data through the administration, monitoring, and continuous improvement of cybersecurity technologies and processes. Responsibilities include but are not limited to: Threat Detection & Response: Identify, assess, and report potential cyber-attacks, intrusions, and abnormal system behaviors. Participate actively in incident response and recovery activities. Technology Administration: Administer and maintain systems supporting Identity Management, Privileged User Access, Access Control (firewall), End Point Protection, Internet Protection, Vulnerability Scanning, and Security Information and Event Management (SIEM) tools. Mitigation & Remediation: Develop and implement enterprise-level mitigation strategies to address complex vulnerabilities. Operational Support: Ensure proper installation, testing, patching, upgrading, and performance of cybersecurity tools and applications. Maintain system resiliency and availability across all managed technologies. Policy Enforcement & Compliance: Enforce cybersecurity policies, standards, and best practices in alignment with ManTech's security framework and regulatory requirements. Leadership & Collaboration: Lead or participate in cross-functional projects and initiatives. Provide technical mentorship and subject matter expertise to junior team members.; Continuous Improvement: Interpret internal and external cybersecurity trends and business challenges; recommend and implement innovative solutions to strengthen the enterprise security posture. Monitor intrusion detection and prevention systems and other security event data sources; determine if security events monitored should be escalated to incidents and follow all applicable incident response and reporting processes and procedures. Minimum Qualifications: Bachelor's Degree in Cybersecurity, Information Technology, Computer Science, or a related Cyber Security field. Certified Information Systems Security Professional (CISSP) certification (required within 6 months of assignment to the position, otherwise failure to obtain certification within 6 months of assignment to the position may result in removal). 8+ years of relevant cybersecurity experience, including hands-on technical administration and operational security support. Strong analytical and problem-solving abilities Deep knowledge of cybersecurity frameworks, principles, and technologies Proficiency in SIEM, endpoint protection, and identity management tool Must be able to travel up to 25% Preferred Qualifications: Have a good understanding of DISA compliance directives and recommend having knowledge of the JSIG. Ability to lead small teams or projects Excellent communication and influence skills; Strong judgment in identifying and mitigating security risks Correlate data from intrusion detection and prevention systems with data from other sources Clearance Requirements: Must have current/active TS/SCI with the ability to obtain and maintain a Yankee White security clearance Physical Requirements: Must be able to remain in a stationary position 50% The person in this position needs to occasionally move about inside the office to access file cabinets, office machinery, etc. Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer. The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.

MANTECH seeks a motivated, career and customer-oriented Senior Information System Security Officer (ISSO) to join our team in Huntsville, Alabama. Responsibilities include, but are not limited to: Ensure the day-to-day implementation, oversight, continuous monitoring, and maintenance of the security configuration, practices, and procedures for each IS and that selected security controls are implemented and operating as intended during all phases of the IS lifecycle Provide liaison support between the system owner and other IS security personnel Ensure that system security documentation is developed, maintained, reviewed, and updated on a continuous basis; Conduct required IS vulnerability scans according to risk assessment parameters Manage the risks to ISs and other FBI assets by coordinating appropriate correction or mitigation actions and oversee and track the timely completion of (POAMs). Coordinate system owner concurrence for correction or mitigation actions Monitor security controls for FBI ISs to maintain security Authorized to Operate (ATO); Upload all security control evidence to the Governance, Risk, and Compliance (GRC) application to support security control implementation during the monitoring phase Ensure that changes to an FBI IS, its environment, and/or operational needs that may affect the authorization status are reported to the system owner and IS Security Manager (ISSM) Ensure the removal and retirement of ISs being decommissioned in coordination with the system owner, ISSM, and ISSR; Working knowledge of the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) and ATO processes Minimum Qualifications: Must meet one of the following levels of experience: A high school diploma/GED and 7 years' experience, a bachelor's degree in computer science cybersecurity or a related discipline and five years' experience, or a master's degree in computer science cybersecurity or a related discipline and 3 years' experience. Hold at least one of the following Information Assurance Management (IAM) Level III certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or the CompTIA Advanced Security Practitioner (CASP) or equivalent certifications Familiarity with the use and operation of security tools including Tenable Nessus and/or Security Center, IBM Guardium, HP Weblnspect, Network Mapper (NMAP), and/or similar applications Preferred Qualifications: A bachelor's or advanced degree in Computer Science, Cybersecurity, or other cyber discipline Clearance Requirements: Must have a current/active Top Secret security clearance with eligibility to obtain SCI prior to starting this position. Selected candidate must be willing to undergo a Polygraph. Physical Requirements: Must be able to remain in a stationary position 50% Needs to occasionally move about inside the office to access file cabinets, office machinery, etc. Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer Often positions self to maintain computers in the lab, including under the desks and in the server closet Frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.

