Apply on Employer Site

National Geographic Society · 1 day ago

Security Engineer

Washington, DC

Full-time

Hybrid

Mid Level

$119K/yr - $125K/yr

3+ years exp

National Geographic Society is a renowned organization dedicated to amplifying its impact through technology. The Security Engineer is responsible for ensuring the confidentiality, integrity, and availability of systems, managing security measures, and coordinating with various teams on security assessments and compliance programs.

Non ProfitSocial ImpactWildlife Conservation

No H1B

Responsibilities

Implementation and management of on-premise and cloud/SaaS application security including application patching and hardening, access control and identity management, security assessments, and audits

Understanding industry best practices with OWASP top 10

Involved in risk and security assessments of new and existing applications developed by internal teams, third parties, or COTS providers

Participation with product teams to understand desired application capabilities and testing scenarios, in addition to perform regular DAST and SAST scans. Report and track results to the appropriate dev-ops or Product team

Administration and engineering of vulnerability management programs including scanning, patching/remediation, and penetration testing

Experience using assessment tools such as Burp, ZAP, Synk, and using Python scripting, ad-hoc computer emergency response and incident response teams, including tabletop exercises and disaster recovery testing

Administration and engineering of all network security hardware and software including firewalls, intrusion detection/prevention, information/event log management/analysis, antivirus/malware, and access control

Testing and screening security software and monitoring networks and systems for security breaches or intrusions, system performance analysis, system instrumentation/management, and change management activities

Engineering and management of encryption programs at both hardware and data layers including hard disk encryption, database/file/message encryption, key management, PKI, and certificate management

Management of regulatory compliance programs including PCI-DSS, GDPR, all routine and ad-hoc activities related to system and data integrity

Qualification

AWS securityGoogle Cloud securityVulnerability managementIncident responseApplication securityCompliance managementNetwork securityPython scriptingISO27001NISTCommunication skillsProblem solvingTeam collaboration

Required

Bachelor's degree in Computer Science or related discipline, or equivalent experience

Minimum of three years of experience with security administration as well as the implementation of appropriate data/host-based security layers within a heterogeneous computing environment

Comfortable working in cloud-first / consumerized technology environments and integrating into enterprise security programs

Background with Linux and open-source tools, as well as active security community participation

Strong experience with securing Amazon Web Services and Google Cloud Platform

Solid experience with securing endpoint devices including Windows, Mac OS X, Chrome, iOS, Android as well as IoT

Road knowledge of secure website code development/deployment including OWASP best practices, web SDLC and static/dynamic code scanning, data masking/obfuscation/tokenization, API, and encryption key handling

Basic development or scripting experience and skills

Ability to excel in a dynamic environment subject to changes in schedules and priorities while participating in multiple projects concurrently from inception to completion with limited management supervision

Excellent oral and written communication skills in addition to interacting positively and productively with teams across organizational lines with exceptional customer service, troubleshooting and problem solving skills

Familiarity with industry security practices, standards, and regulations such as ISO27001 and NIST

Benefits

Medical, dental, and vision insurance

Engaging and comprehensive wellness program

401(k) retirement savings plan with matching contributions after 6 months of employment

Flexible paid time off benefits with up to 22 days of paid annual leave per calendar year (15 days for new hires in their first year, prorated based on the number of pay periods remaining in the year) and 10 days of sick leave

12 paid holidays and a paid winter break between December 25 and 31 (May not apply to all roles that are required to work during high volume seasons or essential workers. Please check with the hiring manager for confirmation.)

Paid parental leave

Adoption and surrogacy expense reimbursement

Fertility benefits

Learning and development opportunities

Lifestyle Spending Account

Pet adoption assistance and insurance

Pre-tax transportation benefits with a generous employer subsidy

Employer-paid life insurance and disability benefit

A variety of National Geographic discounts and perks

Company

National Geographic Society

Glassdoor4.0

National Geographic Society has funded the best and brightest individuals dedicated to scientific discovery and understanding of our world.

Founded in 1888

Washington, District of Columbia, USA

501-1000 employees

https://www.nationalgeographic.org/society/

Funding

Current Stage

Late Stage

Total Funding

$3.5M

Key Investors

Principal FoundationAlfred P. Sloan Foundation

2025-11-12Grant· $0.5M

2012-01-01Grant· $1.5M

2008-01-01Grant· $1.5M

Leadership Team

Jill Tiefenthaler

Chief Executive Officer

Caroline Tippett

Vice President of Institutional Partnerships

Recent News

PR Newswire

Kevin J. Maroni Elected Chair of National Geographic Society Board of Trustees

2026-01-20

Morningstar.com

Principal Foundation Awards $500,000 Grant to Support National Geographic Society's Vision to Inspire Curiosity Through a Reimagined Museum Experience

2025-11-14

Business Wire

Forbright Bank Collaborates with National Geographic Society to Advance Conservation and Exploration

2025-11-05

Company data provided by crunchbase