Security Engineer (Washington)

About the Role : We are seeking a highly skilled

Senior Security Engineer

with expertise in understanding the threat landscape and implementing holistic countermeasures. In this role, you will focus on

security architecture

and

incident management , contributing to the organization's ability to identify, mitigate, and resolve cybersecurity threats effectively. Responsibilities : As a Senior Security Engineer, your responsibilities will include:

Threat Analysis & Response : Conduct Web Application Firewall (WAF) traffic load analysis and monitor performance impacts. Assess potential attack characteristics based on mission-critical infrastructure. Identify and define site-specific data collection requirements to enhance threat detection capabilities. Security Problem Resolution : Analyze and resolve information security issues using expertise in major security products and services. Recommend and implement security solutions based on knowledge of infrastructure security disciplines and technology limitations. Cybersecurity Architecture & Compliance : Design and implement robust cybersecurity controls across multiple environments. Ensure compliance with NIST directives (e.g., 800-53), FedRAMP, and ATO processes. Monitoring & Reporting : Utilize tools like Splunk for monitoring, reporting, and dashboard creation. Prepare and provide detailed security reports, including diagrams, for infrastructure and security teams. Risk Management & Vendor Assessment : Conduct third-party vendor risk reviews and cloud risk assessments. Recommend strategies for mitigating cyber risks and remediating vulnerabilities. Incident Management : Lead the response to security incidents, ensuring rapid containment and resolution. Document lessons learned and enhance incident response protocols based on real-world experiences.

Qualifications : Extensive experience with: WAF Solutions : Barracuda Cloud WAF, AWS WAF. Monitoring Tools : Splunk (including monitoring, reporting, and dashboarding). Security Solutions : DBProtect for database security and risk assessment. Proficiency in: Cybersecurity architecture design and implementation. Incident management and security incident response. Vulnerability remediation and cyber risk mitigation. Familiarity with: NIST directives (e.g., 800-53), FedRAMP, and the ATO process Experience conducting third-party vendor risk assessments. Strong technical skills in creating detailed infrastructure and security architecture diagrams. Background in performing comprehensive cloud risk reviews.

We are an Equal Opportunity Employer committed to a diverse and inclusive workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, age, gender identity, national origin, disability, or veteran status. We value diverse perspectives and actively seek to create an inclusive environment that celebrates the unique qualities of all employees.