MANTECH seeks a motivated, career and customer-oriented Personnel Security Specialist II to join our team in El Segundo, CA. The Personnel Security Specialist's primary function is to handle personnel security functions in support of the customer's facility and organization. The position will provide “day-today” PERSEC services for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities. Responsibilities include but are not limited to: Build and Maintain tracking spreadsheets/databases for customer PERSEC activities. Provide support for the security awareness and education programs. Perform miscellaneous administrative support functions as directed by the contractor site lead and/or the Government Security Representative. Review, track, and monitor security clearance processing activities with appropriate government personnel to achieve appropriate clearance actions. Conduct Defense Central Index of Investigations (DCII), Joint Personnel Access System (JPAS), and SAPNP reviews of candidates being submitted for SAP access. Perform data entry and record checks in the Joint Access Database (JADE) and maintain all customer sponsored personnel access information. Receive and/or transmit classified visit requests as necessary to meet customer needs. Minimum Qualifications: Bachelor's degree; an additional 4 years of experience may be considered in lieu of degree. 6 + years of related experience. 4 + years of relevant SCI experience. Must be familiar with security policy/manuals and the appropriate ICDs/JAFANs/DOD Manuals and other guiding policy documents. Preferred Qualifications: 2+ years of SAP-related experience. Clearance Requirements: Current Top Secret Clearance with SCI Eligibility. Eligibility for access to Special Access Program Information. Willingness to submit to a polygraph. Physical Requirements: Must be able to remain in a stationary position 50%. Needs to occasionally move about inside the office to access file cabinets, office machinery, etc. Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer. Frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.

MANTECH seeks a motivated, career and customer-oriented Systems Engineer III to join our team in Annapolis Junction, Maryland. ManTech is currently seeking Systems Engineer III to join our team at Annapolis Junction, MD. We are seeking a Senior Systems Engineer who is a seasoned IT professional responsible for designing, implementing, and a top-level trouble shooter supporting a high-level architecture of an organization's backend infrastructure. You will communicate with other project personnel, Government stakeholders, and senior executives. Responsibilities include but are not limited to: Administer and maintain IT infrastructure by utilizing expert-level knowledge of the Linux operating system, along with deep expertise in server administration, virtualization, and cloud platforms like AWS or Azure, to manage the organization's backend systems. Develop and implement automation solutions through creating scalable automation services using strong scripting and orchestration skills, with proficiency in tools like Python, Bash, and Ansible. Design and manage system architecture by applying systems engineering principles to design, implement, and manage the high-level architecture of the organization's backend infrastructure. Ensure network and system security through a strong understanding of networking and security fundamentals, including TCP/IP, firewalls, and VPNs, to protect the organization's infrastructure. Communicate with stakeholders - Interact directly with government personnel, senior executives, and other project members to discuss technical issues and project status. Provide technical guidance and troubleshooting as a top-level troubleshooter, addressing technical considerations, problems, and issues for both internal teams and government stakeholders. Minimum Qualifications: Bachelor's degree in STEM field or Highschool and 13 years of experience; Associates and 11 years of experience in lieu of degree, a candidate holding a relevant master's degree may be granted 2 years' experience credit for that extra education, a candidate holding a relevant PhD degree may be granted 4 years' experience credit for that extra education. 5 years of position-relevant work experience. DoD 8570.01-m IAT Level II. Strong proficiency in scripting and automation, with hands-on experience in Python, Bash, and an infrastructure orchestration tool like Ansible. Experience in front-end web development to create internal tools and solutions. Proven background as an Orchestration Engineer or in a similar role focused on building scalable automation services. Solid grasp of TCP/IP networking, firewalls, VLANs, and VPNs. Expert-level knowledge of the Linux operating system. Preferred Qualifications: Experience with full-stack development, including creating and interacting with databases and APIs. Knowledge of Infrastructure as Code (IaC) principles, preferably with experience using Terraform. Familiarity with public cloud platforms (AWS, Azure, GCP) and container technologies (Docker, Kubernetes). Proficiency with virtualization platforms such as VMware vSphere or Microsoft Hyper-V. Exceptional troubleshooting and problem-solving skills, with a talent for systematically diagnosing and resolving complex technical issues. A foundational understanding of traditional Systems Administration principles Clearance Requirements: Must have a current/active TS/SCI Physical Requirements: The person in this position must have the ability to perform tasks while stationary 50% of the time at a computer, with specific emphasis on visual acuity for close-range work. Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations

