Security engineering - application

Job TypeContractor

Skills RequiredAzure M365

LocationWashington, District of Columbia

SalaryNo salary information was found.

Date Posted September 14, 2025

Prodigy Resources

Prodigy Resources is seeking a senior Security Engineer to lead secure configuration and compliance engineering efforts for a Federal contractor. This primarily remote role requires occasional meetings in various states and involves expertise in NIST RMF and FedRAMP compliance.

Job description

Our client is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. We're seeking a senior level Security Engineer to lead secure configuration, continuous monitoring, and compliance engineering efforts. You'll drive baseline hardening, risk assessments, and automation across cloud and on-prem systems, ensuring adherence to federal mandates and Zero Trust principles. This position is primarily remote, but it requires the ability to attend occasional meetings in DC, MD, VA, WV, NJ, and OK as needed Qualifications and Experience Bachelor's degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT field Minimum 8 years of relevant experience in enterprise security engineering and compliance Expertise in the NIST Risk Management Framework (RMF) (SP View phone number on click.appcast.io) Familiarity with the Cybersecurity Assessment and Secure Mission (CASM) model Experience applying FedRAMP controls for cloud service providers and managing authorization packages Strong knowledge of DISA STIG and SCAP automation for multiple OS platforms Ability to map organizational controls to CISA CDM dashboard metrics and drive data integrations Required Skills MS SQL Server (2019/2022), AWS GovCloud, Azure compliance baselines, AWS RDS, Power Platform & M365 Baselines, SharePoint 2019, Tomcat 9/10 Monitoring & Reporting Power BI, DLP / Information Protection solutions, Risk assessment workflows Responsibilities Lead Secure Configuration Management baselines for applications, operating systems, databases, network devices, and platforms Conduct Continuous Diagnostics and Mitigation (CDM) program activities—vulnerability management, configuration management, identity & access controls, and incident response Perform risk assessments and manage POA&Ms; oversee Cybersecurity Assessment and Secure Mission (CASM) workflows Implement and automate DISA STIG and SCAP standards across Windows, Red Hat, iOS/iPadOS, macOS, and Chrome environments Facilitate FedRAMP compliance for cloud services; integrate data into monitoring solutions Mentor junior security engineers and coordinate cross-team compliance reviews #

Requirements

• This position is primarily remote, but it requires the ability to attend occasional meetings in DC, MD, VA, WV, NJ, and OK as needed

• Qualifications and Experience Bachelor's degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT field

• Minimum 8 years of relevant experience in enterprise security engineering and compliance

• Expertise in the NIST Risk Management Framework (RMF) (SP View phone number on click.appcast.io)

• Familiarity with the Cybersecurity Assessment and Secure Mission (CASM) model

• Experience applying FedRAMP controls for cloud service providers and managing authorization packages

• Strong knowledge of DISA STIG and SCAP automation for multiple OS platforms

• Ability to map organizational controls to CISA CDM dashboard metrics and drive data integrations

• Required Skills MS SQL Server (2019/2022), AWS GovCloud, Azure compliance baselines, AWS RDS, Power Platform & M365 Baselines, SharePoint 2019, Tomcat 9/10

• Monitoring & Reporting Power BI, DLP / Information Protection solutions, Risk assessment workflows

• OS, macOS, and Chrome environments

Similar Jobs

Prodigy Resources

Sep 14, 2025

Security engineering - application

Washington, District of Columbia

Full-time job

View Details

AzureM365

BankUnited, N. A.

Sep 3, 2025

Application Security Engineer

Miami Lakes, Florida

Full-time job

The Application Security Engineer at BankUnited is responsible for integrating security into the software development lifecycle and cloud architectures. This role requires collaboration with various teams to ensure secure application development and delivery.

View Details

GitHubCI/CDAzure

SHI

Jul 31, 2025

Security Consultant - Engineering

Dover, Delaware

Full-time job

The Security Consultant - Engineering at SHI provides expertise in Security Incident and Event Management (SIEM) platforms, focusing on delivering tailored security solutions to clients. This remote role involves collaboration with technical teams and clients to enhance security practices and optimize existing security platforms.

View Details

Azure

The Options Clearing

Aug 14, 2025

Associate Principal, Security Engineering (Application Security)

Dallas, Texas

Full-time job

The Associate Principal, Security Engineering (Application Security) at The Options Clearing Corporation focuses on enhancing application and software security through collaboration with IT and development teams. This role involves performing security assessments, automating security processes, and implementing secure development practices.

View Details

CI/CDDockerJenkins

Prodigy Resources

Sep 14, 2025

Security engineering - application

Washington, District of Columbia

Full-time job

View Details

AzureM365

SHI

Jul 31, 2025

Security Consultant - Engineering

Dover, Delaware

Full-time job

View Details

Azure

The Options Clearing

Aug 14, 2025

Associate Principal, Security Engineering (Application Security)

Dallas, Texas

Full-time job

View Details

CI/CDDockerJenkins

Job TypeContractor

Skills RequiredAzure M365

LocationWashington, District of Columbia

SalaryNo salary information was found.

Date Posted September 14, 2025