Manages information systems security for USG facilities, ensuring compliance with DoD standards, scaling infrastructure via automation, and handling access controls. Requires 3+ years technical experience, security clearance, and proficiency in Windows admin and scripting.
Salary not listed
On-site3+ YOESecurity Engineering
About the role
Core Responsibilities
Serve as the principal advisor on all matters, technical and otherwise, involving the security of the systems under their purview.
Scale our infrastructure by creatively implementing automated solutions.
Collaborate with fellow ISSMs, ISSOs, FSOs, and broader business stakeholders to provide consistent solutions to all facilities.
Create and manage user-facing guides, POA&Ms, SSPs, ATOs, and other relevant USG documentation.
Integrate new hardware and software technologies into USG infrastructure.
Familiar with eMASS and managing the system security authorization package to ensure all requirements are met and submitted.
Ensure all requirements and implementation procedures listed within the system security authorization package are in accordance with the NISPOM, NIST SP 800-53, DAAPM, or other governing policies.
Manage relationships with upstream vendors and sponsors.
User account provisioning, deletions, and general LDAP & AD maintenance.
Familiar with using ELK or other SIEMs to build reports and visualizations to ensure monitoring, alerting, and auditing requirements are met.
Familiar with DoD cyber security tools such as Endpoint Security Solutions, ACAS, STIGs, and SCAP. Demonstrate knowledge of how these tools are configured and used to ensure compliance.
What We Require
Active US TOP SECRET or SECRET with willingness and ability to upgrade to TOP SECRET security clearance.
Intermediate level foundational certification ISSM(722) (per DOD 8140), in 8570 this was known as IAM Level 2 certification.
Active Computing Environmental certification such as Linux+, CCNA, or other.
At least 3 years experience in a technical role (user support, technical compliance, system administration, etc.) at an accredited USG facility.
Demonstrated proficiency in relevant Windows administration tasks including AD, DNS, Group Policy, and SCCM/MDT.
Practical experience with automation tools, including Powershell and Python.
Skills
Active DirectoryLdapPowerShellPythonEmassNist Sp 800-53NispomElkSIEMStigsScapAcasGroup PolicySccmDNS
Lead technical investigations, threat hunting, detection development, and response for insider threats. Partner closely with Legal, HR, and Privacy teams while ensuring compliance with regulatory, legal, and ethical standards. Requires 5+ years in security with forensics/investigations focus.
Salary not listed
Hybrid5+ YOESecurity Engineering
Cloud Infrastructure Security Engineer
RunpodUnited States
Systems-focused Cloud Infrastructure Security Engineer responsible for securing Runpod's multitenant GPU bare-metal and virtualized environments. Requires 5+ years in infrastructure security, deep Linux kernel and virtualization expertise (KVM/QEMU), and low-level programming (C/Go/Rust) to prevent breakouts and harden against threats.
152k – 175k/yr
Remote5+ YOESecurity Engineering
Full Stack Security Engineer
RunpodUnited States
Full Stack Security Engineer embedding with engineering teams to secure Runpod's AI cloud platform. Lead threat modeling, fix vulnerabilities by writing code in Python/Go/TS, implement DevSecOps pipelines, and champion security across web apps, APIs, and microservices.
152k – 175k/yr
Remote5+ YOESecurity Engineering
Engineering Manager, Agent & Product Security
CursorNew York, NY +1
Lead the security engineering team building primitives for agent identity, authority, isolation, and policy enforcement to enable safe autonomous AI coding agents at Cursor. Requires strong product-systems judgment, modern appsec expertise, and comfort with ambiguity in a high-stakes environment.
Salary not listed
Hybrid5+ YOESecurity Engineering
Security Program Manager
ForusNew York, NY
Own end-to-end compliance programs (SOC 2, HIPAA, HITRUST), build customer trust function, implement automation, and partner with engineering on controls for a healthcare AI platform handling protected health information.