Job Title: Lead SAP Security Consultant Duration: 12 Months plus only on w2 We are looking for a Senior/Lead SAP Security Consultant with strong experience in SAP authorization design, GRC tools, and IAM/SSO integration. The ideal candidate will act as a security architect, lead team members, and support SAP transformation initiatives. Key Responsibilities Lead SAP Security architecture and role design across SAP landscapes. Integrate SAP Security with IAM and SSO platforms for secure access. Manage and mentor the SAP Security team; coordinate with SAP, IT Security, Infrastructure, and external vendors. Build and manage roles using PFCG, and oversee SAP user administration. Work with SAP GRC tools including Firefighter, Access Enforcer, Compliance Calibrator. Required Skills 10+ years of SAP Security experience. Deep expertise in: SAP Authorization & Role Design SAP GRC (Access Control, Firefighter, Access Enforcer) PFCG & user administration IAM & SSO integration Strong leadership and communication skills.

Job Title: Lead SAP Security Consultant Duration: 12 Months plus only on w2 We are looking for a Senior/Lead SAP Security Consultant with strong experience in SAP authorization design, GRC tools, and IAM/SSO integration. The ideal candidate will act as a security architect, lead team members, and support SAP transformation initiatives. Key Responsibilities Lead SAP Security architecture and role design across SAP landscapes. Integrate SAP Security with IAM and SSO platforms for secure access. Manage and mentor the SAP Security team; coordinate with SAP, IT Security, Infrastructure, and external vendors. Build and manage roles using PFCG, and oversee SAP user administration. Work with SAP GRC tools including Firefighter, Access Enforcer, Compliance Calibrator. Required Skills 10+ years of SAP Security experience. Deep expertise in: SAP Authorization & Role Design SAP GRC (Access Control, Firefighter, Access Enforcer) PFCG & user administration IAM & SSO integration Strong leadership and communication skills.

Job Title: Lead SAP Security Consultant Duration: 12 Months plus only on w2 We are looking for a Senior/Lead SAP Security Consultant with strong experience in SAP authorization design, GRC tools, and IAM/SSO integration. The ideal candidate will act as a security architect, lead team members, and support SAP transformation initiatives. Key Responsibilities Lead SAP Security architecture and role design across SAP landscapes. Integrate SAP Security with IAM and SSO platforms for secure access. Manage and mentor the SAP Security team; coordinate with SAP, IT Security, Infrastructure, and external vendors. Build and manage roles using PFCG, and oversee SAP user administration. Work with SAP GRC tools including Firefighter, Access Enforcer, Compliance Calibrator. Required Skills 10+ years of SAP Security experience. Deep expertise in: SAP Authorization & Role Design SAP GRC (Access Control, Firefighter, Access Enforcer) PFCG & user administration IAM & SSO integration Strong leadership and communication skills.

