101 to 125 of 861 Permanent Security Engineer Jobs

we're building the next generation of digital health - AI-powered, privacy-first, clinically backed - to help our users know their body better. The job Your role as the Security Engineer will be pivotal in supporting Flo Health's overall security posture. Working alongside our small but powerful Security team, you will help protect our applications … and infrastructure by managing vulnerabilities, responding to incidents, and implementing security measures at scale. You'll also contribute to developing custom tooling and embedding security best practices into our product lifecycle to ensure we stay ahead of emerging threats. What you will do: Developing regular touchpoints with key stakeholders. Manage Vulnerabilities: Triage newly discovered vulnerabilities, investigate potential risks … verify that fixes are effective, and drive remediation efforts across teams. Implement Security Measures: Support teams by configuring WAF rules, setting rate limits, and deploying additional controls to protect our environment. Develop Custom Security Tooling: Contribute to the creation and maintenance of in-house tools that enhance our security capabilities and automation. Product Security Support: Assist More ❯

Role overview: Working for a security vendor, the Security team are accountable for the company's Information Security, Security Architecture, Security Compliance, Security Awareness, Security Operations and Information Security Risk Management Activities. You'll work closely with development and operational teams to design, implement/recommend application security controls. This is … a new role for the company requiring a passion for cyber security and a hands-on development background to create and develop the application security capabilities as part of the SDLC. Ideally you will have a background in software development. Main tasks and responsibilities: Assess and identify gaps in current application security controls and provide guidance to … and services during the SDLC Provide guidance and support during development and rollout of new product features by understanding their requirements and model/evaluate likely threat vectors Provide security expertise and guidance to the Development Teams Promote a security-focused culture as part of the SDLC, educating DevOps teams in security best practices Conduct/Lead More ❯

About the role: Shape the Future of Cyber Security at Holland & Barrett At Holland & Barrett, we're not just a leading health and wellness retailer—we're a digital-first business that places customer trust at the heart of everything we do. We're looking for a Senior Security Operations Engineer to join our growing Cyber Security … about automation, cloud technology, and fast-paced problem-solving—and want your work to have a real impact—this could be the perfect role for you. Key Responsibilities Lead security incident response and threat detection efforts, prioritising the protection of customer data and experience Build automated detection and remediation workflows using SOAR, SIEM, and scripting (Python, SQL) Apply deep … cloud security knowledge (AWS, Azure) to secure ecommerce, mobile apps, APIs, and in-store systems Collaborate with Fraud and Customer Experience teams to mitigate risks such as account takeover and loyalty fraud Onboard key customer-facing and payment systems into the security monitoring platform Perform threat hunting and detection engineering to identify and address emerging risks Support security More ❯

Operations Security Engineer Country Intelligence Group is seeking a full-time Operations Security Engineer to support our client at Andrews Air Force Base in advancing cybersecurity and compliance objectives within a secure DoD environment. This position plays a critical role in the implementation and sustainment of security controls across information technology systems, guiding them through … the Risk Management Framework (RMF) process to achieve and maintain Authority to Operate (ATO). The successful candidate will assess vulnerabilities, enforce compliance using DISA Security Technical Implementation Guides (STIGs), and manage remediation plans in collaboration with technical teams and stakeholders. The Operations Security Engineer will be responsible for system hardening, conducting vulnerability assessments using ACAS and … the full life cycle of the Risk Management Framework (RMF) processes to achieve local and/or USAF Authority to Operate (ATO). • Implement operating system and network device security configuration in accordance with Defense Information Systems Agency (DISA) approved Security Technical Implementation Guides. • Perform vulnerability assessments using Assured Compliance Assessment Solution (ACAS), Defense Information Systems Agency (DISA More ❯

Helm Point Solutions is currently looking to hire a Senior Information System Security Engineer (ISSE) on a full-time, permanent basis. This position must be performed 100% onsite in the Columbia, MD area and requires an active TS/SCI w/Polygraph security clearance. Title: Information Systems Security Engineer (ISSE) Location: Linthicum Heights, MD … Clearance Required: TS/SCI with Polygraph Full-Time Fully Funded $130,000-$150,000 (Depending on Experience) Overview: Helm Point Solutions is a woman-owned cybersecurity and physical security firm supporting the nation's most critical systems and infrastructure. We're seeking experienced Information Systems Security Engineers (ISSEs) to support vital intelligence operations that directly impact national … security. You'll join a skilled cybersecurity team responsible for strengthening the systems that protect the country's most sensitive missions-delivering standardized, scalable security solutions across multiple teams and environments. What You'll Do: • Conduct security assessments to identify vulnerabilities and ensure IA compliance. • Define, verify, and validate system security requirements and contribute to the design More ❯

