cFocus Software seeks a Senior Security Engineer to join our program supporting the Congressional Budget Office (CBO). This position is remote. This position requires a Public Trust clearance. Qualifications: - Active Public Trust clearance - B.S. Computer Science, Information Technology, or a related field - 8+ years of Security Engineering experience - Strong experience with Microsoft Sentinel (SIEM) operations and engineering - Experience with Microsoft Defender for Endpoint (MDE) and Defender for Identity (MDI) - Knowledge of AWS logging (CloudTrail, VPC Flow Logs) and cloud security monitoring - Experience with log ingestion, normalization, and schema mapping - Understanding of incident response, threat detection, and SOC operations - Familiarity with NIST frameworks (800-53, 800-61, 800-92) and Zero Trust principles - Experience with detection engineering and threat hunting methodologies - Preferred certifications include but are not limited to - GCIA, GCIH, CISSP, CEH, or equivalent cybersecurity certifications - Microsoft Sentinel or Microsoft security platform certifications - Relevant cloud security certifications (e.g., AWS security) - Privacy certifications (e.g., CIPP/US, CIPM) where applicable Duties: - Review Microsoft Sentinel log ingestion, pipeline health, and monitoring coverage - Validate, develop, and tune detection use cases aligned with MITRE ATT&CK - Identify telemetry gaps and ensure proper ingestion and normalization of logs - Coordinate remediation activities with CBO IRM staff - Support vulnerability prioritization and patch governance validation - Validate log routing, transformation, and normalization (e.g., Cribl or similar tools) - Provide technical support during security incidents and escalation events - Support detection engineering, threat hunting, and SOC automation initiatives - Ensure alignment with Microsoft Defender (Endpoint, Identity) and AWS log sources

Description The Work We are seeking a Senior Cybersecurity Engineer with deep experience supporting the Risk Management Framework (RMF) and Authorization to Operate (ATO) lifecycle for federal information systems. This role focuses on STIG compliance, vulnerability management, POA&M tracking, and incident response for high‑impact systems operating in classified environments. Key Responsibilities - Provide end-to-end RMF and ATO support, including development, maintenance, and submission of security authorization packages. - Manage and maintain eMASS artifacts, ensuring accuracy, completeness, and audit readiness. - Conduct and oversee STIG compliance activities across operating systems, databases, and platforms; document findings and remediation actions. - Identify, track, and manage Plans of Action and Milestones (POA&Ms), coordinating with technical teams to drive remediation to closure. - Perform and review vulnerability assessments using tools such as Nessus and STIG scanning utilities; analyze results and recommend mitigation strategies. - Support incident response activities, including investigation, reporting, and coordination with security leadership and stakeholders. - Develop and update RMF documentation such as SSPs, SARs, RARs, and continuous monitoring artifacts. - Collaborate with ISSOs, ISSEs, system owners, developers, and program leadership to ensure ongoing compliance with federal and DoD cybersecurity requirements. - Support continuous monitoring activities and ATO renewals in accordance with NIST, DoD, and agency-specific guidance. Required Qualifications - 10+ years of experience supporting RMF / ATO processes for federal information systems. - Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, or a related field. - Active Top Secret / SCI clearance. Preferred Qualifications - Preference to candidates who has experience supporting DCSA or a federal agency. - Relevant cybersecurity certifications (e.g., CISSP, CISM, CAP, CEH, or Security+). - Hands-on experience with eMASS, including package creation and ongoing maintenance. - Strong working knowledge of STIG compliance, vulnerability scanning, and remediation processes. - Experience managing and reporting POA&Ms through resolution. - Familiarity with Nessus and other vulnerability assessment and STIG scanning tools. - Experience supporting or participating in incident response efforts within a classified or regulated environment. - Solid understanding of NIST RMF and federal cybersecurity compliance requirements. - Background working in classified cloud or hybrid environments. - Experience with continuous monitoring and ATO sustainment activities. - Familiarity with DISA STIGs, ACAS, or similar DoD-aligned security tools. Working at ICF ICF is a global advisory and technology services provider, but we’re not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. We can only solve the world's toughest challenges by building a workplace that allows everyone to thrive. We are an equal opportunity employer. Together, our employees are empowered to share their expertise and collaborate with others to achieve personal and professional goals. For more information, please read our EEO policy. We will consider for employment qualified applicants with arrest and conviction records. Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. To request an accommodation, please email Candidateaccommodation@icf.com and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.  Read more about workplace discrimination rights or our benefit offerings which are included in the Transparency in (Benefits) Coverage Act. Candidate AI Usage Policy At ICF, we are committed to ensuring a fair interview process for all candidates based on their own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) tools to generate or assist with responses during interviews (whether in-person or virtual) is not permitted. This policy is in place to maintain the integrity and authenticity of the interview process.  However, we understand that some candidates may require accommodation that involves the use of AI. If such an accommodation is needed, candidates are instructed to contact us in advance at candidateaccommodation@icf.com. We are dedicated to providing the necessary support to ensure that all candidates have an equal opportunity to succeed.   Pay Range - There are multiple factors that are considered in determining final pay for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, geographic location, education and certifications as well as contract provisions regarding labor categories that are specific to the position. The pay range for this position based on full-time employment is: $118,807.00 - $201,971.00 DC Remote Office (DC99)