Job Title: Lead SAP Security Consultant Duration: 12 Months plus only on w2 We are looking for a Senior/Lead SAP Security Consultant with strong experience in SAP authorization design, GRC tools, and IAM/SSO integration. The ideal candidate will act as a security architect, lead team members, and support SAP transformation initiatives. Key Responsibilities Lead SAP Security architecture and role design across SAP landscapes. Integrate SAP Security with IAM and SSO platforms for secure access. Manage and mentor the SAP Security team; coordinate with SAP, IT Security, Infrastructure, and external vendors. Build and manage roles using PFCG, and oversee SAP user administration. Work with SAP GRC tools including Firefighter, Access Enforcer, Compliance Calibrator. Required Skills 10+ years of SAP Security experience. Deep expertise in: SAP Authorization & Role Design SAP GRC (Access Control, Firefighter, Access Enforcer) PFCG & user administration IAM & SSO integration Strong leadership and communication skills.

Job Title: Lead SAP Security Consultant Duration: 12 Months plus only on w2 We are looking for a Senior/Lead SAP Security Consultant with strong experience in SAP authorization design, GRC tools, and IAM/SSO integration. The ideal candidate will act as a security architect, lead team members, and support SAP transformation initiatives. Key Responsibilities Lead SAP Security architecture and role design across SAP landscapes. Integrate SAP Security with IAM and SSO platforms for secure access. Manage and mentor the SAP Security team; coordinate with SAP, IT Security, Infrastructure, and external vendors. Build and manage roles using PFCG, and oversee SAP user administration. Work with SAP GRC tools including Firefighter, Access Enforcer, Compliance Calibrator. Required Skills 10+ years of SAP Security experience. Deep expertise in: SAP Authorization & Role Design SAP GRC (Access Control, Firefighter, Access Enforcer) PFCG & user administration IAM & SSO integration Strong leadership and communication skills.

We are looking for a Developer Security professional with strong expertise in DevOps and Cloud Computing. In this role, you will design, develop, and implement secure, scalable software solutions across the full Secure Software Development Life Cycle (SDLC) - from conception to deployment. Familiarity with CI/CD pipelines is essential, and experience with Kubernetes is a plus. Responsibilities Design and develop Terraform scripts for infrastructure automation. Automate cloud deployments and ensure secure configurations. Install and configure products on Kubernetes clusters. Develop and unit test software components following best practices. Collaborate with business partners to translate requirements into technical solutions. Work closely with architects and enterprise framework teams to deliver optimal solutions. Ensure non-functional requirements (security, performance, scalability, maintainability, usability, reliability) are met. Maintain code quality standards and perform appropriate testing. Qualifications 8+ years of experience in software development and security. Strong knowledge of cloud deployments and Terraform. Familiarity with middleware technologies (WebLogic, Tomcat, JBoss). Experience with Spring Boot and Agile development methodologies. Proficiency in CI/CD pipelines and GIT-based source control. Solid understanding of the secure software development lifecycle. Experience with Kubernetes, React, and Docker. Knowledge of web technologies and application servers. Skills Terraform Kubernetes Cloud Deployment Middleware (WebLogic, Tomcat, JBoss) Spring Boot CI/CD pipelines GIT-based source control Rate: $75-95/HR

Design and implement advanced security architectures across cloud, on-prem, and hybrid environments while driving Zero Trust, SASE, and cloud-native security initiatives. Lead global strategic programs, network modernization efforts, and rapid tactical responses to critical incidents, converting gaps into standards and governance. Develop security reference architectures, HLD/LLD solution packages, and Infra-as-Code-driven delivery models aligned with enterprise transformation goals. Conduct threat modeling, risk assessments, and gap analysis across applications, infrastructure, APIs, containers, and third-party integrations. Implement cloud and DevSecOps security controls, integrating tooling into CI/CD pipelines and enforcing secure coding and IaC policies. Build security automation, SOAR playbooks, and SIEM integrations to streamline detection, vulnerability management, compliance, and response workflows. Enhance detection engineering through custom rules, behavioral analytics, log enrichment, and purple-team/adversary emulation exercises. Provide cross-functional leadership for initiatives involving cloud migration, AI/ML, M&A, and digital modernization, presenting strategies and risk posture to executive stakeholders.

