Jobs · Information Technology · Alabama

Information Security Engineer

Trideum Corporation · Huntsville, AL · 6 days ago
On-siteInformation TechnologyFull-time

About the role

Trideum Corporation is a 100% employee-owned company, committed to embracing the world’s toughest challenges with a servant’s heart. Through dedicated hard work and commitment, we provide distinctive quality and unparalleled customer service in all aspects of our business. We also know that our employees are the key to our success, and it is our mission to take care of them so they can take care of our customers and communities where we live, work, and play.

Position Summary

Trideum is seeking a skilled and detail-oriented Information Security Engineer at our Huntsville, Alabama headquarters to plan, design, implement, and sustain enterprise-wide security solutions across our corporate environment in support of Trideum's Department of Defense and government contracting mission. This role is responsible for security architecture, compliance posture, information and data security, technical documentation, and classified system authorization—operating as a key individual contributor within a small cyber team responsible for Trideum's entire enterprise security program. This is an onsite position at our headquarters office in Huntsville, AL.

What You’ll Do

  • Architect and maintain security hardened baselines and controls for systems, endpoints, networks, cloud workloads, and containers in alignment with Cybersecurity Maturity Model Certification (CMMC), National Institute of Standards and Technology (NIST), Risk Management Framework (RMF), ISO 27001, SOC 2, and Center for Internet Security (CIS) standards
  • Design and maintain security architecture artifacts including network, system, component, and data flow diagrams aligned to the organization's compliance and operational requirements
  • Design, configure, and maintain Microsoft Purview information protection solutions within Microsoft 365 GCC High—including sensitivity labels, Data Loss Prevention (DLP) policies, and custom Sensitive Information Types (SITs)—to classify and protect Controlled Unclassified Information (CUI) across the enterprise
  • Administer Purview risk and compliance capabilities—Insider Risk Management, Communication Compliance, eDiscovery, Information Barriers, Records Management, and Compliance Manager—to support governance, audit readiness, and regulatory obligations
  • Sustain and mature Trideum's CMMC compliance posture through ongoing control monitoring, internal assessments, gap analyses, and audit readiness activities
  • Maintain and document compliance documentation—security policies, standards, procedures, evidence packages, and assessment artifacts—required to satisfy CMMC, RMF, and applicable regulatory frameworks and support internal reviews and third-party audits
  • Perform security impact analyses on change requests—assessing risk, documenting findings, and providing recommendations for approval or denial—for manager review and final determination
  • Leverage the full Microsoft security stack—Defender, Microsoft Sentinel, Entra ID, Intune, Purview, and Azure Log Analytics—to validate control coverage and inform architecture decisions
  • Conduct threat modeling of services, applications, and infrastructure tied to organizational risk and data classification; define how new systems and interfaces impact the current security posture
  • Support Security Operations Center (SOC) functions through Security Information and Event Management (SIEM) rule development, threat hunting, incident triage, and root cause analysis alongside the Cybersecurity Analyst
  • Coverage and inform architecture decisions

Requirements and Qualifications

  • Educational and Certifications:
    • U.S. citizenship and must possess an Active Secret Clearance
    • Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or related field is preferred
    • Relevant certifications desired: SC-400 (Microsoft Purview Information Protection), AZ-500 (Microsoft Azure Security Engineer), CompTIA Security+, GIAC Security Architect (GDSA), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM)
  • Experience:
    • 2–5 years of experience in information security, cybersecurity engineering, or a compliance-focused technical role
    • Hands-on experience with two or more Microsoft 365 security tools: Defender, Microsoft Sentinel, Entra ID, Intune, Purview, or Azure Log Analytics
    • Familiarity with vulnerability management tools such as Tenable or Microsoft Defender Vulnerability Management
    • Familiarity with Enterprise Mission Assurance Support Service (eMASS) for RMF package development, control implementation, and system authorization workflows
  • Technical Skills:
    • Proficiency applying security controls across on-premises, hybrid, cloud, and containerized environments
    • Proficiency with Microsoft Purview information protection and governance solutions within a GCC High environment, including DLP, sensitivity labeling, Insider Risk Management, and CUI data protection
    • Strong technical writing skills for security documentation, architecture artifacts, and compliance evidence

Benefits

We Take Care of Our People Whether You’re Looking To Launch a New Career Or Grow An Existing One, Trideum Is The Type Of Company Where You Can Balance Great Work With Great Life Because We Believe That Taking Care Of Our People Is The Right Thing To Do. Trideum Offers Competitive pay based on the work you do here and not your previous salary.

  • Traditional benefits such as medical, dental, vision, life, disability, and 401k matching.
  • Employee Stock Ownership Plan (ESOP).
  • Paid leave and the ability to cash out leave.
  • Free access to certified financial planners, wellness and support services, and discount programs.
  • Education assistance and professional development opportunities.
  • And much more.

Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity, or any other characteristic protected by law. People with disabilities who need a reasonable accommodation to apply or compete for employment with Trideum may request such accommodation(s) by contacting Human Resources at 256.704.6123 or HR@trideum.com.

Similar jobs

Information Security Engineer

Allspring Global InvestmentsMilwaukee, WI· 3 wk ago
Information Technology$70k–$95k/yrapply on careers-allspringglobal.icims.com

Information Security Engineer

Jefferson County, ColoradoGolden, CO· 1 wk ago
Information Technology$118k–$122k/yrapply on jefferson.wd5.myworkdayjobs.com