Security Engineer

Constellation GovCloud (CGC) is a platform that uniquely accelerates compliance with requirements such as FedRAMP and StateRAMP.  Once authorized, CGC enables these technology platforms to stay compliant through continuous monitoring and makes these compliant solutions available to end users and partners through a unique cloud marketplace.

We are looking for a Security Engineer with a strong understanding of configuring and maintaining security products, and has experience with heavily regulated environments. The ideal candidate will have experience in aligning configuration of assets with industry frameworks such as NIST 800-53 Rev. 5. An understanding of automation to ensure a consistent and repeatable environment is required.

  • Manage the security products and asset configurations of Constellation GovCloud’s platform for a variety of industry-leading and proprietary technologies.
  • Support all CGC policies and procedures required to achieve and maintain FedRAMP, StateRAMP and other compliance standards.  
  • Develop and maintain preventative automations to ensure configurations remain compliant with system requirements and are automatically reverted if they deviate 
  • Create and maintain framework compliant machine images for deployment into both production development environments.
  • Work with the compliance team to ensure all vulnerabilities are addressed within the required timeframe by policy
  • Ensure least privilege, access, and functionality  is utilized in IAM, networking, infrastructure, and hosts
  • 5+ years of experience excelling in a heavily regulated environment, with demonstrable experience with cloud-based workloads, Windows, and Linux security, and networking technologies subject to FedRAMP or similar NIST requirements.
  • Splunk Enterprise Certified Admin OR Splunk Cloud Certified Admin
  • Experience with these technologies:
    • Ansible or similar automations tools
    • AWS System Manager
    • AWS Firewall Manager or other Cloud Firewalls
    • AWS Security Hub, GuardDuty, AWS Config or other Cloud Monitoring Tools
    • Splunk
    • Endpoint security solutions including TrendMicro or similar
    • DAST + IAST for application scanning including Accunetix
    • Infrastructure and database scanning with Tenable or similar
  • Strong verbal and written communication skills and strong analytical and problem-solving abilities to analyze, organize and translate complex technical concepts into clear and digestible information. 
  • Bachelor’s degree or higher from a nationally accredited university in a related field or certifications (i.e. CISSP, Cloud+, AWS Certified Security Specialty)
  • Experience in NIST, and MITRE Frameworks are a bonus. 
  • Must be a U.S. Citizen

Industry
Technology

Work Experience
5+ years

City
Tysons Corner

State/Province
Virginia

Country
United States

Zip/Postal Code
22182