About Company, Droisys is an innovation technology company focused on helping companies accelerate their digital initiatives from strategy and planning through execution. We leverage deep technical expertise, Agile methodologies, and data-driven intelligence to modernize systems of engagement and simplify human/tech interaction. Amazing things happen when we work in environments where everyone feels a true sense of belonging and when candidates have the requisite skills and opportunities to succeed. At Droisys, we invest in our talent and support career growth, and we are always on the lookout for amazing talent who can contribute to our growth by delivering top results for our clients. Join us to challenge yourself and accomplish work that matters. We're hiring Senior Backend Engineer - Cloud Security in Sunnyvale, CA What You Will Do Build containerized microservices and related components for a multi-tenant, distributed system that ingests and processes real-time cloud events, system telemetry, and network data across major cloud platforms. Your work will enable customers to detect risks and strengthen their cloud security posture. Mentor junior engineers, interns, and new graduates, helping them develop strong technical skills and become effective contributors. Write production-quality software primarily in Java using Spring Boot, and work extensively with Kafka, SQL, and other data interfaces. Work within a Kubernetes-based service infrastructure, while learning new technologies as needed. Take ownership of major features and subsystems through the entire development lifecycle-requirements, design, implementation, deployment, and customer adoption. Participate in operational responsibilities, gaining firsthand experience with real-world performance, reliability, and support scenarios-informing how you design and build better systems. Prioritize quality at every stage, performing thorough developer testing, functional validation, integration checks, and performance testing to ensure highly resilient systems. Collaborate closely with Product Management to review, refine, and finalize requirements. Develop a deep understanding of customer needs by engaging with peers, stakeholders, and real-world use cases. What You Bring Bachelor's degree in computer science or similar (Master's preferred). 5+ years of experience building scalable, distributed systems. Passion for software engineering, continuous learning, and working in a collaborative environment. Hands-on experience with AWS, Azure, or GCP, with strong familiarity at the API/programming level. Experience with networking and/or security concepts is a plus. Experience developing containerized services on Kubernetes is strongly desired. Strong programming experience in Java/Spring Boot or Golang. Experience building or using REST APIs. Knowledge of infrastructure-as-code tools such as CloudFormation, Terraform, or Ansible is a plus. Understanding of TCP/IP networking fundamentals. Experience developing in Unix/Linux environments. Droisys is an equal opportunity employer. We do not discriminate based on race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law. Droisys believes in diversity, inclusion, and belonging, and we are committed to fostering a diverse work environment

Job Title: Security Data Analyst - Junior Level Duration: Long-term (24+ Months) Scope: Provide an entry-level Safety & Security Data Analyst to support the OIA's data collection and reporting needs. Responsibilities Include: Gathering and organizing safety and security data from multiple sources. Maintaining accurate records and ensuring data integrity. Performing basic data analysis using Microsoft Excel (pivot tables, charts, formulas). Creating simple reports, charts, and summaries to support decision-making. Collaborating with internal teams to collect and validate data. Minimum Qualifications: Strong proficiency in Microsoft Excel. Experience with data collection and basic reporting. Attention to detail and ability to maintain accurate records. Good communication skills and ability to work in a team environment. Ability to maintain confidentiality and protect the integrity of sensitive and proprietary data. Preferred Qualifications: Familiarity with basic data visualization techniques. Familiarity with Python and SQL is a plus. Familiarity with Microsoft PowerBI and DAX queries is a plus. Exposure to safety, security, or transportation-related data is a plus.

Job Title: Azure Cloud Security Engineer - W2 only - we can provide sponsorship as well Duration: Long Term Top Skills: Azure Policy Exp Azure Security Services - Security Center, Key Vault, Log Analytics Identity and Access Management Exp Prior Software Engineering background, any language is fine but someone coming from a Sys Admin/Devops background won't be the right fit here. The Expertise and Skills You Bring 8+ years of experience in IT infrastructure, security, compliance A strong understanding of Azure services and security capabilities Solid hands-on experience with at least two of the following: Engineering/operational support of cloud account configuration in AWS or Azure Software Development, Linux Systems Administration, Data Networking Hands-on configuration of CI/CD pipelines for cloud-native deployments Very strong with scripting languages, including integration with CSP APIs; python preferred Azure Networking Identity and Access Management - RBAC Azure Policies Azure Security Services - Security Center, Key Vault, Log Analytics Azure ARM/PowerShell Ability to work with application and security teams to promote a secure posture in the cloud You can mentor and train other team members to work effectively in the cloud You are a self-starter who can independently by reading technical documentation Bonus skills Advanced Azure Certifications

