Job Description

Systems Security Engineer

Location: Onsite – 5 Days per Week
Clearance: Top Secret Required

About the Role

We are seeking a Systems Security Engineer to lead incident response, security monitoring, and compliance efforts for a federal agency. This role requires a seasoned cybersecurity professional with a deep understanding of the full security incident response and management lifecycle . The ideal candidate will support systems engineers in hardening infrastructure , ensure compliance with federal security standards, and proactively assess the organization’s security posture across cloud and on-premises environments.

Key Responsibilities

Security Hardening & Compliance

• Support systems engineers in securing deployments, from virtual machine configurations to application-level security controls .
• Ensure continuous compliance with federal and agency security standards for patches, software upgrades, and system configurations .
• Deploy security controls to Windows operating systems in a secure environment .

Incident Response & Threat Monitoring

• Monitor network, application, database, and system security using Splunk Enterprise Security and other security tools.
• Develop incident response plans and collaborate with DevSecOps engineers and developers to conduct penetration testing of high-value systems .
• Spearhead incident response actions , including technical remediation and customer communication .

Security Posture & Risk Management

• Assess the security posture for applications and services across on-premises and cloud networks .
• Provide recommendations for improving security architecture, monitoring, and compliance .
• Address Plan of Action & Milestones (POA&Ms) with a structured end-to-end resolution approach .

Operations & Maintenance

• Perform scheduled maintenance and support after-hours release deployments as needed.
• Lead the team in managing the organization’s overall security framework and risk mitigation strategies.

Required Qualifications

• Minimum four years of specialized experience supporting 24/7 enterprise-class applications in a significant cybersecurity role.
• Demonstrated experience in developing and implementing end-to-end incident response plans .
• Deep knowledge of cybersecurity with practical experience addressing POA&Ms from start to finish .
• Ability to operate as the sole systems security engineer within a DevSecOps division , working closely with developers and systems engineers.
• Hands-on experience deploying security controls to Windows operating systems.
• Experience using Splunk Enterprise Security for proactive monitoring and incident response .
• Strong troubleshooting and problem-solving skills , with the ability to analyze security issues, evaluate alternatives, and implement logical solutions.
• Proven ability to manage multiple priorities effectively and meet deadlines .
• A bachelor’s degree in computer science, network security, or a related field and at least four years of experience in a security engineering role OR at least six years of experience in a security engineering role .

Preferred Skills

• GIAC Certified Incident Handler (GCIH), CISSP, CEH, CASP+, Security+ , or equivalent certifications.
• Experience working in a security-engineering role at a federal agency , including familiarity with iPost .
• A master’s degree in computer science, network security, or a related field.
• Hands-on experience performing penetration testing and security assessments.

Job Tags

Similar Jobs