Information Systems Security Engineer - Senior jobs in United States
cer-icon
Apply on Employer Site
company-logo

Amentum · 7 hours ago

Information Systems Security Engineer - Senior

positionWarrenton, VA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$160K/yr - $185K/yr
date8+ years exp

Amentum is seeking a Senior Information Systems Security Engineer to join their dynamic team of IT professionals dedicated to fostering a positive and collaborative work environment. The role involves designing and maintaining endpoint security systems, managing vulnerability assessments, and integrating security tools to enhance incident response capabilities.

Mechanical EngineeringSecurityTechnical Support
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Endpoint Security Engineering (Trellix/ePO)
Ecosystem Management: Expertly design, configure, and maintain Trellix components (ePO, Trellix Agent, DLP, HIPS, Policy Auditor, ABM, and VSE) across Windows and Linux environments
Policy Development: Author and deploy endpoint security policies for ENS modules (Threat Prevention, Firewall, Web Control) based on DISA STIGs and organizational needs
Threat Mitigation: Develop custom signatures, rules, and exceptions to address zero-day threats and specific operational requirements
Operational Continuity: Validate custom exceptions to ensure uninterrupted operation of mission-critical processes without compromising compliance
Vulnerability Management (ACAS/Nessus)
Architecture & Strategy: Design enterprise-wide vulnerability scanning strategies and manage the deployment of Security Centers and Nessus scanners
Advanced Troubleshooting: Serve as the final escalation point for complex scan issues, credentialing problems, and system communication failures
Risk Reporting: Configure automated reporting of compliance data to continuous monitoring systems and risk-scoring repositories
Security Integration & Engineering
Tool Orchestration: Integrate Trellix and ACAS with tools such as Splunk, XSOAR, and ServiceNow to automate workflows and enhance incident response
RMF Support: Provide authoritative recommendations and ACAS-generated artifacts to support the Assessment and Authorization (A&A) process and RMF packages for Authority to Operate (ATO)
Strategic Oversight: Lead the maintenance and scalability of test, development, and operational environments, collaborating with Network and DevSecOps teams to enhance resilience
Multi-Tier Support: Deliver Tier 1–3 maintenance and incident response for the full cybersecurity portfolio (ACAS, Trellix, Splunk, XSOAR)
Compliance Mastery: Deep understanding of DISA STIGs, NIST 800-53, and the Risk Management Framework (RMF)

Qualification

TrellixNessusSplunkRisk Management FrameworkCybersecurity CertificationsRHEL AdministrationSOAR AutomationAttention to DetailCritical ThinkingOrganizational SkillsProblem-Solving SkillsTeam Collaboration

Required

Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
Knowledge and experience with NESSUS/ACAS and Trellix administration
Experience in Splunk role while working in a Splunk Clustered Environment
Must be able to work a 40-hour work week, normally Monday through Friday
Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
Ability to travel (5-10%) primarily within 75 miles
Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
Exceptional attention to detail; excellent verbal and written communication skills; strong critical thinking, organizational, time-management, and problem-solving skills
Ability to work both independently and as part of a team in a dynamic environment
Bachelor's Degree in a related field (Cyber and/or Engineering)
8 years of relevant experience
Must possess, or be able to obtain, one of the following 8140 IAT Level II or III baseline certifications before a start date: Level II certifications include – CCNA Security, GISCP, GSEC, Security+ CE, SSCP; Level III certifications include – CASP CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH
Trellix: 5 years (Required)
Security clearance: Top Secret (Required)

Preferred

RHEL Administration: Proficient understanding of Red Hat Enterprise Linux (RHEL) 8 and 9, including the ability to monitor and maintain cybersecurity tools at the OS level
SOAR Automation: Experience managing the full lifecycle of XSOAR infrastructure, including building complex playbooks, custom scripts, and integrations to automate cyber workflows
Splunk O&M: Proficiency in Splunk Operations & Maintenance, including managing distributed components, index management, version upgrades, and creating custom dashboards via the Monitoring Console

Benefits

401(k)
401(k) matching
Dental insurance
Employee assistance program
Employee discount
Flexible schedule
Health insurance
Health savings account
Life insurance
Paid time off
Parental leave
Professional development assistance
Relocation assistance
Retirement plan
Tuition reimbursement
Vision insurance

Company

Amentum

twittertwittertwitter
Glassdoor3.5
company-logo
Amentum is a technology and engineering company for security, defense, and energy.
dateFounded in 2020
location
Germantown, Maryland, USA
people-size10001+ employees
web-link
https://www.amentum.com/

Funding

Current Stage
Public Company
Total Funding
$321.16M
2025-03-12Post Ipo Secondary· $321.16M
2024-09-27IPO
2020-01-01Private Equity

Leadership Team

leader-logo
Ajay Nagar
Vice President
linkedin
leader-logo
Darren Burton
Chief People Officer
linkedin

Recent News

Business Wire
Amentum-led Consortium Wins $207 Million Contract from Dutch Government for New Nuclear Program
2026-01-22
thefly.com
Amentum, Rolls-Royce Small Modular Reactor partner on low-carbon energy
2026-01-20
Business Wire
Amentum and Rolls-Royce SMR Partner on Building First Small Modular Reactors in the UK and Czech Republic
2026-01-20
Company data provided by crunchbase