Role: Cybersecurity Manager Duration: 6+ months Summary: The Cybersecurity Manager leads global cybersecurity operations, incident response, cloud security, and vulnerability management across IT, OT, and cloud environments. This role drives security maturity, manages SOC functions, and ensures compliance with frameworks like ISO 27001, NIST, and ITAR. Key Responsibilities:Lead cybersecurity operations, including SOC oversight, threat detection, and endpoint security. Manage incident response for ransomware, APT, insider threats, and major security events. Oversee vulnerability and patch management programs (Tenable, Automox, CrowdStrike). Strengthen cloud and identity security across Azure, Entra ID, and Microsoft 365. Implement Zero Trust architecture and secure configuration standards. Support compliance efforts (ISO 27001, NIST CSF/800-53/171, ITAR, GDPR, HIPAA, PCI). Lead global cybersecurity teams, contractors, and MSSP partners. Provide executive-level reporting on risk posture, incidents, and security metrics. Requirements:10+ years of cybersecurity experience with leadership responsibilities. Strong background in SOC operations, IR, EDR, SIEM/SOAR, and cloud security. Hands-on experience with Sentinel, XSOAR, CrowdStrike, Defender, Tenable. Knowledge of ISO 27001, NIST, ITAR, and broader regulatory frameworks. Strong communication, team leadership, and cross-functional collaboration skills.

Information Security Need Local to San Francisco, CA Onsite role Looking for independent folks. Top Skills: KQL - kusto query language - used by different Microsoft security tools like sentinel or defender SPL that Splunk uses General incident response actual incident tickets - resolve actual security incident tickets Requirements • Self-starter, able to readily explore and learn new areas and concepts. • Knowledge and experience normally acquired through, or equivalent to, the completion of a Computer Science or Computer Engineering Bachelor's degree with a minimum of 5 years of job-related experience. • Degrees in Computer Science or Engineering and/or relevant technically focused certifications in Cloud and/or enterprise security architecture such as GCAD or GDSA are advantageous Experience with • AWS commercial or government cloud • Experience securing critical workloads in a cloud environment. • Knowledge and experience with Databricks, Starburst, Collibra and Immuta is advantageous. Job Role Summary Lead and produce system threat models for integration of commercial components into a data lake platform. Help design secure cloud architectures. Propose effective security controls within the environment and identify and mitigate security vulnerabilities. Simplify complex security topics, lead discussion in technical and business teams, communicate risk accurately. Skills • Able to create AWS secure cloud architecture designs • Understand current security threats, techniques, and landscape • System threat modeling of applications and platforms • Able to identify and provide mitigation for security vulnerabilities within applications and application environments based on threat models. • Able to simplify complex security topics for consumption and critical decision making. • Clear and accurate communication • Able to lead/direct discussions with technical and business teams to achieve common goals. • Able to work well within a team and support team goals • Understand cyber security frameworks such as NIST 800-53 • Ability to work on a geographically distributed team across multiple time zones • Familiarity with SAFe a plus Responsibilities • Evolve and mature our models, templates, standards and procedures related to secure application development and secure application and cloud architecture. Ensure these artifacts are in alignment with FRS policy and standards. • Consult with our development teams to help them align with FRS policy and standards and meet the risk appetite of the customer. • Work with members of application development teams to review and create secure application and infrastructure designs and patterns. • Assist development teams by reviewing threat models related to applications and related systems. Analyze potential business impact and exposure leading to risk, based on emerging security threats, vulnerabilities, configurations, threat actor TTPs, etc. • Evaluate CICD pipeline design, and related development team processes and help to mature and secure creation, management and utilization of pipelines. • Assist in identification and integration of security focused tooling into development and operations processes. • Support secure application architecture within the Federal Reserve System by fostering constructive dialogue and seeking resolution when confronted with discordant views. • Solicit feedback and continuously improve your knowledge, skills and capabilities related to the position. • Assist with recruiting activities and administrative work.

