Exostar · 9 hours ago
Information Security Engineer
Herndon, VA
Full-time
Hybrid
Senior Level
7+ years expExostar LLC is a company that creates exclusive communities within the Aerospace and Defense, Life Sciences, and other highly regulated industries for secure collaboration. They are seeking a Senior Information Security Engineer to assess risks, design secure architectures, and implement technical security controls across various environments.
Enterprise SoftwareCyber SecurityProperty & Casualty InsuranceInformation TechnologyCollaborationIdentity ManagementRisk Management
Responsibilities
Assess, design, and provide guidance on secure architectures for onpremise and cloud environments, including identity, access, network, and platform services
Engage directly with infrastructure, platform, and development teams to translate security requirements into implementable technical designs and controls
Provide hands-on engineering support for the implementation, validation, and remediation of technical security controls
Perform threat modeling and security risk assessments and coordinate actionable mitigation strategies
Provide engineering support for controls aligned to frameworks such as CMMC L2, FedRAMP Moderate, ISO/IEC 27001, IAM, SOC 2, etc
Write and maintain technical control descriptions based on current architecture and operational practices
Support and lead internal and external audits and assessments, including direct interaction with auditors and customers
Translate technical implementations into clear, accurate, and defensible audit evidence
Create, review, and update information security policies, standards, procedures, and guidelines to reflect actual system architecture and operations
Identify, assess, and communicate security risks to technical and non-technical stakeholders
Track remediation efforts and drive issues to closure across multiple teams
Evaluate emerging technologies, regulatory changes, and industry trends to assess potential impact to Exostar’s security posture
Provide subject matter expertise for Identity and Access Management (IAM) and Public Key Infrastructure (PKI) systems
Support auditing and compliance of PKI, identity federation, and authentication services
Collaborate on governance documentation related to identity, trusted roles, and access control programs
Qualification
Required
7+ years of demonstrated IT Security engineering experience providing guidance to technical teams
5+ years of demonstrated experience performing threat modeling and security risk assessments
5+ years of demonstrated network engineering and administration experience
5+ years of demonstrated experience designing and implementing security controls in onpremise and cloud environments
Strong experience with secure SDLC practices in Agile and DevSecOps environments
Demonstrated experience authoring SSPs, POA&Ms, and technical audit documentation
Significant experience working with ISO/IEC 27001/27002, NIST SP 800171, and NIST SP 80053
Experience supporting and participating in audits and assessments (e.g., SOC 2, ISO 27001, Cyber Essentials)
Strong written and verbal communication skills with the ability to explain technical concepts to auditors, leadership, and business stakeholders
Significant experience working in Jira and Confluence
Ability to pass background investigation to attain and maintain Trusted Role access to company systems
Technical Experience / Familiarity: Core network services (HTTP, SMTP, DNS) and supporting server technologies
Encryption technologies (IPSec, SSL/TLS)
Network security controls (firewalls, proxies, NAC, phishing prevention, etc.)
SIEM and logging architectures; familiarity with FIM technologies
Windows Active Directory and domain services
Preferred
CMMC CCA or CCP
FedRAMP auditor / implementer
CISSP and other similar technical certifications
Experience with Governance, Risk, and Compliance tools
Cloud computing and architecture
Windows Domains and Active Directory
End-point Protections (HIPS/HIDS)
Web Application Programming (Java and related technologies)
Knowledge and demonstrated experience designing multi-tier, highly available, multi-threaded, scalable architectures
Secure development frameworks (e.g. OWASP SAMM, Microsoft Security Development Lifecycle, IBM Secure Engineering Framework, etc.)
Public Key Infrastructure (PKI)
Identity Federation Technologies (SAML, etc.)
Business Continuity and Disaster Recovery planning
SharePoint
Data Loss Prevention (DLP)
Data Labeling and Information Rights Management
S/MIME-based Secure Email
Windows Domains and Active Directory
Identity Access Management (IAM)
Benefits
Employee development: we promote internally and provide training and educational assistance
Fun, engaged workplace, with social and community-building events
Comprehensive benefits and flexible time off plans
Company
Exostar
Exostar is a leader in secure cloud-based solutions that improve collaboration,
201-500 employees
H1B Sponsorship
Exostar has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (1)
2023 (2)
2020 (1)
Funding
Current Stage
Growth StageTotal Funding
$15MKey Investors
Merck Global Health Innovation Fund
2023-09-26Acquired
2015-10-30Series Unknown· $15M
Leadership Team
Rick Simpson
Chief Financial Officer
Derrick Reig
Chief Revenue Officer
Recent News
Company data provided by crunchbase