Company Overview: Function Health is the AI operating system for health, designed to empower people to live 100 healthy years. We are redefining how individuals understand, measure, and improve their health by moving beyond reactive care and enabling proactive, data-driven insight into human biology. Function has been recognized as one of Fast Company’s Most Innovative Companies of 2024, and is venture-backed by Andreessen Horowitz (a16z). Hundreds of thousands of members have joined Function to take control of their health. Through advanced diagnostics, deep biomarker testing, longitudinal data, and AI-enabled insights, Function equips members with actionable intelligence to take control of both the quality and length of their lives. Function recently announced a $298M Series B and is entering its next chapter of growth. As we scale, the quality and durability of our People systems, data, and insights will directly shape our ability to attract, retain, and support exceptional talent. We are growing our team and seeking out world-class talent that deeply believes in our mission to positively impact global health, has a relentless bias toward action, and a growth mindset. Function fosters a collaborative and dynamic environment where every day we build the future. Role: Function Health is building out a dedicated product security team to protect our members and platform as we scale. As a Senior Product Security Engineer, you'll work shoulder-to-shoulder with engineering and product teams to embed security into every stage of development: design, code, test, and deploy. This role is hands-on and impact-driven. You'll be expected to identify risks, build guardrails, and ship tools that raise the security bar without slowing teams down. Our engineering org is moving toward AI-first code review, autonomous adversarial testing, and security gates that run without human approval for low-risk changes. You'd be building the systems that make that possible and safe. If you've been waiting for a security role where the answer to "can we automate this?" is usually yes, this is it. We're looking for someone who thrives on solving hard technical problems, knows how to build security into systems the right way, and is excited about what AI-assisted engineering means for the future of the discipline. Key Responsibilities: - Design and deploy AI-powered security agents into CI/CD: automated code review, risk classification, escalation logic, and where possible, auto-remediation. - Build and operate the security tooling layer across our pipelines: SAST, SCA, secrets scanning, IaC validation, and supply chain integrity checks. - Conduct threat modeling, secure design reviews, and manual security assessments across our apps, APIs, and infrastructure. - Find vulnerabilities through proactive testing, not just scanner output, and drive them to remediation. - Partner with engineering teams across our product pillars as the embedded security voice in the room, without being a blocker. - Own the rollout of secure-by-default development frameworks and controls. - Connect application-level telemetry to detection and response systems. - Contribute to incident response and postmortems when product security is involved. - Shape our long-term product security strategy and roadmap. Qualifications/Skills: - 5+ years of experience in product or application security, software engineering, or a combination of both. - You've built or operated AI-assisted security tooling, whether that's an agent doing code review, an automated triage pipeline, or custom security automation you designed from scratch. - Strong Python experience. Familiarity with FastAPI, LangChain, or agentic frameworks is a plus. - Deep fluency in identifying and exploiting web, API, and application vulnerabilities, well beyond OWASP Top 10. - Experience embedding security into CI/CD, not just recommending it. - You can guide engineers through secure design decisions without slowing them down. - You write documentation and design docs without being asked. - Bonus: experience with HIPAA or healthcare data, red teaming, or security architecture at scale. Your dedication to these responsibilities will directly contribute to the success of our platform and the satisfaction of our users. We are looking for a proactive, skilled, and forward-thinking individual to join our team and help shape the future of our services. To be a strong fit, you embody our Core Values: - Ruthless Prioritization: - We don’t let perfect get in the way of progress. - We move quickly to drive value, not perfection. - We prioritize what drives impact. - We never compromise on standards of excellence. - Member-First, Always: - We design and deliver like we’re caring for someone we love. - We create calendar, actionable, human experience. - We prioritize responsiveness, peace of mind, and outcomes. - We empower members with truth, clarity, and care. - One Team, Moving Fast: - We are aligned in purpose, prioritization, and speed. - We gather diverse perspectives to make informed decisions. - We clear paths for each other and move fast together. - We communicate clearly and respectfully, rallying around shared goals. - Radical Ownership, Relentless Execution: - We don’t just ship– we own outcomes and drive results. - We act with urgency and precision - We