Position Title: Information Systems Security Engineer (ISSE) Security Clearance: Top Secret/SCI Eligible (verifiable in DISS) Position Location: Washington, D.C. (five days a week on-site) Employment Status: W2/Independent Consultant/1099 (Full-time) Travel: No Tentative Start Date: ASAP Compensation/Hourly Rate: Negotiated during the final interview Position Description: We are seeking … a highly skilled Information Systems Security Engineer (ISSE) to provide cybersecurity support as a member of a Risk Management Framework (RMF) Team. The candidate should possess an expert knowledge of RMF/Authority to Operate (ATO) package requirements and eMASS. The ISSE will support the Information System Security Manager (ISSM) and Program Manager (PM)/Information System … with NIST/CNSS guidance. The ISSE will guide efforts to obtain and maintain RMF ATO requirements within the customer's complex network infrastructure, spanning multiple platforms, networks and security enclaves. Job requirements (minimum): RMF and A&A Support: Provide Risk Management Framework (RMF) and Assessment and Authorization (A&A) support, including developing and maintaining systems' Authority to Operate More ❯

Overview: CDT is currently seeking a skilled Information System Security Engineer to execute the implementation of security standards to a diverse set of systems for Tampa, FL. An advanced understanding of engineering principles, as well as vulnerability, compliance, and patch management is required. A working understanding of the Radio Frequency spectrum is desired. Clearance Requirements: An active … Secret clearance is required, TS/SCI preferred. All candidates must be U.S. Citizens. Applicants who do not meet these requirements will not be considered. Responsibilities: • Lead the security design, configuration, hardening, testing and monitoring of a wide variety of moderately complex Information System technologies independently or as part of a larger design team. • Performs secure engineering and vulnerability … Virtual Operating Systems, Web Applications, Databases, and Networking Devices. Applies knowledge of current compliance standards and associated technical controls across these technologies. • Engages customer technical POCs as necessary throughout security architecture design and implementation activities. • Applies knowledge and understanding of Information Assurance (IA) concepts, practices, and procedures using established DoD security policies and standards to mitigate security More ❯

Cyber Security Engineer, Senior Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At Signature Federal Systems, you'll help protect our national security while working on innovative projects that offer opportunities for advancement. Currently, Signature is seeking a motivated, career and customer-oriented Cyber Security Engineer, Senior to join our team in the Chantilly, VA. Responsibilities include, but are not limited to: • Provide IA security requirements to update system requirement documents • Coordinate IA matters with other directorates and external partners as necessary • Perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information … Assurance (IA) standards and regulations and recommend mitigation strategies. • Validate and verify system security requirements definitions, analysis, and establish system security designs • Validate proposed software, hardware, firmware, and infrastructure comply with security guidelines, policies, and procedures • Apply knowledge of IA policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments. • Toolkits More ❯

Senior, FIPS 140 Security Engineer & CVP Certified Tester Work model: REMOTE Department: FIPS/Testing Location: Columbia, MD Role Type: Contract No Clearance Required Not available on C2C basis About Our Client Our client offers an exciting opportunity to work in the rapidly expanding IT Security field, integral to supporting national defense initiatives. This organization plays a … crucial role in ensuring national security by evaluating and validating IT security products that are deployed to facilitate secure communications for military and defense systems. You will join a team of industry experts and work with a wide range of Commercial Off-The-Shelf (COTS) products across various technology types in a hands-on lab environment. The company … fosters a supportive culture with performance-based career development, flexible hours, work-life balance, and opportunities for continuous learning and professional growth. Job Description As a FIPS 140 Security Engineer, you will be a vital member of a dedicated team focused on performing in-depth security evaluations and validation projects. Your day-to-day work will involve More ❯

The Information Systems Security Engineer (ISSE) shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies. Validates and verifies system security requirements definitions and analysis and establishes system security designs. Designs, develops, implements and/or … integrates IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements. Builds IA into systems deployed to operational environments. Assists architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of … Agency security policy and enterprise solutions. Supports the building of security architectures. Enforce the design and implementation of trusted relations among external systems and architectures. Assesses and mitigates system security threats/risks throughout the program life cycle. Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking More ❯