Job Title: Security Engineer (Mergers & Acquisitions Team) ⏳ Duration: 6 Months MUST HAVE SKILL : 5+ years of proven hands-on Network Security & Administration experience, including firewall management, security controls, and infrastructure protection. Strong hands-on expertise with enterprise-grade firewalls and security appliances from Cisco, Checkpoint, and Palo Alto. Solid Cloud Security experience, including securing hybrid environments, cloud networking, and cloud-based security controls. Deep understanding of encryption and secure connectivity, including TLS/SSL for web traffic, IPsec, and VPN technologies. Certifications : CCNA (Network), CCNP (Security) Job Overview We are seeking an experienced Security Engineer to support Mergers & Acquisitions (M&A) security integration efforts. This role focuses on designing, deploying, and troubleshooting security appliances and controls to securely integrate acquired companies into the existing enterprise network. The ideal candidate will have hands-on expertise with firewalls, security tools, cloud security, and enterprise infrastructure. You will collaborate closely with network, security, and IT teams to ensure seamless integration, maintain business continuity, and uplift the overall security posture. Key Responsibilities • Design & Implementation Deploy new security appliances and complete all configuration, logging, and auditing requirements. Conduct site-by-site assessments and prepare Bill of Materials (BOM) for new firewalls and related equipment. Implement standard controls and approved security exceptions to meet business needs. • Configuration & Maintenance Update, patch, and register firewalls; integrate them into the global management console. Deploy security rule sets, filtering, logging, and audit capabilities in alignment with SOC requirements. Understand custom security needs for each acquired entity and build required policy sets. • Assessment, Monitoring & Troubleshooting Assess current security posture and review reports from internal/external scanning tools. Manage vulnerability scanning, data scanning, and remediation. Troubleshoot firewall issues and analyze security events while coordinating with network teams. • Documentation & Compliance Maintain accurate documentation, network diagrams, configuration logs, and ensure compliance with security standards and best practices. • Collaboration & Support Work closely with networking, systems, and application teams. Liaise with vendors, service providers, and internal teams to support integration and operational requirements. • Capacity Planning Conduct capacity analysis to ensure scalability of security infrastructure as growth continues. • Security Integration Strategy & Roadmapping Build 30/60/90-day security integration plans for newly acquired companies. Create phased upgrade plans, firewall migration paths, and endpoint remediation strategies. Align integration work with long-term enterprise architecture and identify key security priorities. • Automation Automate recurring tasks including vulnerability log analysis, data scanning, reporting, and other routine activities. Required Qualifications Bachelor's degree in Computer Science, Information Technology, Network Engineering, or related field. 5+ years of hands-on security engineering or network security administration experience. Certifications (Preferred) Cisco: CCNA, CCNP Security Checkpoint: CCSA Palo Alto: PCNSA, PCNSE, PCCET General: CompTIA Security+ Technical Skills Strong understanding of network concepts and administration. Deep knowledge of security appliances, software tools, discovery/assessment tools, and threat landscapes. Hands-on experience with enterprise-grade equipment from Cisco, Checkpoint, and Palo Alto. Experience with security monitoring and diagnostic tools. Knowledge of cloud networking, cloud security, and virtualization technologies. Ability to follow precise standards for designing and implementing enterprise security infrastructure. Soft Skills Strong analytical and complex problem-solving skills. Excellent written and verbal communication skills for both technical and non-technical audiences. Strong time-management and prioritization abilities. Ability to work independently and collaboratively within global, cross-cultural teams.

