Senior Security Engineer
Client Office: Bethesda, MD (NIH-6701)
Full Time Senior-level / Expert Clearance required USD 100K - 150K
Guidehouse
Guidehouse is the only scaled advisory consultancy in the world to fully integrate commercial and public or government businesses within each of our industry segments because complex problems require both perspectives to address and outwit.Job Family:
Development Operations
Travel Required:
Clearance Required:
What You Will Do:
- Design, develop, and implement secure and compliant cloud architectures on AWS, GCP, and Azure adhering to FISMA and FedRAMP security controls
- Conduct threat modeling and security assessments of cloud deployments to identify and mitigate vulnerabilities
- Select and configure appropriate AWS security services like IAM, KMS, Security Groups, WAF, and CloudTrail to meet compliance requirements
- Implement data encryption strategies at rest and in transit, ensuring data protection aligns with FISMA and FedRAMP guidelines
- Integrate enterprise security solutions (e.g. Splunk, Tenable, etc) for cloud security monitoring and incident response
- Automate security configurations and enforce security best practices through infrastructure as code (IaC) tools, ensuring compliance automation
- Develop and implement incident response plans for cloud security threats, aligned with FISMA and FedRAMP incident reporting procedures
- Stay up-to-date on the latest AWS security features, vulnerabilities, and compliance updates for FISMA and FedRAMP
- Provide security guidance and expertise to developers, operations teams, and other stakeholders, fostering a culture of security awareness
- Develop security requirements for applications migrating from on-prem implementations to the cloud
What You Will Need:
- Bachelor's degree
- A minimum of 6 years of experience in information security, with a minimum of 3 years focused on cloud security, or 10 years + equivalent work experience
- Proven experience designing and implementing secure cloud architectures on AWS, with a strong understanding of FISMA and FedRAMP compliance frameworks
- In-depth knowledge of AWS security best practices, compliance frameworks (e.g., PCI-DSS, HIPAA), and the ability to map them to FISMA and FedRAMP controls
- Experience with cloud security tools like IAM roles, KMS encryption, Security Groups, WAF, CloudTrail, and Config
- Experience with security automation tools, infrastructure as code (IaC) methodologies, and compliance automation
- Excellent communication, collaboration, and problem-solving skills
What Would Be Nice To Have:
- AWS Certified Security - Specialty certification
- Experience with cloud security posture management (CSPM) tools
- Experience with security incident and event management (SIEM) solutions
- Experience with cloud workload protection platforms (CWPP)
- Experience with container security (Docker & Kubernetes)
- A Degree in Computer Science, Information Technology, or a related field
What We Offer:
Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.
Benefits include:
Medical, Rx, Dental & Vision Insurance
Personal and Family Sick Time & Company Paid Holidays
Parental Leave
401(k) Retirement Plan
Group Term Life and Travel Assistance
Voluntary Life and AD&D Insurance
Health Savings Account, Health Care & Dependent Care Flexible Spending Accounts
Transit and Parking Commuter Benefits
Short-Term & Long-Term Disability
Tuition Reimbursement, Personal Development, Certifications & Learning Opportunities
Employee Referral Program
Corporate Sponsored Events & Community Outreach
Care.com annual membership
Employee Assistance Program
Supplemental Benefits via Corestream (Critical Care, Hospital Indemnity, Accident Insurance, Legal Assistance and ID theft protection, etc.)
Position may be eligible for a discretionary variable incentive bonus
About Guidehouse
Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.
Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.
If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.
Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.
Tags: Automation AWS Azure Clearance Clearance Required Cloud Compliance Computer Science CSPM Docker Encryption FedRAMP FISMA GCP HIPAA IAM Incident response Kubernetes Monitoring Security assessment SIEM Splunk Vulnerabilities
Perks/benefits: Career development Competitive pay Flexible spending account Health care Insurance Medical leave Parental leave Salary bonus Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.