Job Description

Security Infrastructure Support Senior Security Engineer

Overview

cFocus Software is seeking a highly skilled Security Infrastructure Support Senior Security Engineer to design, implement, and support complex enterprise security solutions across hybrid (on-premises and cloud) environments for a federal agency. The Senior Security Engineer will lead initiatives focused on infrastructure hardening, SIEM integration, automation, and continuous compliance. This position requires deep technical knowledge, strong scripting skills, and proven experience with cybersecurity tools and federal security frameworks.

This is a full-time position that may require on-site support at federal agency locations in the Washington, D.C. metro area. Some telework flexibility may be available depending on mission requirements.   Must be able to obtain and maintain a Public Trust or higher-level security clearance as required by the agency.

Responsibilities

The Security Infrastructure Support Senior Security Engineer shall perform duties that include, but are not limited to:

• Design, configure, and maintain enterprise security systems to ensure compliance, reliability, and protection across hybrid environments.
• Deploy, manage, and optimize Security Information and Event Management (SIEM) platforms for log aggregation, correlation, and incident analysis.
• Integrate and normalize data sources for SIEM ingestion, developing and maintaining data pipelines across on-premises and cloud systems.
• Collaborate with engineering, DevOps, and application teams to integrate secure coding and automation practices within CI/CD pipelines.
• Apply deep knowledge of AWS, Azure, and O365 security operations, including migration and security hardening of cloud workloads.
• Develop and maintain infrastructure configurations for Windows and Linux servers, patching processes, and vulnerability remediation activities.
• Automate and streamline security operations using Python scripting and related automation frameworks.
• Implement and maintain virtualization technologies aligned with agency performance and compliance requirements.
• Perform continuous monitoring, incident response, and root cause analysis to improve system resilience and reduce risk exposure.
• Ensure compliance with FISMA, NIST SP 800-53, NIST SP 800-92, OMB M-21-31, and CDM frameworks through technical implementation and documentation.
• Collaborate with third-party vendors and cross-functional teams to troubleshoot issues, integrate solutions, and manage technical dependencies.
• Document architecture diagrams, standard operating procedures (SOPs), workflows, and system configurations for enterprise systems.
• Participate in security assessments, audits, and compliance reviews, providing expert input on remediation and control implementation.
• Mentor junior engineers and provide technical guidance across the security operations team.

Required Qualifications

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (preferred).
• 10+ years of experience designing, installing, maintaining, and supporting enterprise IT systems.
• 5+ years of experience at the Senior Engineer level or higher.
• 3+ years of specific experience with cybersecurity tools or SIEM implementation and administration.
• Experience with hybrid infrastructure environments (on-premises and cloud).
• Strong verbal and written communication skills for explaining complex security concepts to technical and non-technical audiences, including executive reporting.
• Demonstrated familiarity with cloud security concepts, services, and operations (AWS, Azure, O365), including migration and security hardening.
• Understanding and experience with core virtualization technologies and best practices.
• Familiarity with DevSecOps practices that incorporate secure code and automation into the build, test, and deployment processes.
• Strong scripting skills, particularly in Python, for automation and tool development.
• Experience managing a variety of enterprise cybersecurity tools, including SIEM platforms across hybrid environments.
• Experience onboarding and normalizing data, including configuring and integrating data pipeline solutions with SIEM platforms.
• Hands-on experience with federal cybersecurity compliance frameworks such as FISMA, NIST SP 800-53, NIST SP 800-92, OMB M-21-31, and CDM.
• Strong background in infrastructure management, including Windows/Linux servers, patching, vulnerability remediation, network appliances, and endpoint security.
• Strong problem-solving and analytical abilities for identifying and addressing security issues and root causes.
• Experience working with third-party vendors and cross-functional technical teams.

Preferred Qualifications

• Experience supporting DHS or other federal agencies in cybersecurity engineering or operations roles.
• Certifications such as CISSP, AWS Certified Security – Specialty, or Microsoft Certified: Azure Security Engineer Associate.
• Experience automating security monitoring and response processes using cloud-native and open-source tools.
• Familiarity with Zero Trust Architecture principles and implementation in hybrid infrastructures.
• Experience developing technical documentation, risk assessments, and compliance reports for executive and audit stakeholders.
• Excellent interpersonal and mentoring skills with the ability to lead and train other engineers.

About cFocus Software

cFocus Software Incorporated provides cybersecurity, cloud, and enterprise IT services to the federal government. Our team of experts delivers innovative solutions that protect critical assets and enable mission success.

Equal Employment Opportunity Statement

cFocus Software Incorporated is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Job Tags

Full time, Remote work,

Similar Jobs