Senior Security Engineer

DecisionPoint seeks a Senior Security Engineer to design and implement secure architectures, hardening baselines, and cybersecurity controls for enterprise cloud-hosted platforms supporting a federal and DoD-aligned mission environment. This senior technical role provides advanced security engineering, IL5-compliant control implementation, secure identity and access integration, STIG alignment, and vulnerability reduction across complex systems. 

The Senior Security Engineer supports system modernization, secure cloud adoption, continuous monitoring improvements, and enterprise cybersecurity strategy through engineering rigor, security testing, and expert technical guidance. This role ensures system confidentiality, integrity, and availability through proactive design and implementation of robust security controls and architectures. 

This position is fully remote. 

Note: By applying to this position, you acknowledge and consent to having your resume included in an active competitive government contract bid. 

The Senior Security Engineer will: 

• Design secure system architectures and cloud configurations in alignment with federal and DoD security requirements. 

• Implement IL5 controls, security baselines, and environment hardening across systems, applications, and cloud resources. 

• Apply STIG requirements and secure configuration checklists to cloud, OS, network, and application components. 

• Support secure single sign-on (SSO) integration, identity federation, certificate management, and authentication workflows. 

• Develop and maintain secure configuration baselines, encryption standards, and boundary protection controls. 

• Conduct security assessments, security testing, and vulnerability analysis to identify and remediate risks. 

• Review code, configurations, and deployment patterns for secure implementation. 

• Collaborate with cloud engineers, DevSecOps teams, and system owners to ensure secure deployment practices and change controls. 

• Participate in continuous monitoring activities including log review, alert triage, scanning, and compliance updates. 

• Provide detailed technical recommendations for remediation and mitigation strategies. 

• Support audit activities, authorization testing, and security documentation updates. 

• Produce architecture diagrams, security implementation plans, and technical design documentation. 

• Mentor junior engineers and contribute to organizational security engineering standards. 

Clearance Requirement 

Must hold an active Top Secret clearance, supported by a Tier 5 background investigation. 

Education (Required) 

Bachelor’s degree in Computer Science, Engineering, Cybersecurity, or a related field. 

Experience (Required) 

• Minimum 10 years of experience in security engineering, cybersecurity, or secure systems design. 

• Experience implementing IL5 or equivalent high-impact cloud security controls. 

• Experience applying STIGs, secure configuration baselines, and hardening guidelines. 

• Experience designing secure SSO, certificate management, and authentication integrations. 

• Experience performing security testing, vulnerability assessments, and remediation planning. 

• Experience supporting secure cloud deployments and modern enterprise architectures. 

Technical Knowledge (Required) 

• Strong knowledge of cloud security architectures, particularly in AWS. 

• Deep understanding of DoD cybersecurity requirements, NIST SP 800-53, and RMF-aligned controls. 

• Proficiency in STIG application, hardening techniques, and secure configuration standards. 

• Knowledge of identity and access management, certificate management, and PKI. 

• Experience with SIEM tools, log analysis, scanning tools, and continuous monitoring programs. 

Technical Knowledge (Preferred) 

• Experience with AWS cloud-native security services and AWS security certifications. 

• Familiarity with Zero Trust architectures and modern boundary protection strategies. 

• Experience with container security, Kubernetes hardening, or cloud-native app security. 

• Understanding of DevSecOps pipelines, IaC scanning, and security automation tools. 

Certifications 

Required: 

• CISSP or CCSP or Security+ 

Preferred: 

• AWS Security Specialty 

• CISM 

• GIAC security engineering or cloud certifications 

Skills 

• Strong problem-solving and technical analysis skills for diagnosing complex security issues. 

• Excellent communication skills for conveying technical concepts to stakeholders. 

• Ability to design and document secure architectures, baselines, and implementation plans. 

• Strong attention to detail and precision in applying security controls and reviewing configurations. 
• Ability to balance mission needs with rigorous cybersecurity requirements. 

• EEO and Affirmative Action Policy: DecisionPoint Corporation is an Equal Employment Opportunity and Affirmative Action employer. It is the policy of DecisionPoint Corporation to provide equal employment opportunity in accordance with all applicable Equal Employment Opportunity/Affirmative Action laws, directives and regulations to all employees and qualified applicants without regard to race, ethnicity, color, religion, national origin, sex, age, disability status, pregnancy, sexual orientation, gender identity, genetic information, protected veteran status, or any other protected status under Federal, State or Local laws.
• Pay Transparency Policy: In accordance with Presidential Executive Order 13665, DecisionPoint Corporation will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.
• Authorization to Share Resume and Personal Information: By expressing your interest and submitting your resume for this position, you authorize DecisionPoint Corporation to share your resume, as well as personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should DecisionPoint Corporation. or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.