*Position is Eligible for Remote / Work from Home Opportunity* Department: Systems Security Telecommuting Eligible: Yes Job Grade: E14 As a condition of employment physical work location must be in one of the 50 states or the District of Columbia. Notice of Collection & Privacy Policy for Applicants Residing in California: California Applicant Privacy Policy | Noridian (noridiansolutions.com) Job Title Security Engineer Job Summary The Security Engineer designs, implements, and maintains enterprise security technologies to protect systems and data, ensuring compliance with Acceptable Risk Safeguards (ARS), National Institute for Standards and Technology (NIST), and Federal Information Systems Management Act (FISMA) standards. Engineers focus on Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), automation, vulnerability management, endpoint protection, and threat detection, collaborating with Security Operations Center (SOC), Governance, Risk, and Compliance (GRC), and IT teams to strengthen detection, prevention, and response. Senior Security Engineers provide advanced expertise, lead tool and process design, mentor junior staff, and drive continuous improvement and automation across security operations. Essential Functions (Key Duties/Responsibilities/Accountabilities) - Designs, implements, and maintains enterprise security tools including SIEM, Endpoint Detection Response (EDR), Data Loss Prevention (DLP), and vulnerability management systems. - Integrates log sources and ensures end-to-end visibility across cloud and on-prem environments. - Develops, tunes, and optimizes SIEM correlation rules, dashboards, and alerts. - Designs and maintains SIEM/SOAR detection rules mapped to MITRE ATT&CK techniques to improve alert fidelity and adversary coverage. - Incorporates ATT&CK-based logic into automation workflows and detection engineering initiatives. - Supports incident response by performing root cause analysis and recommending mitigations. - Conducts security assessments and assists in vulnerability remediation and patch validation. - Performs secure code reviews and static code analysis (SAST) to identify vulnerabilities; provides remediation recommendations and targeted training. - Automates routine security operations and compliance processes using scripting languages (PowerShell, Python, etc.). - Conducts penetration testing of security tools, controls, and processes. - Supports compliance evidence gathering for ARS, NIST, FISMA, and other applicable audits. - Collaborate with IT teams to embed security best practices and ensure security controls align with compliance frameworks. - Provide strategic recommendations for new security tools, process improvements, remediations, risk mitigation, and targeted security training based on penetration testing findings. - Provides technical mentoring and training to analysts on detection and tuning techniques. - Communicates complex security concepts to both technical teams and non-technical stakeholders. - As assigned, provides after-hours support for security incidents as part of an on-call or escalation rotation. Non-Essential Duties and Functions - Other duties as assigned. Minimum Qualifications - Bachelor’s degree in Cybersecurity, Computer Science, or related field OR equivalent experience as determined by Human Resources. - 5 years of experience in security operations, engineering, or related technical field. - Skills in developing and maintaining scripts in PowerShell, Python, or Bash. - Demonstrated experience with SIEM platforms (e.g., Microsoft Sentinel, Trellix, Splunk, QRadar). - Working knowledge of log management, Intrusion Detection System/Intrusion Prevention System (IDS/IPS), Endpoint Detection and Response (EDR), SOAR, NIST 800-53, 5.1, Center for Internet Security Controls, or other vulnerability management standards. - Working knowledge of MITRE ATT&CK or other threat modeling frameworks (e.g., D3FEND, Cyber Kill Chain) and its application to detection logic, automation, and threat modeling. - Strong analytical and problem solving skills to investigate complex security incidents, assess vulnerabilities, and design effective technical solutions. - Excellent written and verbal communication skills. - Experience with testing tools such as Nmap, SQLmap, Metasploit, Wireshark, Nessus, Burp Suite, or other similar tools. - One Offensive Security Certification: (Offensive Security Certified Professional (OSCP), Offensive Security Experienced Penetration Tester (OSEP), Offensive Security Wireless Professional (OSWP), Offensive Security Web Assessor (OSWA), and Offensive Security Web Expert (OSWE). Preferred Qualifications - 7 Years experience - Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC) GIAC Certified Incident Handler (GCIH) GIAC Certified Detection Analyst (GCDA), or Microsoft Cybersecurity Architect (SC-100). Environment and Cognitive/Physical Demands - Office environment - Ability to read, hear, speak, keyboard, reason, communicate effectively and problem solve - Requires prolonged sitting and telephone usage - Requires the use of office equipment such as computer terminals, telephones, copiers and printers - Infrequent lifting to 20 pounds - Infrequent stooping Segregation of Duties Every employee is responsible to perform their duties and responsibilities in accordance with Noridian values, policies and procedures, including but not limited to, Segregation of Duties Principles, HIPAA, Security and Privacy, CMS requirements, the Noridian Compliance Program, and any other applicable laws, rules and regulations. Statement of Other Duties This document describes the essential functions, requirements, and responsibilities of this job, and is not intended to be a complete list of all tasks and functions. Employees may be requested to perform job related tasks other than those specifically listed in this description, and may be required to perform any task requested by the supervisor or management. Total Rewards Package: Health, Dental and Vision Insurance, Voluntary Insurance Plans, Health Savings and Flexible Spending Accounts, 401k and Company Match, Company-paid Life Insurance, Education Assistance Program, Paid Sick Leave, Paid Holidays, Increasing PTO Accrual Plan, Medical/Parental/Disability Leave, Workers Compensation, Retiree Benefits, Severance Package, Employee Assistance Program, Financial and Health Wellness Benefits, Casual Dress, Open Office Setting, and Online Learning System. CMS Access Compliance and Regulation Contingency Statement Some positions require compliance with (i) federal and agency specific regulations and related clauses included in Noridian's prime contracts with the Government, (ii) background checks, and (iii) eligibility for a government-issued identification card. An employee in this position may be required to possess a “Federal Identification Card” (Federal ID) as a condition of employment. Federal ID’s may include one of the following: Personal Identity Verification (PIV) card, Personal Identity Verification-Interoperable (PIV-I) card, a Local-Based Physical Access Card issued by CMS, or a Local-Based Physical Access Card issued by another Federal agency and approved by CMS. Obtaining a Federal ID and continued eligibility for this position may require the successful completion of a Federal Background Investigation performed by the Federal Government and a residency requirement that you have lived in the United States at least three out of the last five years. Failure to obtain a Federal ID may result in the removal from the position or termination of employment. Equal Employment Opportunity Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by state or federal law. The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c) Below is the salary range for potential new hires. Salary Range: The pay range for this position is $79,267.71 – $130,374.83 per year, however, the base pay offered may vary depending on geographic region, internal equity, job-related knowledge, skills, and experience among other factors. Other Compensation: Incentive Plan & Lifestyle Benefit This job will be closed 04/06/2026 at 8:00AM CST. No further applications will be considered.