Apply on Employer Site

Chromalloy · 2 hours ago

Senior Security Engineer

Palm Beach Gardens, FL

Full-time

Hybrid

Senior Level

$121K/yr - $159K/yr

7+ years exp

Chromalloy is a global engineering & solutions company specializing in aftermarket parts and repairs for aircraft engines and gas turbines. They are seeking a highly experienced Senior Security Engineer to lead advanced cybersecurity initiatives, focusing on data protection and secure infrastructure in aerospace and defense environments.

AerospaceEnergyIndustrialMechanical EngineeringMilitaryTechnical Support

No H1B

U.S. Citizen Only

Responsibilities

Serve as a technical lead and subject matter expert for cybersecurity projects and initiatives

Design, implement, and maintain security architectures that align with business and regulatory requirements

Collaborate with cross-functional teams including IT, engineering, legal, and compliance to ensure security is embedded across systems and processes

Conduct risk assessments and threat modeling to identify vulnerabilities and recommend mitigation strategies

Develop and maintain security plans, and procedures, support maintenance of policies and standards

Monitor and respond to security incidents, ensuring timely resolution and documentation

Mentor junior security analysts and leads and contribute to team development and knowledge sharing

Stay current with emerging threats, technologies, and industry best practices

Support audits, assessments, and reporting for internal and external stakeholders

Advocate for security awareness and training across the organization

Lead the evaluation, selection, and deployment of modern Data Loss Prevention (DLP) solutions to replace legacy systems, ensuring alignment with compliance and business needs

Develop and enforce security policies and controls for OT environments, including ICS/SCADA systems, with a focus on secure integration in aerospace and defense manufacturing settings

Conduct forensic analysis of security incidents, support internal investigations, and maintain proper chain-of-custody and evidence handling procedures

Design and manage enterprise-wide digital signature and secure email encryption solutions to protect sensitive communications and intellectual property

Lead efforts to harden systems across the enterprise, with a strong focus on applying DISA STIGs and other industry benchmarks to ensure secure configurations for Windows and Linux OSes, networking with PAN firewalls and GlobalProtect VPN, O365, TeamCenter, and other organizational systems

Lead the transition from legacy data classification tools to modern, automated classification and labeling solutions that support compliance with NIST 800-171 and ITAR

Drive the design and implementation of Zero Trust principles across identity, device, network, and application layers

Architect and deploy SASE solutions to unify networking and security services, enabling secure access for distributed and hybrid workforces

Ensure security controls and processes align with NIST 800-171 requirements, supporting DFARS compliance and audit readiness

Configure and manage log sources, syslog servers; assist with automation development, conduct regular reviews of log sources and event IDs

Qualification

NIST 800-171 complianceCybersecurity engineeringSystems hardeningDigital forensicsOperational Technology governanceData Loss Prevention (DLP)Zero Trust ArchitectureScripting skillsRelevant certificationsCommunicationCross-functional collaboration

Required

Bachelor's or Master's degree in Cybersecurity, Computer Science, or a related field

7+ years of experience in cybersecurity engineering roles, preferably in aerospace, defense, or other regulated industries

Deep understanding of NIST 800-171, DFARS, and ITAR compliance requirements

Extensive track record as a technical lead and subject matter expert for implementation of cybersecurity projects and initiatives

Proven experience in systems hardening, including application of DISA STIGs and CIS benchmarks

Hands-on experience with forensic tools and investigative methodologies

Familiarity with OT environments and associated security challenges

Experience with enterprise DLP, classification, and encryption technologies

Excellent communication, documentation, and cross-functional collaboration skills

Relevant certifications (e.g., CISSP, GIAC, GCFA, CEH, CKS) are highly desirable

Preferred

Experience with cloud-native security tools (AWS, Azure) as well as legacy on-premises solutions

Knowledge of Zero Trust and SASE frameworks

Scripting and automation skills (Python, Bash, etc.)

Experience working with government or defense contractors

Benefits

Comprehensive and flexible benefit options starting on day one, including medical, dental, vision, EAP, wellness incentives, and 401(k) with employer matching.

Development & progression opportunities for every employee – regular performance conversations, training and development curriculum, and engineering fellowship programs.

Paid time off, including vacation, sick time, paid holidays, and parental leave—all eligible on your first day of employment!

Competitive pay, including eligibility for quarterly and annual bonuses, depending on role and site.

Company

Chromalloy

Glassdoor3.5

Chromalloy offers services in gas and turbine engine components for commercial airlines, the military, and energy companies.

Founded in 1950

Palm Beach Gardens, Florida, USA

1001-5000 employees

https://www.chromalloy.com

Funding

Current Stage

Late Stage

Total Funding

unknown

2022-09-03Acquired

Leadership Team

Russ Shelton

Executive Vice President Business Development

Recent News

Investing.com

Top Aerospace & Defense Stocks for 2026: Jefferies’ Favorite Picks

2026-01-11

Newswire

Chromalloy Appoints Kristen Samson as Vice President of Marketing & Communications

2026-01-09

Newswire

Chromalloy Honored With 2026 Aviation Week Laureate for MRO Leadership

2025-11-14

Company data provided by crunchbase