Information Security Engineer

Aretec Inc

  • Camp Springs, MD
  • Permanent
  • Full-time
  • 15 days ago
  • Apply easily
Us: At Aretec, Inc., we are catalysts for change within the federal government landscape. Specializing in advanced analytics, machine learning, data analysis, cybersecurity, and business optimization, we empower federal agencies to achieve their most critical missions. As a premier partner and prime vendor, we deliver innovative, high-impact solutions that address complex challenges and drive national progress. Our commitment to excellence and innovation positions us at the forefront of transforming governmental operations, enhancing efficiency, and making a lasting difference in the lives of citizens.You: You are a highly skilled and motivated Information Security Engineer with a deep understanding of cybersecurity concepts, security engineering, and vulnerability management. You thrive on analyzing enterprise-wide security data, identifying weaknesses, and developing effective remediation strategies. You excel in applying analytical and computational techniques to solve complex problems, and you can communicate technical solutions to both technical and non-technical stakeholders. With strong experience in security scanning tools, cloud environments, and federal cybersecurity frameworks, you are ready to support mission-critical initiatives that safeguard national security.What We're Looking For: We are seeking an Information Security Engineer who will play a pivotal role in supporting our federal partner's continuous monitoring and vulnerability management efforts. In this role, you will:
  • Leading Innovative Projects: Review and analyze the output of Tenable.io and other security scanning tools, identifying commonalities and trends in vulnerabilities to develop efficient remediation strategies.
  • Collaborative Solution Development: Work closely with ISSOs, IT project managers, and other stakeholders to recommend and implement effective security solutions.
  • Strategic Impact: Develop enterprise strategies for remediation, perform process and data modeling, and leverage continuous monitoring dashboards (Splunk, etc.) to correlate events across systems.
  • Stakeholder Engagement: Coordinate with federal partners to document weaknesses, risks, and mitigation strategies in Plans of Action & Milestones (POA&Ms).
  • Mentorship and Leadership: Identify and advise on process improvements, enhance toolsets, and contribute to the maturity of the client's Continuous Monitoring Program.
The Skills We're Looking For:
  • Bachelor's degree in Information Technology, Cybersecurity, or a related field
  • Minimum of 10 years of experience in information security, security engineering, or a related role
  • Experience with AWS, Azure, or Google Cloud tools
  • Experience administering or evaluating technologies in Windows, CentOS, Red Hat Enterprise Linux, or Ubuntu
  • Hands-on experience with Tenable.io, Nexus IQ Server, and Splunk Enterprise (v9.2+)
  • Solid understanding of cybersecurity concepts and NIST SP 800-37 RMF
  • Ability to communicate complex technical concepts to both technical and non-technical audiences
  • Prior experience supporting DHS or other federal clients (preferred)
  • Must be a U.S. Citizen and eligible for a Public Trust clearance
  • Certifications preferred: CISSP, CISM, CEH (or equivalent)
The Expectations of the Job:Day One:
  • Orientation into Aretec's mission, values, and client engagement standards
  • Gain access to security scanning, monitoring, and reporting tools
  • Begin reviewing enterprise security outputs to familiarize yourself with system baselines
Day Thirty:
  • Actively participate in vulnerability analysis and remediation recommendations
  • Leverage Splunk dashboards and other tools for cross-system monitoring
  • Support coordination with ISSOs to ensure accurate POA&M documentation
Day Sixty:
  • Lead development of enterprise remediation strategies for identified vulnerabilities
  • Identify process improvements to strengthen current scanning and monitoring capabilities
  • Engage federal partners to provide technical guidance and strategic input
Day Ninety:
  • Take ownership of enterprise vulnerability management strategies and reporting
  • Drive efficiency improvements across remediation processes
  • Mentor peers and contribute to continuous monitoring program maturity
Additional Notes:Benefits At Aretec, we believe that our employees are our greatest asset. We offer a comprehensive benefits package designed to support your health, well-being, and professional development:
  • Health, Dental, and Vision Insurance
  • 401(k) Plan with Employer Match
  • Certification Stipends
  • Professional Development Opportunities
  • Flexible Work Arrangements, including remote options
  • Paid Time Off and Holidays
Citizenship Requirement Due to the nature of our federal contracts, only sole U.S. Citizens will be considered for this position. Candidates must be able to obtain and maintain a Public Trust clearance.Equal Opportunity Employer Aretec, Inc. is proud to be an Equal Opportunity Employer. We are committed to creating an inclusive environment for all employees and applicants. All qualified individuals will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other legally protected characteristics.

Aretec Inc