Security Engineer

IDEMIA National Security Solutions (NSS) is the premier provider of integrated identity solutions for United States Government. Our deep understanding of biometric, biographic, credential, and digital forms of identity allows us to guide our clients to achieve their business goals. NSS’ leading software systems; data and analytics offerings; and professional services facilitate and automate many of the business processes for government agencies serving law enforcement, military, and intelligence missions. Candidate must be US Citizen without Dual Citizenship.

Summary

IDEMIA NSS has an immediate opening for a Security Engineer to support product security posture for a new solution architecture.  This role is responsible for architecture, design and testing of cyber security solutions for the product and support infrastructure. This position can be remote or in person.

Responsibilities:

• Develop, implement and lead technical security controls including network, access management, and data protection for systems running in AWS cloud environments directly supporting products
• Lead the Incident Response for incidents in the cloud infrastructure directly supporting products
• Monitor AWS based systems for security events, anomalies and threats.
• Perform threat modeling, risk analysis, and risk assessments for the product and supporting infrastructure. 
• Perform security trade-off analysis to support technical and architectural decisions
• Develop security process and procedure for the product and supporting infrastructure.
• Act as a subject matter expert (SME) for security tools, applications and processes.
• Demonstrate organization and planning skills, including time management, project coordination, and project management.
• Support monitoring security KPIs and other metrics for security operations
• Review and assess technology services, applications, development processes, and organizational controls to determine gaps for meeting security requirements.
• Design and implement changes to existing security tools, applications and processes based on changes in scope or needs.
• Work directly with internal infrastructure teams to align and execute infrastructure changes to support the tools, applications and processes.
• Create process documents for operations, maintenance and integrating output from security tools into daily security operations.
• Support internal and external audits of technology systems and related business processes.
• Conduct quantitative and qualitative security inspections of production and pre-production environments.
• Vet security requirements for acceptance of new technology systems into products.
• Provide routine communications and reports to stakeholders.
   

Qualifications:

• Bachelor’s degree in Computer Science/Information Security/ Information Technology/Cyber Security or related technical discipline
• 5 years of IT security or cyber security experience
• Hands-on experience with, Tenable’s product suite, and GitLab preferred
• Basic understanding of DevSecOps processes and tools
• Basic understanding of FedRAMP and CMMC
• Familiarity with DoD Cyber Security Standards
  • NIST 800-37 (RMF)
  • NIST 800-53 Rev. 5
  • NIST 800-160 Vol. 1

One or more Industry recognized certifications such as Security , CASP, CISSP, CCSP, CEH CSSLP

*****Must be a US Citizen, without Dual Citizenship*****

NSS is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other protected characteristics.

Equal Opportunity Employer Statement

It is the policy of IDEMIA NSS to provide equal employment opportunities to all qualified employees and applicants for employment without regard to race, color, religion, national origin, ancestry, sex, gender identity, age, disability, participation in discrimination complaint-related activities, sexual orientation, genetics, or active military or veteran status, or any other protected characteristic, by either employees or non-employees. This non-discrimination policy applies to all employment procedures, including, but not limited to, recruiting, hiring, placement, promotion, transfer, training, compensation, termination, reduction in force, and all company-sponsored activities.

Affirmative Action Statement

NSS has adopted an Affirmative Action Plan (“AAP”) and is committed to making a good faith effort toward achieving the objectives of the plan. It is the policy of NSS to base employment decisions on the principles of Equal Employment Opportunity (“EEO”) and to take Affirmative Action in the employment of women, minorities, individuals with disabilities and veterans.

We are an Equal Opportunity/Affirmative Action Employer. We consider applicants without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, or membership in any other group protected by federal, state, or local law.

As a government contractor, NSS abides by the following provision:

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of the other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractors legal duty to furnish information. 41 CFR 60-1.35(c).