Senior Security Engineer

Marathon TS is seeking an experienced Senior Security Engineer / Cloud Security Architect to lead the secure design, analysis, testing, and documentation of information systems and cloud-based environments. The ideal candidate will have deep technical expertise in cybersecurity engineering, compliance, and cloud security, with the ability to support the secure implementation of enterprise systems in accordance with federal regulations and industry best practices. This role will play a critical part in securing systems through the entire lifecycle, from concept to deployment and maintenance.
Key Responsibilities:

• Design, engineer, and test secure information systems and products across on-premises and cloud environments (AWS and Azure).
  
• Create, maintain, and update comprehensive technical documentation, including:
  
  • System Security Plans (SSPs)
    
  • Business Impact Analyses (BIAs)
    
  • Continuity of Operations Plans (COOPs)
    
  • Risk mitigations
    
  • Authorized software/hardware lists
    
  • Elevated access roles and permissions lists
    
• Develop and execute security test plans to support audits, accreditation, and risk management activities.
  
• Evaluate, validate, and implement mitigations for vulnerabilities and security findings.
  
• Ensure baseline security safeguards are appropriately documented and implemented.
  
• Provide expert guidance on system boundary definitions, weakness assessments, and the potential impacts of vulnerabilities.
  
• Prepare and deliver clear, concise technical briefings and written reports to diverse technical and non-technical audiences.
  
• Lead and contribute to security policy development and the creation of security guidelines for the enterprise.
  
• Conduct industry and market research to inform whitepapers, security architecture decisions, and capability comparisons.
  
• Collaborate with architects, developers, and integrators in agile and SAFe development environments.
  
• Participate in Continuous Integration/Continuous Deployment (CI/CD) initiatives and apply security practices to automated pipelines.
  
• Provide technical leadership on projects with enterprise-wide dependencies and support multi-disciplinary teams.
  

Required Qualifications:

• Extensive experience in cybersecurity engineering, particularly for cloud environments (AWS and Microsoft Azure).
  
• Expert knowledge of NIST RMF, NIST SP 800-53 security and privacy controls, and federal security compliance frameworks.
  
• Demonstrated experience securing cloud-native and hybrid environments using automation and infrastructure-as-code.
  
• Strong written and oral communication skills, including experience presenting technical material to leadership and non-technical stakeholders.
  
• Working knowledge of agile methodologies, SAFe framework, and CI/CD pipelines.
  
• Prior hands-on experience implementing, operating, and maintaining IT infrastructure and applications.
  
• Experience working in diverse teams across architecture, development, and security functions.
  

Preferred Qualifications:

• Certifications such as CISSP, CCSP, AWS Certified Security - Specialty, Azure Security Engineer Associate, or similar.
  
• Experience with DevSecOps tooling and practices.
  
• Familiarity with Zero Trust architecture and modern security frameworks.
  
• Background supporting federal agencies or mission-critical enterprise systems.
  

Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status").

#CJJOBS