Information Security Engineer

Zachary Piper Solutions is seeking a Information Security Engineer (Vulnerability Management) to support a mission-critical DHS USCIS cybersecurity program focused on Continuous Monitoring and enterprise risk reduction. This fully remote position plays a key role in strengthening the security posture of nationwide immigration systems by identifying vulnerabilities, driving remediation, and collaborating with ISSOs and technical teams.

This role is fully remote and requires a U.S. citizen eligible for a Public Trust clearance.

Responsibilities of the Information Security Engineer:

• Analyze Tenable.io vulnerability scan results to identify weaknesses across enterprise systems
• Correlate events and findings through Splunk dashboards to prioritize risks and remediation
• Support NIST RMF activities, including documenting findings and developing POA&Ms
• Recommend remediation strategies for cloud (AWS/Azure/GCP) and OS environments (Windows/Linux)
• Perform system evaluations across CentOS, RHEL, Ubuntu, and Windows platforms
• Collaborate with ISSOs, system owners, and engineering teams to drive timely remediation
• Identify process improvements for Continuous Monitoring and security tool effectiveness
• Prepare reports outlining risks, impacts, and recommended corrective actions
• Support enterprise-level security planning, process modeling, and vulnerability management improvements

Qualifications for the Information Security Engineer:

• Bachelor's degree in Information Technology, Cybersecurity, or related field (required)
• 10+ years of experience in information security or security engineering
• Hands-on experience with Tenable.io , Nessus, ACAS, or similar scanning platforms
• Experience with Splunk Enterprise (v9.2+) for analysis and dashboarding
• Strong working knowledge of NIST SP 800-37 RMF , POA&M development, and risk assessments
• Experience administering or evaluating systems across Windows and Linux distributions
• Cloud administration experience in AWS (Azure/GCP also acceptable)
• Strong written and verbal communication skills, capable of translating complex findings
• Prior DHS experience preferred
• Must be a U.S. Citizen and eligible for Public Trust
• CISSP, CISM, CEH, or similar certifications preferred but not required

Compensation & Benefits:

• $100,000-$120,000 salary
• Comprehensive benefits (medical, dental, vision, 401k, PTO)
• Fully remote schedule (occasional on-site support only if required)
• Supportive leadership and stable program environment

#LI-REMOTE

#LI-EA1

vulnerability management, Tenable io, Nessus, Splunk dashboards, RMF, NIST 800-53, POA&M, cybersecurity engineer, DHS, USCIS, AWS security, Linux security, Windows hardening, Continuous Monitoring, CMASS II, Aretec, public trust, cyber risk analysis, enterprise security engineer, threat and vulnerability, federal cybersecurity, contract to hire, remote cyber jobs, security operations, cyber remediation, cloud security tools, security posture improvement, system security engineering, information assurance, cyber reporting, vulnerability scanning, federal RMF, cyber analyst, SIEM.