team to provide engineering support for Cyber Situational Awareness (SA), Cyber Command and Control (C2), Mission Assurance, and Homeland Defense. This includes conducting Agile software engineering in a Development, Security, and Operations (DevSecOps) environment, performing Cloud architectural design, operation, and administration functions, and cyber security and Risk Management Framework (RMF) support. Also included are rapid design, development, test … Range Complex (NCRC), surface and sub training systems, and Risk Management Framework (RMF) Support for Explosive Ordinance Disposal (EOD). On-site only, no telework. As a Network Cyber Security Engineer IV, you will be responsible for providing engineering, acquisition, logistical, and cybersecurity support to the Navy, Marine Corps, Special Warfare Coalition, and Joint Forces. You will work … on the Littoral Combat Ship mission on the Common Total Ship Computing Environment (TSCE). Design, implement, configure, and enforce security controls on network, hardware, and software components and devices. Implement STIGs and manage enterprise-level deployment of Active Directory. Perform vulnerability assessments using Assured Compliance Assessment Solution tools. Configure Cisco networking devices and utilize packet analyzer tools such More ❯

Position Overview: We are seeking a highly skilled Sr. System Security Engineer to join our team in Brunswick, GA. The ideal candidate will support the Server and Network Teams in tracking, documenting, planning solutions for, remediating, or requesting waivers for vulnerabilities and threats. This role involves working closely with ISSOs and CISO to provide status and progress reports … occasional travel and the ability to work in a fast-paced, dynamic environment. The candidate must be able to work collaboratively with various teams and stakeholders to ensure the security and integrity of the enterprise IT infrastructure. Key Responsibilities: Responsible for all enterprise IT infrastructure devices and software, review and guide testing/implementation of IT security guidance … from government, including: System Security Authorizations System Test and Evaluations Security Policies Hardening Guidelines NIST DOD STIGs Guidance from FLETC ISSOs or CISO Monitor audit logs in accordance with government policies and procedures. Guide and track security hardening of all hardware and software. Prepare configuration baseline documentation for customer approval. Verify installation of all required security More ❯

Minimum qualifications: Bachelor's degree in Computer Science, Information Security, a related field, or equivalent practical experience. 5 years of experience in security engineering, DevSecOps, or platform engineering roles. Experience with technical troubleshooting and scripting languages such as Python, Go, or Bash. Experience with Kubernetes security, including workload isolation, RBAC, and network policies, containerisation, orchestration, and Kubernetes … observability tools (e.g., Falco, Prometheus, Grafana). Experience with infrastructure-as-code and configuration management tools (e.g., Terraform, Helm, ArgoCD). United Kingdom Security Vetting Developed Vetting (DV) clearance. Preferred qualifications: Certifications in Security (e.g., GSEC, CISSP, CISM, OSCP). Experience with Kubernetes threat detection and anomaly detection. Experience with service mesh security concepts (e.g., Istio, Linkerd … and workload identity. Experience in detection engineering, logging pipeline development, or SIEM tuning in containerised environments. Experience in contributing to security-focused open-source projects or internal security platform tooling. About the job The UK Security Operations (SecOps) team in Google Public Sector delivers, operates and secures private cloud services. We aim to provide the flexibility, reliability More ❯

of the following: Netflow, Elastic, Kafka, Grafana, Prometheus, or Nexus Repo. • Demonstrate expertise in design and improvement of complex and geographically diverse enterprise networks. • Expert knowledge of US Army security requirements for network infrastructure. More ❯

automation and continuous delivery methods Proficiency in all aspects of the Software Development Life Cycle Advanced understanding of agile methodologies such as continuous integration and delivery, application resiliency, and security Demonstrated proficiency in software applications and technical processes within a technical discipline (e.g., public cloud, artificial intelligence, machine learning, mobile, etc.) In-depth knowledge of the financial services industry … more software and applications Ability to evaluate current and emerging technologies to recommend the best solutions for the future state architecture Preferred qualifications, capabilities, and skills Knowledge of network security architecture concepts, including topology, protocols, components, and principles would be advantageous Prior experience in cybersecurity design/engineering would be advantageous Prior experience in disaster and/or cyber More ❯

Network Security Engineer Location: Middlesex, Greater London - Hybrid We're hiring a Network Security Engineer to help secure hybrid environments across on-prem, cloud, and SD-WAN. This role requires hands-on experience with vulnerability remediation, network hardening, and secure architecture design. Key Responsibilities: Analyze and remediate network vulnerabilities (e.g., IP spoofing, open ports, legacy protocols … GCP). Support incident response teams in investigating network-related threats. Collaborate with compliance and penetration testing teams to ensure end-to-end remediation. Requirements: Proven experience in network security across hybrid environments. Deep understanding of protocols, firewalls, routing, and switching. Familiar with PCI-DSS, ISO 27001, and other compliance standards. Preferred certifications: CCNP Security, CISSP, AWS Security More ❯

