Haystack
← Back to Jobs
Remote
Technology

Security Engineer

Isoftech IncUnited States🇺🇸United StatesPosted 14 Jul 2026

Quick Overview

Work Type
Remote
Level
Mid Senior

Job Description

Title: Security Engineer
Location: Remote
Hire Type: Contract

Job Description

Responsibilities

  • Perform Security Impact Analyses on application releases and provide recommendations to leadership.
  • Perform software vulnerability scans, interpret the results, and provide vulnerability mitigation recommendations.
  • Support and develop analyses of alternatives and decisions on courses of action by providing security insights to project teams and leadership.
  • Review and provide recommendations on requests for AWS policy changes.
  • Work with development teams and other stakeholders to review code and accurately identify false positives in SonarQube, improving the overall effectiveness of the tool.
  • Perform new software evaluations for cyber compliance, Section 508 compliance, privacy reviews, and software authorization for the Approved Software List.
  • Write and review security policy documentation based on industry standards.
  • Support regular updates to secure coding standards documentation and ongoing assessments against the NIST Cybersecurity Framework.
  • Support Information Security Center vulnerability management activities, including asset inventory, secure configuration, continuous monitoring, vulnerability tracking, reporting, and service catalog management.
  • Support vulnerability management activities related to Cloud systems, High Value Assets (HVAs), Mobile Devices, and Internet of Things (IoT) assets, including testing, certification, verification, and authorization activities.
  • Participate in growth initiatives such as RFI/RFP responses, prototypes, and technical presentations as needed.
  • Maintain appropriate certifications relevant to the role.

Requirements

  • Must be able to obtain a Public Trust clearance.
  • Must reside in the United States (U.S.), and all work must be performed within the United States.
  • 4+ years of Cyber/Network Security experience, including developing, writing, and implementing procedures to ensure compliance with FISMA, NIST requirements, Section 508 compliance, and other Federal IT security guidelines.
  • 3+ years of AWS Security experience.
  • 3+ years of Application Security experience.
  • 3+ years of experience with software vulnerability scanning tools such as SonarQube and familiarity with AWS security policies.
  • 2+ years of experience working with Software Development Life Cycle (SDLC) methodologies.

Preferred Qualifications

  • Bachelor''s degree in Computer Science, Engineering, or a related discipline.
  • 5+ years of Cyber/Network Security experience, including compliance with FISMA, NIST, Section 508, and other Federal IT security standards.
  • Experience with OWASP, Splunk, Java, and SQL.

Skills

SQL
AWS
OWASP
SonarQube
Splunk
IoT
Java

Similar jobs