Security engineering - application

Job TypeContractor

Skills RequiredAzure M365

LocationWashington, District of Columbia

SalaryNo salary information was found.

Date Posted September 14, 2025

Prodigy Resources

Prodigy Resources is seeking a senior Security Engineer to lead secure configuration and compliance engineering efforts for a Federal contractor. This primarily remote role requires occasional meetings in various states and involves expertise in NIST RMF and FedRAMP compliance.

Job description

Our client is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. We're seeking a senior level Security Engineer to lead secure configuration, continuous monitoring, and compliance engineering efforts. You'll drive baseline hardening, risk assessments, and automation across cloud and on-prem systems, ensuring adherence to federal mandates and Zero Trust principles. This position is primarily remote, but it requires the ability to attend occasional meetings in DC, MD, VA, WV, NJ, and OK as needed Qualifications and Experience Bachelor's degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT field Minimum 8 years of relevant experience in enterprise security engineering and compliance Expertise in the NIST Risk Management Framework (RMF) (SP View phone number on click.appcast.io) Familiarity with the Cybersecurity Assessment and Secure Mission (CASM) model Experience applying FedRAMP controls for cloud service providers and managing authorization packages Strong knowledge of DISA STIG and SCAP automation for multiple OS platforms Ability to map organizational controls to CISA CDM dashboard metrics and drive data integrations Required Skills MS SQL Server (2019/2022), AWS GovCloud, Azure compliance baselines, AWS RDS, Power Platform & M365 Baselines, SharePoint 2019, Tomcat 9/10 Monitoring & Reporting Power BI, DLP / Information Protection solutions, Risk assessment workflows Responsibilities Lead Secure Configuration Management baselines for applications, operating systems, databases, network devices, and platforms Conduct Continuous Diagnostics and Mitigation (CDM) program activities—vulnerability management, configuration management, identity & access controls, and incident response Perform risk assessments and manage POA&Ms; oversee Cybersecurity Assessment and Secure Mission (CASM) workflows Implement and automate DISA STIG and SCAP standards across Windows, Red Hat, iOS/iPadOS, macOS, and Chrome environments Facilitate FedRAMP compliance for cloud services; integrate data into monitoring solutions Mentor junior security engineers and coordinate cross-team compliance reviews #

Requirements

• This position is primarily remote, but it requires the ability to attend occasional meetings in DC, MD, VA, WV, NJ, and OK as needed

• Qualifications and Experience Bachelor's degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT field

• Minimum 8 years of relevant experience in enterprise security engineering and compliance

• Expertise in the NIST Risk Management Framework (RMF) (SP View phone number on click.appcast.io)

• Familiarity with the Cybersecurity Assessment and Secure Mission (CASM) model

• Experience applying FedRAMP controls for cloud service providers and managing authorization packages

• Strong knowledge of DISA STIG and SCAP automation for multiple OS platforms

• Ability to map organizational controls to CISA CDM dashboard metrics and drive data integrations

• Required Skills MS SQL Server (2019/2022), AWS GovCloud, Azure compliance baselines, AWS RDS, Power Platform & M365 Baselines, SharePoint 2019, Tomcat 9/10

• Monitoring & Reporting Power BI, DLP / Information Protection solutions, Risk assessment workflows

• OS, macOS, and Chrome environments

Similar Jobs

Hub Group

Sep 10, 2025

Information Security Engineer - Applications

Oak Brook, Illinois

Full-time job

The Information Security Engineer - Applications at Hub Group will enhance application security throughout the development lifecycle, focusing on secure coding practices and automation. This role involves collaboration with IT teams to protect systems against evolving threats.

View Details

GitHubAzure

Prodigy Resources

Sep 14, 2025