Expert Security Engineer

About this role

Purpose and Impact:

As the Security Subject Matter Expert, you will serve as the critical bridge between high-level security policies and their technical implementation, driving the Risk Management Framework (RMF) and Assessment & Authorization (A&A) lifecycle across multiple applications. Your primary purpose is to ensure that system designs inherently meet rigorous security objectives by evaluating IT architectures, guiding development teams, and enforcing compliance with NIST SP 800-53 and enterprise standards from concept to deployment.

In this role, your work directly safeguards mission-critical systems and reduces organizational risk. By proactively identifying, tracking, and mitigating vulnerabilities through continuous monitoring, STIG enforcement, and POA&M management, you ensure the resilience of enterprise capabilities. Your leadership in disaster recovery planning and IAVA compliance empowers engineers and developers to securely deliver operations, ultimately protecting the integrity and availability of our technological infrastructure.

Work Schedule: Work hours are 9am – 5pm, Monday thru Friday.

Essential Responsibilities:

• Bridge the gap between high-level security policies/requirements and technical/operational implementation of those requirements.
• Apply Risk Management Framework (RMF) security controls in accordance with regulatory policies into formal system test plans.
• Serve as the security subject matter expert (SME) and will manage the execution of systems security activities for multiple applications.
• Provide guidance to teams on the A&A Process to include: related security documentation such as systems concept of operations (ConOps), system security design, implementation plans, operational procedures, and maintenance training materials.
• Provide support to development teams for mitigation and management of Plan of action and Milestones (POA&Ms)
• Conducts assessments of existing IT architecture for compliance with secu...