Cloud Security Engineer – Contract (Inside IR35)/Hybrid We are seeking an experienced Cloud Security Engineer with a strong emphasis on AWS. The successful candidate will be responsible for designing, implementing, and maintaining secure cloud infrastructure, ensuring a robust security posture and supporting continuous delivery of our applications. Key Responsibilities: Design and implement secure AWS … cloud infrastructure, focusing on system architecture, Identity and Access Management (IAM), encryption, data protection, and network security. Collaborate with the Information Security and application teams to drive cloud security initiatives and align with the broader security strategy. Enhance and secure CI/CD pipelines across multiple applications by embedding secure coding and DevSecOps best practices. Develop automation … tools and scripts to streamline security processes, monitor key security metrics, and support operational demands. Stay up to date with emerging threats, industry trends, and mitigation techniques to continually improve cloud security controls. Required Skills and Experience: Minimum 3 years in a DevSecOps capacity and 5+ years in cloud security or engineering roles. Strong expertise in More ❯

Cloud Security Engineer – Contract (Inside IR35)/Hybrid We are seeking an experienced Cloud Security Engineer with a strong emphasis on AWS. The successful candidate will be responsible for designing, implementing, and maintaining secure cloud infrastructure, ensuring a robust security posture and supporting continuous delivery of our applications. Key Responsibilities: Design and implement secure AWS … cloud infrastructure, focusing on system architecture, Identity and Access Management (IAM), encryption, data protection, and network security. Collaborate with the Information Security and application teams to drive cloud security initiatives and align with the broader security strategy. Enhance and secure CI/CD pipelines across multiple applications by embedding secure coding and DevSecOps best practices. Develop automation … tools and scripts to streamline security processes, monitor key security metrics, and support operational demands. Stay up to date with emerging threats, industry trends, and mitigation techniques to continually improve cloud security controls. Required Skills and Experience: Minimum 3 years in a DevSecOps capacity and 5+ years in cloud security or engineering roles. Strong expertise in More ❯

Senior Security Operations Engineer Salary: £85,000-£95,000 + bonus + benefits Location: UK – Remote We’re working with worldwide leading retailer scaling its security function and is hiring a Senior Security Operations Engineer to lead the charge in building automation, refining incident response processes, and enhancing threat detection capabilities across its cloud and … on-prem environments. You’ll play a hands-on role in shaping security operations, driving automation, and responding to complex security incidents. You’ll be joining a high-impact security team at a pivotal point in the company’s growth. The role offers the chance to influence security strategy, develop scalable solutions, and work with cutting … edge cloud and security technologies – ideal for someone who thrives in fast-paced environments and enjoys solving deep technical challenges. Key Responsibilities – Senior Security Operations Engineer: Act as a lead and technical escalation point on the most complex incidents and investigations. Design, build, and optimise security automation for monitoring, alerting, and incident response by engineering playbooks More ❯

Senior IT Security Engineer - Zero Trust Permanent Salary 60 - 85K plus bonus and benefits On-site - Central London We are an established, global, financial services trading company looking to grow the infrastructure and security of our trading systems. We are working towards ISO27001, NIST and a zero trust architecture. You will be based in the UK and … required onsite at least 4 days per week. Reporting to the Head of Security/Operations. You will be responsible for all aspects of security from managing the SOC through to setting up PIM/PAM etc, establishing frameworks, selecting tools, establishing the zero trust architecture. This position offers a really exciting opportunity for someone with a strong … technical background who is looking to take on a Senior and develop the security systems whilst still being very hands on. Experience required Familiar with NIST, ISO 27001, ITIL Azure - 5 years experience Info Sec (Azure AD, Defender, Sentinel) PIM/PAM Audits and report writing Assessments Vulnerability Management and Pen Testing Zero Trust Architecture Automation (eg powershell, python More ❯

Senior IT Security Engineer - Zero Trust Permanent Salary 60 - 85K plus bonus and benefits On-site - Central London We are an established, global, financial services trading company looking to grow the infrastructure and security of our trading systems. We are working towards ISO27001, NIST and a zero trust architecture. You will be based in the UK and … required onsite at least 4 days per week. Reporting to the Head of Security/Operations. You will be responsible for all aspects of security from managing the SOC through to setting up PIM/PAM etc, establishing frameworks, selecting tools, establishing the zero trust architecture. This position offers a really exciting opportunity for someone with a strong … technical background who is looking to take on a Senior and develop the security systems whilst still being very hands on. Experience required Familiar with NIST, ISO 27001, ITIL Azure - 5 years experience Info Sec (Azure AD, Defender, Sentinel) PIM/PAM Audits and report writing Assessments Vulnerability Management and Pen Testing Zero Trust Architecture Automation (eg powershell, python More ❯

SOAR Engineer/Analyst (Security Orchestration, Automation, and Response) Duration: 12 months Pay: £360.26/day PAYE or £495.15/day via umbrella Location: Remote (UK) Role Purpose The SOAR Engineer/Analyst is responsible for designing, developing, implementing, and maintaining automation playbooks to improve incident response efficiency within the Security Operations Centre. This role integrates … multiple security tools and workflows, leveraging platforms like , Darktrace , and CrowdStrike to create cohesive and automated threat detection and response mechanisms. Key Responsibilities Playbook Development: Design, implement, and maintain SOAR playbooks for automated response and alert enrichment. Tool Integration: Develop and manage integrations with: Google SecOps (Chronicle, Security Command Center) Darktrace (Threat Visualizer, Antigena) CrowdStrike Falcon (EDR, threat … intelligence, APIs) Other security platforms such as SIEMs, ticketing systems, and firewalls. Automation & Enrichment: Automate repetitive security tasks like indicator enrichment, triage, and threat intelligence lookups. Collaboration: Work with SOC analysts and threat detection teams to identify and implement automation opportunities. Monitoring & Optimization: Continuously evaluate the effectiveness of SOAR playbooks and integrations; fine-tune for performance and accuracy. More ❯

Network Security Engineer Middlesex, UK (4 days from office weekly) "Seeking a Network Security Engineer with expertise in identifying, prioritizing, and remediating network vulnerabilities, including zero-day threats. Role requires a strong security mindset and hands-on experience in securing hybrid infrastructure, including on-premises, cloud, and SD-WAN environments. Candidate must analyze vulnerability reports … alternatives like SSH and SNMPv3. Will apply hardening techniques using CIS Benchmarks, NIST standards, and industry best practices across firewalls, routers, and switches. Responsible for configuring and maintaining network security controls including ACLs, VLANs, DMZs, and micro-segmentation. Ensures management interfaces for network equipment follow least-privilege principles and are protected using strong encryption like TLS 1.2 or 1.3. … components including AWS VPCs, Azure NSGs, and GCP firewall rules. Must design and enforce segmentation and egress control in cloud and hybrid environments to reduce lateral movement risks. Supports security incident response by investigating and remediating network-level threats and anomalies. Collaborates with penetration testers and vulnerability scanning team to validate vulnerabilities and ensures fixes are properly implemented and More ❯

Role- Network Security Engineer Location- Middlesex, UK (Hybrid- 4 days/Week) Employment type- Contract "Seeking a Network Security Engineer with expertise in identifying, prioritizing, and remediating network vulnerabilities, including zero-day threats. Role requires a strong security mindset and hands-on experience in securing hybrid infrastructure, including on-premises, cloud, and SD-WAN environments. … alternatives like SSH and SNMPv3. Will apply hardening techniques using CIS Benchmarks, NIST standards, and industry best practices across firewalls, routers, and switches. Responsible for configuring and maintaining network security controls including ACLs, VLANs, DMZs, and micro-segmentation. Ensures management interfaces for network equipment follow least-privilege principles and are protected using strong encryption like TLS 1.2 or 1.3. … components including AWS VPCs, Azure NSGs, and GCP firewall rules. Must design and enforce segmentation and egress control in cloud and hybrid environments to reduce lateral movement risks. Supports security incident response by investigating and remediating network-level threats and anomalies. Collaborates with penetration testers and vulnerability scanning team to validate vulnerabilities and ensures fixes are properly implemented and More ❯

Opportunity to develop your knowledge and skills as a security engineer. Must have exposure to Azure Cloud About Our Client This is a permanent role within a small-sized not-for-profit organisation that focuses on delivering impactful services to its community. The organisation is committed to leveraging technology to enhance its mission while maintaining a secure and reliable … environment. Job Description Security patching and hardening across server and network infrastructure. Monitoring, detecting, and responding to security threats across hybrid environments. Managing and enhancing security configurations for Windows VMs, SQL databases, and PaaS solutions like Logic Apps. Administering security tools, including firewalls, endpoint protection, and vulnerability management systems. Ensuring data security by managing encryption … access controls, and compliance requirements. Performing security assessments, audits, and penetration testing. Developing security automation processes for identity and access management (IAM), network security, and patch management. Collaborating with stakeholders to ensure security best practices are integrated into new and existing solutions. Managing third parties delivering security, cloud, or infrastructure services. Keeping up to date More ❯