Senior Security Engineer

Job Family :

Development Operations

Travel Required :

None

Clearance Required :

Ability to Obtain Public Trust

What You Will Do :

Design, develop, and implement secure and compliant cloud architectures on AWS, GCP, and Azure adhering to FISMA and FedRAMP security controls

Conduct threat modeling and security assessments of cloud deployments to identify and mitigate vulnerabilities

Select and configure appropriate AWS security services like IAM, KMS, Security Groups, WAF, and CloudTrail to meet compliance requirements

Implement data encryption strategies at rest and in transit, ensuring data protection aligns with FISMA and FedRAMP guidelines

Integrate enterprise security solutions (e.g. Splunk, Tenable, etc) for cloud security monitoring and incident response

Automate security configurations and enforce security best practices through infrastructure as code (IaC) tools, ensuring compliance automation

Develop and implement incident response plans for cloud security threats, aligned with FISMA and FedRAMP incident reporting procedures

Stay up-to-date on the latest AWS security features, vulnerabilities, and compliance updates for FISMA and FedRAMP

Provide security guidance and expertise to developers, operations teams, and other stakeholders, fostering a culture of security awareness

Develop security requirements for applications migrating from on-prem implementations to the cloud

What You Will Need :

Bachelors degree

A minimum of 6 years of experience in information security, with a minimum of 3 years focused on cloud security, or 10 years equivalent work experience

Proven experience designing and implementing secure cloud architectures on AWS, with a strong understanding of FISMA and FedRAMP compliance frameworks

In-depth knowledge of AWS security best practices, compliance frameworks (e.g., PCI-DSS, HIPAA), and the ability to map them to FISMA and FedRAMP controls

Experience with cloud security tools like IAM roles, KMS encryption, Security Groups, WAF, CloudTrail, and Config

Experience with security automation tools, infrastructure as code (IaC) methodologies, and compliance automation

Excellent communication, collaboration, and problem-solving skills

What Would Be Nice To Have :

AWS Certified Security – Specialty certification

Experience with cloud security posture management (CSPM) tools

Experience with security incident and event management (SIEM) solutions

Experience with cloud workload protection platforms (CWPP)

Experience with container security (Docker & Kubernetes)

A Degree in Computer Science, Information Technology, or a related field

The annual salary range for this position is $100,200.00-$150,200.00. Compensation decisions depend on a wide range of factors, including but not limited to skill sets, experience and training, security clearances, licensure and certifications, and other business and organizational needs.

What We Offer:

Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.

Benefits include:

Medical, Rx, Dental & Vision Insurance

Personal and Family Sick Time & Company Paid Holidays

Parental Leave

401(k) Retirement Plan

Group Term Life and Travel Assistance

Voluntary Life and AD&D Insurance

Health Savings Account, Health Care & Dependent Care Flexible Spending Accounts

Transit and Parking Commuter Benefits

Short-Term & Long-Term Disability

Tuition Reimbursement, Personal Development, Certifications & Learning Opportunities

Employee Referral Program

Corporate Sponsored Events & Community Outreach

Care.com annual membership

Employee Assistance Program

Supplemental Benefits via Corestream (Critical Care, Hospital Indemnity, Accident Insurance, Legal Assistance and ID theft protection, etc.)

Position may be eligible for a discretionary variable incentive bonus

About Guidehouse

Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.

Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.

If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.

Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.