Virtru Security Engineer
About the role
You will support the cyber architecture development, implementation, and sustainment across multiple networks of different classification levels. You’ll interface with stakeholders and engineering teams to delve into the details and dependencies of critical processes and users’ roles within them. You'll lead security compliance initiatives and automation of control validation across our cloud environments using Infrastructure as Code, including Terraform or Ansible. You'll build security automation for CI/CD pipelines, including vulnerability scanning and compliance validation. You'll conduct regular security reviews and risk assessments of cloud infrastructure and applications. You'll collaborate with development and operations teams to implement security controls without impeding velocity. You'll develop and maintain security monitoring solutions and respond to security events. You'll create and maintain security documentation, training, and guidelines for engineering teams.
Responsibilities
- Support the cyber architecture development, implementation, and sustainment across multiple networks of different classification levels.
- Interface with stakeholders and engineering teams to delve into the details and dependencies of critical processes and users’ roles within them.
- Lead security compliance initiatives and automation of control validation across our cloud environments using Infrastructure as Code, including Terraform or Ansible.
- Build security automation for CI/CD pipelines, including vulnerability scanning and compliance validation.
- Conduct regular security reviews and risk assessments of cloud infrastructure and applications.
- Collaborate with development and operations teams to implement security controls without impeding velocity.
- Develop and maintain security monitoring solutions and respond to security events.
- Create and maintain security documentation, training, and guidelines for engineering teams.
Requirements
- 3+ years of experience with designing, deploying, and configuring data security solutions.
- Experience with data security tools, such as Virtru.
- Experience with data-centric security models, including maintenance.
- Experience designing, implementing, configuring, operating, or testing IT systems or security infrastructure.
- Experience deploying and troubleshooting Kubernetes and Docker.
- Knowledge of Zero Trust principles and solutions.
- Ability to travel to CONUS and OCONUS locations up to 20% of the time.
- Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.
Qualifications
- HS diploma or GED.
- Nice if you have: Experience with Data Security Posture Management (DSPM), such as Varonis and BigID; Experience working in federal, DoD, or IC agency environments; Experience with Titus Data Classification; Experience in security automation using Terraform or Ansible, and languages, such as Go, Python, or Node.js; Experience with infrastructure scanning tools and security monitoring solutions, such as CNAP, SIEM, CSPM, and CWPP; Knowledge of federal information security policies, standards, procedures, directives, frameworks, federal security authorizations, assessment, and risk management processes for enterprise systems.
Skills
- Experience with data security tools, such as Virtru.
- Experience with data-centric security models, including maintenance.
- Experience designing, implementing, configuring, operating, or testing IT systems or security infrastructure.
- Experience deploying and troubleshooting Kubernetes and Docker.
- Knowledge of Zero Trust principles and solutions.
- Ability to travel to CONUS and OCONUS locations up to 20% of the time.
Benefits
- Health, life, disability, financial, and retirement benefits.
- Paid leave.
- Professional development.
- Tuition assistance.
- Work-life programs.
- Dependent care.
Pay
The projected compensation range for this position is $99,000.00 to $225,000.00 (annualized USD).
Schedule
Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits.