Illumio Zero Trust Segmentation Platform Engineer - TS/SCI CI Poly jobs in United States
cer-icon
Apply on Employer Site
company-logo

GuidePoint Security · 4 weeks ago

Illumio Zero Trust Segmentation Platform Engineer - TS/SCI CI Poly

positionReston, VA
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. This role requires an experienced Illumio Zero Trust Segmentation Platform Engineer to lead the design, implementation, and operational support of the enterprise micro-segmentation strategy, influencing architectural decisions and safeguarding mission-critical systems.

Cyber SecurityInformation TechnologySecurity
check
Comp. & BenefitsbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Lead the design, deployment, configuration, and optimization of Illumio Core and Illumio Edge across on-premises, virtualized, and cloud environments
Architect and implement Zero Trust Segmentation policies, including application dependency mapping, labeling frameworks, enforcement boundaries, and zone-based controls
Develop Illumio workflows, runbooks, dashboards, and segmentation models for enterprise workloads and critical applications
Integrate Illumio with SIEM/SOAR, CMDB, C2C, vulnerability scanners, cloud-native controls, and enterprise automation pipelines
Conduct traffic flow analysis using Illumio VEN telemetry and build policy recommendations to reduce attack surface and limit east-west movement
Troubleshoot system performance, VEN installation issues, policy conflicts, and platform health across distributed infrastructure
Partner with application owners to onboard workloads, validate segmentation plans, and support change management processes
Perform lifecycle management: upgrades, health checks, certificate operations, and policy governance
Collaborate with security architects to align Illumio policy models with broader Zero Trust and NIST 800-207 strategies
Contribute to architectural standards, documentation, and enterprise security playbooks

Qualification

Illumio Adaptive Security PlatformZero Trust SegmentationCloud environments AWSCloud environments AzureCloud environments GCPLinux/Windows systemsNetwork securityInfrastructure automation toolsREST APIsAnalytical skillsIllumio certificationsCMDB systemsProblem-solving skills

Required

5+ years in cybersecurity, cloud security, or infrastructure engineering
3+ years of expertise in Linux/Windows systems, virtualization (VMware, Hyper-V), and cloud environments (AWS, Azure, or GCP)
2+ years of experience with network security (firewalls, routing, segmentation models, TCP/IP)
2+ years of experience developing and deploying solutions for highly regulated mission-critical environments (finance, healthcare, federal, or energy)
1+ year experience with infrastructure automation tools (Ansible, Terraform, or similar)
1+ year experience with REST APIs, scripting (Python, Bash, PowerShell), or automation frameworks
Active TS/SCI clearance; willingness to take a polygraph exam
Associate's degree and 5+ years of experience supporting IT projects and activities, Bachelor's degree and 3+ years of experience supporting IT projects and activities, or Master's degree and 1+ years of experience supporting IT projects and activities. Years of experience may be accepted in lieu of degree
Active DoD 8570.01-M Information Assurance Technician (IAT) Level II Certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND
Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification, including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND certification within 30 days of start date

Preferred

Prior Hands-on experience deploying and managing Illumio Adaptive Security Platform (ASP) in enterprise environments
Illumio certifications (e.g., Illumio ASP Professional or Expert)
Experience with CMDB systems (ServiceNow), SIEM/SOAR tools, or vulnerability management platforms
Strong understanding of Zero Trust principles, micro-segmentation, and lateral movement mitigation
Strong analytical and problem-solving skills with the ability to translate policies into technical controls

Benefits

Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)
Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
12 corporate holidays and a Flexible Time Off (FTO) program
Healthy mobile phone and home internet allowance
Eligibility for retirement plan after 2 months at open enrollment
Pet Benefit Option

Company

GuidePoint Security

twittertwittertwitter
company-logo
GuidePoint Security provides customized, innovative & valuable Information Security solutions that enable commercial federal organizations.
dateFounded in 2011
location
Herndon, Virginia, USA
people-size1001-5000 employees
web-link
https://www.guidepointsecurity.com/

Funding

Current Stage
Late Stage
Total Funding
unknown
Key Investors
Audax Private Equity
2023-10-10Private Equity

Leadership Team

leader-logo
Michael Volk
Chairman & CEO
linkedin
J
Joe Leonard
CTO & VP Security Strategy
linkedin

Recent News

CRN
Wiz Unveils Revamped Channel Program, Major Partner Services Push
2025-12-01
CRN
'Flexing' Its Muscle: CrowdStrike CEO Kurtz Says It's The First 'Hyperscaler Of Security'
2025-11-20
PR Newswire
Netenrich and GuidePoint Security Partner to Accelerate Autonomous Security Operations with Google Cloud
2025-11-19
Company data provided by crunchbase