Security Architect / Implementation Engineer Duration: 6 Months contract with possibility of extension We are seeking a highly skilled Security Architect / Security Implementation Engineer with expertise in designing, implementing, and integrating Google Cloud Security Command Center (SCC), Chronicle SIEM, and Cybereason XDR. The candidate will be responsible for architecting the end-to-end solution, implementing GCP native security controls, integrating third-party security tools, and producing detailed design and operational documentation. Key Responsibilities: Design and architect cloud-native security controls in GCP aligned with security and compliance frameworks (CIS, ISO 27001, NIST, etc.). Implement Google Security Command Center (SCC) for threat detection, vulnerability management, and risk insights. Architect and configure Chronicle SIEM for log ingestion, correlation, and advanced threat analytics. Integrate Cybereason XDR with SCC, Chronicle, and other security tools to establish end-to-end threat detection and response workflows. Define use cases, rules, policies, and security playbooks to automate detection and response. Document the solution architecture, design decisions, configuration standards, and integration workflows. Conduct knowledge transfer sessions with security operations and support teams. Collaborate with GCP Cloud Platform teams, SOC teams, and compliance teams to align solutions with enterprise policies. Required Skills & Experience: 8-12 years of overall IT security experience with at least 4-5 years in Google Cloud Security. Proven experience with Google Security Command Center (SCC), Chronicle SIEM, and XDR platforms (Cybereason preferred). Strong knowledge of GCP IAM, VPC Service Controls, Cloud Armor, DLP, Cloud Logging, Cloud Monitoring. Hands-on experience in integrating SIEM, XDR, and native GCP security tools. Experience with Terraform, Deployment Manager, or automation frameworks for security deployment. Strong documentation and presentation skills. Security certifications preferred: Google Professional Cloud Security Engineer, GCP Professional Architect, CISSP, CISM, CCSP.

JT4 Point Mugu is seeking an Information Systems Security Specialist. This role is responsible for assessing, developing and implementing programs and controls set in place to help increase cybersecurity within our company. The Information Systems Security Specialist will be detail-oriented, have great problem-solving and analytical skills, and a passion for cybersecurity. JT4, LLC provides engineering and technical support to multiple western test ranges for the U.S. Air Force, Space Force, and Navy under the Joint Range Technical Services Contract, better known as J-Tech II. JT4 develops and maintains realistic, integrated test and training environments and prepares our nation's war-fighting aircraft, weapons systems, and aircrews for today's missions and tomorrow's global challenges. **An ideal candidate will have an active DoD secret clearance** **This position is located at Point Mugu and is not eligible for telework** Job Summary -- Essential Functions/Duties This position is the on-site technical specialist for monitoring information systems and maintaining the environment of operation to include developing and updating System Security Plans, managing and controlling changes to the systems, conducting audits, providing incident response, perpetration for vulnerability assessments, and assessing the security impact of security and non-security-relevant changes. Employee will be responsible to perform the following functions/duties: Provides incident handling in conjunction with the Facility Security Office (FSO) and Information Security Officer / Information Systems Security Manager (ISSO/ISSM) Assists in writing and maintaining computer security processes to meet Navy requirements of Risk Management Framework Monitors computer system use and audits logs Makes recommendations for future hardware / software implementations and related process improvements This position requires skills in team building and customer service Provides operational status as required Uses established policies and procedures and subject matter knowledge to complete complex assignments requiring originality and ingenuity performed under minimum supervision with considerable latitude for independent contribution Provides security training and awareness briefings Other duties as assigned. Requirements -- Education, Technical, and Work Experience Associates or higher degree in Computer/Information Technology, or equivalent academic/technical training/certification. Possess two to three years of experience in computer system security and/or related areas of expertise. Must be compliant to DoD 8570.01-M levels and possess or working toward Security+ certification with a CISSP desired. Should have experience with JSIG, NIST 800 and NISPOM, Chapter 8. In addition, an Information Systems Security Specialist must possess the following qualifications: Must possess and apply a broad knowledge of principles, practices and procedures in computer security and information systems and working experience with Microsoft Office, Access, and Visio Must possess experience supporting various system configurations such as Stand Alone, Local Area Networks, and Wide Area Networks Must possess excellent skills in verbal and written communications, planning, and organizing Ability to work under deadlines. Employee is expected to routinely cross fields in the completion of somewhat difficult and varied assignments. Government vehicle is used on an as-needed basis Ability to work in a field environment at remote locations with occasional overnight assignments Must qualify for and maintain a government security clearance Must possess a valid, state-issued driver's license.