Security Engineer

Who we are:
Makpar is a team of innovators and consultants deploying cutting edge technologies for the federal government. We help our clients achieve their business and operational goals by solving complex problems through experience and intellect and build sustainable solutions that last. If you are driven and looking to tackle complex and critical client challenges, Makpar can provide a dynamic, mission focused, and rewarding environment for your professional growth. Our service offerings include Cybersecurity, Cloud Migration, IT Project Management, Agile Transformation, DevSecOps, Identity, Credential, and Access Management (ICAM), and Health IT. We are proud to be a Great Place to Work™ certified four years in a row. Recent awards include Fortune Top 100 Small Place to Work, Inc 5000, and Inc Best in Business. In 2019, we were awarded the SBA Subcontractor of the Year Award (Region 3) for our program management and Agile development work at the IRS. 

The Position:Makpar has an exciting opportunity for a Security Engineer with expertise in NIST 800-53 security controls and a strong technical background in risk and vulnerability management and compliance. The ideal candidate will play a key role in supporting implementation of security controls, assessing vulnerabilities, and ensuring compliance with federal cybersecurity frameworks such as FISMA, FedRAMP, and RMF.

Role Responsibilities:

• Develop, assess, and document System Security Plans (SSPs), Plan of Action and Milestones (POA&Ms), and Risk-Based Decisions (RBDs).
• Work with developers and technical staff to provide guidance on how each security control family should be addressed.
• Work with the team to collect, organize and submit evidence for Security Control Assessments (SCAs).
• Technical understanding of security technologies including encryption methods, Identity and Access Management (IAM) concepts and technologies like SAML, OIDC, SSO, and MFA.
• Understanding of SIEM technologies like Splunk and other monitoring tools.
• Knowledge of risk and vulnerability management to identify and remediate vulnerabilities.
• Work across teams, and external customer groups to develop the security strategy, design security solutions, and advise implementation teams during deployment.

Required Qualifications:

• A minimum of 8+ years’ experience in Information Technology field with increasing responsibility
• At least 5+ years’ experience in Information Security solutions 
• Possess relevant security certifications (e.g., CISSP, CCSP, CEH)
• In-depth knowledge of NIST 800-53, RMF, FedRAMP, FISMA, and related federal security standards.
• Knowledge of system security vulnerabilities and remediation techniques
• Understanding of networking (subnetting, routing, VPC / VNet, security groups, load balancing, etc.)
• Experience with microservices based architecture, including designing security solutions for multi-tenant applications using tools for containerization and orchestration such as Docker and Kubernetes is highly desirable
• Hands-on experience supporting security for AWS cloud platform is highly desirable
• Candidates must be a US Citizen or a Legal Permanent Resident (Green Card status) for 3 years and be Federal Tax compliant. 

Benefits:
At Makpar Corporation we understand that we all need to balance work and life – that is why we have a great benefits package, excellent training and career development opportunities, flexible work schedules along with a generous compensation package. At Makpar, we believe in keeping our employees happy, healthy and engaged. We pride ourselves in providing outstanding benefits, creating environments where employees are encouraged to be themselves, collaborate, and be inquisitive in order to achieve goals.
Start your career today and be a part of something meaningful!
Makpar is an Equal Opportunity / Affirmative Action employer.