Purpose and Impact:

Come be a part of an exciting and ever-changing program that provides a comprehensive range of state-of-the-art solutions and hands-on assistance in designing, implementing, managing, and sustaining operations across various network environments for our customer.

We provide an environment that fosters and supports innovation and valuing “outside-the-box” thinking to solve complex problems.  There are several training opportunities for team members that want to learn new technologies and stay current with their technical skillset.  We are a highly technical group and nurture growth, with a technical culture of cross-trained teammates with opportunities to develop additional skillsets.

Work Schedule: 8hrs/day, 5days per week, all onsite. Must be able to support Thursday night patching after hours (starting at 5pm). Occasional travel will be available.

Essential Responsibilities:

The Senior Security Engineer serves as a technical leader responsible for architecting, engineering, and sustaining enterprise‑grade security solutions across complex IT environments. This role is deeply hands‑on and requires the ability to design, build, implement, operate, and optimize security technologies that protect mission‑critical systems. The Senior Security Engineer provides technical direction, mentors junior engineers, and drives security innovation across the organization.

The engineer leads advanced research, evaluation, and integration of emerging security technologies to strengthen the enterprise security posture. They ensure that system hardware, operating systems, software, and security controls adhere to organizational policies, compliance frameworks, and mission objectives.

Key responsibilities include:

• Architect, implement, and maintain enterprise security controls and infrastructure components across Windows, Linux, and virtualized environments
• Lead the design, deployment, configuration, and lifecycle management of endpoint hardening and security tools (e.g., Ivanti, WSUS, Trellix, Tenable)
• Oversee patch management processes, including OS updates, third‑party software updates, and administrative tool upgrades
• Provide expert‑level troubleshooting, root‑cause analysis, and performance optimization for complex security and infrastructure issues
• Evaluate, recommend, and lead the adoption of new security tools, technologies, and methodologies
• Develop and maintain security documentation, including SSPs, RMF artifacts, engineering diagrams, and operational procedures
• Design and implement security requirements within enterprise business processes and technical architectures
• Support vulnerability assessments, interpret results, and develop risk‑based mitigation strategies
• Conduct system hardening, configuration baselining, and compliance scanning to ensure adherence to security standards
• Support and guide incident response activities, including forensic analysis and containment strategies
• Collaborate with cross‑functional teams to ensure security is embedded throughout system lifecycles
• Mentor and provide technical leadership to junior and mid‑level security engineers
• Contribute to long‑term security strategy, capability development, and continuous improvement initiatives
• Support a diverse set of enterprise networks and mission environments as part of a high‑performing security engineering team

Work Environment, Physical Demands, and Mental Demands: Standard work environment

Other Responsibilities:

Safety - Amentum enforces a safety culture whereby all employees have the responsibility for continuously developing and maintaining a safe work environment. As appropriate, each employee is responsible for completing all training requirements and fulfilling all self-aid/buddy aid responsibilities, participating in emergency response tasks and serving on safety committees and teams.

Quality - Quality is the foundation for the management of our business and the keystone to our goal of customer satisfaction. It is our policy to consistently provide services that meet customer expectations. Accordingly, each employee must conform to the Amentum Quality Policy and carry out job activities in compliance with applicable Amentum Quality System documents and customer contracts. Each employee must read and understand his/her Quality Management and Customer Satisfaction responsibilities.

Procedure Compliance - Each employee must read, understand and implement the general and specific operational, safety, quality and environmental requirements of all plans, procedures and policies pertaining to his/her job.

Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

As part of our commitment to maintaining a safe and compliant work environment, Amentum is a drug-free workplace and requires all personnel to comply with company drug and alcohol policies as a condition of employment.  Employment is contingent upon successful completion of the drug screening process.  Please note that this may include pre-hire screening for marijuana, as well as other federally controlled substances due to Amentum’s role as a federal contractor and trusted partner to the US Government.  

Minimum Requirements (Knowledge, Skills, and Abilities):

• 8+ years of progressive experience designing, engineering, and securing enterprise‑scale IT systems across complex network environments
• Expert‑level knowledge in architecting, deploying, and maintaining security infrastructure, including endpoint protection, vulnerability management, configuration management, and enterprise hardening solutions
• Demonstrated experience leading security engineering initiatives, including implementing advanced security controls, designing secure configurations, and overseeing patch and update strategies for Linux and Windows environments
• Extensive hands‑on experience with enterprise security tools, such as Ivanti, WSUS, Trellix, Tenable, or equivalent platforms, including tool integration, optimization, and lifecycle management
• Strong understanding of security frameworks and compliance requirements, such as NIST RMF, NIST 800‑53, STIGs, or equivalent federal/DoD standards
• Demonstrated ability to lead complex troubleshooting efforts, perform root‑cause analysis, and drive long‑term remediation strategies across enterprise systems
• Experience mentoring junior engineers, providing technical leadership, and contributing to team capability development
• Required IAT/Management‑level certification: one or more of the following — CASP+, CISSP, or equivalent senior‑level certification
• Required vendor certification in one or more relevant technologies (e.g., Microsoft, VMware, Cisco, NetApp, Pure Storage, HP, Dell, Linux+, Red Hat, HBSS, ACAS). Candidates without an active certification must obtain at least one within 6 months of hire

Clearance Required:

• TS/SCI

Minimum Years of Experience: 8+

Required Certifications: (if needed)

• Required IAT Certs: one or more of the following: CISM, CISSP, or equivalent senior-level certification
• Required vendor certification in one or more relevant technologies (e.g., Microsoft, VMware, Cisco, NetApp, Pure Storage, HP, Dell, Linux+, Red Hat, HBSS, ACAS). Candidates without an active certification must obtain at least one within 6 months of hire

Preferred Qualifications:

• Bachelors Degree
• Experience working within a SOC
• Prior Military experience

#javelin