Security Engineer

Location: United States Remote

Department: Engineering

Senior Security Engineer / ISSE

Role Overview

We are seeking an experienced Security Engineer to join our dynamic team. In this role, you will play a crucial part in ensuring the security of cloud infrastructure, software, and AI systems. You will work closely with engineers across various disciplines to implement and maintain robust security measures, while also ensuring compliance with relevant government regulations and accreditation standards. You will support the ISSM by providing or assisting with artifacts for compliance such as topology diagrams or descriptions of how security is implemented.

Desired Qualifications

• Compliance Expertise: Knowledge of government compliance frameworks and accreditation processes, such as FedRAMP, DISA Impact Level 5, NIST 800-53
• Experience with the DISA Cloud Security Requirements Guide (SRG)
• Experience working with Department of War (DoW) security stacks including VDMS, VDSS, BCAP, and other related security frameworks, tool, and common practices
• Knowledge of security technologies such as firewalls, intrusion detection systems, and security information and event management (SIEM) tools
• Experience documenting system security posture and adherence to security controls, including creating and maintaining security plans, risk assessments, and incident reports
• Familiarity with secure coding practices, vulnerability assessments, and vulnerability remediation
• Strong understanding of cloud security best practices
• Must be a U.S. Citizen and eligible to obtain a Top Secret clearance

What we are looking for in a strong candidate

• Strong understanding of software security and AI system security
• Hands-on experience with security tools and technologies for cloud environments (e.g., Google Security Command Center, AWS Security Hub, Azure Security Center, Tenable Products)
• Knowledge of specific AI/ML security assessment frameworks
• Bonus points for relevant security certifications (e.g., CISSP, CCSP, Professional Cloud Security Engineer)
• Experience with security automation and DevSecOps practices and Infrastructure as Code (IaC)

Key Responsibilities

• Cloud Security: Document and manage security architectures for cloud environments (e.g., Google Cloud, AWS, Azure). This includes securing cloud resources, managing access control, assessing network security, and ensuring data protection.
• Software Security: Integrate security practices throughout the software development lifecycle (SDLC). This involves integrating security into software processes such as code reviews, vulnerability assessments, and promoting secure coding practices.
• AI System Security: Assess and mitigate security risks specific to AI systems.
• Compliance and Accreditation: Ensure that systems and processes meet relevant government security standards and regulations (e.g., NIST 800-53, DISA Impact Levels). This includes conducting security audits, preparing documentation, and participating in accreditation activities.
• Incident Response: Develop and execute incident response plans, investigate security breaches, and implement corrective actions.
• Security Awareness: Promote security awareness across the organization through training, communication, and best practice guidance.
• Threat Intelligence: Stay abreast of emerging security threats and vulnerabilities, and proactively implement measures to mitigate risks.
  
  

Why Game Plan Tech?

Join a dynamic and growing team at Game Plan Tech, dedicated to empowering public sector organizations with best-in-class Google solutions. We foster a collaborative environment where you can make a significant impact, drive innovation for our clients, and advance your career.

Game Plan Tech is an equal opportunity employer committed to fostering a diverse and inclusive workplace. We provide equal employment opportunities to all individuals, regardless of race, color, religion, gender, gender identity, sexual orientation, national origin, age, disability, genetic information, veteran status, or any other characteristic protected by applicable federal, state, or local law. We value diversity and are committed to ensuring a respectful, inclusive, and supportive environment for all employees, contractors, and applicants. 

If you require reasonable accommodation during the application process or employment, please contact [email protected].