Information Systems Security Engineer (ISSE)
The Swift Group, LLC · Tysons Corner, VA · Yesterday
Information Technology$50k–$290k/yrFull-time
Responsibilities
- Design, develop, and maintain reusable frameworks, libraries, APIs, and reference implementations that integrate applications with zero trust identity and access services
- Create developer documentation, integration guides, and best practices to streamline adoption of security services by product teams
- Implement and support fine-grained authorization approaches (e.g., entitlements, row-level security, ABAC)
- Collaborate with architects and platform engineers to ensure security services meet performance, usability, resilience, and compliance objectives
- Conduct design and code reviews; coach development teams on secure coding, identity integration, and threat-informed design patterns
- Evaluate emerging zero trust and identity/access technologies and recommend improvements to architecture, tooling, and developer experience
Requirements
- US citizenship with an active TS/SCI with CI Polygraph required
- Minimum 7 years of professional experience in software engineering, security engineering, or closely related roles
- Bachelor’s degree in Computer Science, Engineering, or a related field (experience may be considered in lieu of a degree)
- Hands-on experience designing and deploying application components on AWS in IL6+ classified environments
- Proven experience implementing modern authentication and authorization standards (OAuth 2.0, OpenID Connect, SAML)
- Expertise with fine-grained access control models (entitlements, row-level security, ABAC)
- Strong proficiency in at least one programming language (Java, Go, or Python) for building frameworks, SDKs, and platform services
- Working knowledge of zero trust architecture and principles, including identity-centric security and least-privilege access
- Experience authoring developer documentation, integration guides, and reference implementations
- Solid understanding of secure coding practices, SDLC security, and integrating security controls into CI/CD pipelines
Desired Experience
- Experience with enterprise identity platforms (e.g., AWS Cognito, Azure AD, Keycloak) and policy engines (e.g., OPA, Cedar)
- Background with authorization-as-a-service patterns, token exchange, and policy-based access control in microservices
- Familiarity with DISA STIGs/SRGs and compliance workflows in classified environments
- Contributions to internal SDKs, developer portals, or platform engineering products that improve developer productivity
Benefits
Comprehensive benefits including but not limited to: healthcare, wellness, financial, retirement, education, and time off benefits.