anticipate, initiate, and follow through. - We meet challenges with grit and pragmatism. - We embrace new tech to deliver better outcomes. - Mission Over Ego: - We are ruthlessly aligned to our mission– and leave ego at the door. - We disagree and commit. - We don't tolerate politics or withholding information. - We operate with honesty, transparency, and respect. - Sustained Integrity in Every Detail: - We earn trust by obsessing over accuracy, quality, and clarity in everything we do. - We prioritize clinical precision– data must be right. - We sweat the details because outcomes depend on them. Why You'll Love Working With Us: We value our team at Function and offer a competitive salary and benefits package, flexible working hours, and a dynamic work environment where creativity and innovation are encouraged. If you are a highly motivated and experienced individual who is passionate about using technology to improve people’s lives, we would love to hear from you. At Function, we celebrate diversity and are committed to building a diverse and inclusive workforce. As an equal opportunity employer, we do not discriminate on the basis of race, color, gender identity, ancestry, religion, age, sexual orientation, national origin, disability, marital status, Veteran status, or any other occupationally irrelevant criteria. Join the Function Health team and become a part of our mission to build a healthier future for all. Discover more about us and how we're changing the face of healthcare at Function Health. Important Notice: Legitimate communication from the Function Health team will always come from an email address ending in @functionhealth.com. Function Health will never request personal information such as banking details or payment during the hiring process. Please be cautious of communications or job offers that come from other email domains, instant messaging platforms, or unsolicited calls. If you ever have doubts about the legitimacy of a communication, please reach out to us directly at talent@functionhealth.com.

Self Financial is a venture-backed, high-growth FinTech company with a mission to increase economic inclusion and financial resilience by empowering people to build credit and build savings. We're looking for people who share our passion and are driven to tackle challenges, find solutions and make the financial space better for the communities we serve. Our team is passionate about challenging the status quo of the credit industry by providing people accessible tools to take control of their credit. Executing on our mission requires deep collaboration across our teams to ensure our products reach the people who can benefit from them the most, particularly the 100 million+ Americans who have no or low credit. We celebrate diversity and are committed to creating an inclusive environment for all employees. To that end, we seek to recruit, develop and retain the most talented people from a diverse candidate pool. Role Summary The Principal Information Security Engineer is responsible for owning cybersecurity operations and defense across all Self products and infrastructure. This role plays a critical part in protecting customer data, ensuring compliance with SOC 2 and PCI requirements, and partnering closely with engineering and IT teams to detect, investigate, and respond to security threats. The ideal candidate brings deep expertise in security operations, threat detection, and incident response with hands-on experience in tools like Splunk Enterprise, CrowdStrike, Wiz, and Netskope. What You Will Do - Own end-to-end cybersecurity operations, including threat detection, incident response, and vulnerability management across all Self products and infrastructure - Build, tune, and maintain detection content in Splunk Enterprise (SIEM) to identify threats, anomalies, and policy violations - Operate and optimize CrowdStrike for endpoint detection and response (EDR), including alert triage, threat hunting, and containment - Manage cloud security posture using Wiz, including misconfiguration identification, risk prioritization, and remediation tracking - Administer and optimize Netskope for CASB and secure web gateway (SWG) functions, including DLP policy enforcement, shadow IT visibility, and web threat protection - Design, manage, and optimize Next-Generation Firewalls (NGFW) and cloud native networking to enforce zero-trust principles and secure perimeter defenses. - Lead incident response efforts - from detection through containment, eradication, and post-incident review - Conduct proactive threat hunting across endpoint, network, and cloud environments - Partner with engineering and infrastructure teams to remediate critical security findings and reduce attack surface - Lead and perform third-party vendor security reviews and risk assessments - Support SOC 2 and PCI compliance efforts, including audit preparation and evidence collection - Identify security risks across the environment and recommend mitigation strategies - Monitor emerging cybersecurity threats and translate them into actionable detection and prevention controls Who You Are - 12+ years of experience in cybersecurity, security operations, or information security engineering - Hands-on experience with Splunk Enterprise for SIEM, log management, and detection engineering - Proficiency with CrowdStrike for endpoint detection, response, and threat hunting - Experience using Wiz or similar CSPM tools for cloud security visibility and risk remediation - Hands-on experience with Netskope or similar CASB/SSE platforms for data loss prevention, shadow IT, and secure web access - Strong background in incident response, including investigation, containment, and root cause analysis - Experience with vulnerability management programs and remediation workflows - Solid understanding of network security, cloud security (AWS/GCP/Azure), and identity and access management - Experience supporting or operating within SOC 2 and PCI compliance environments - Ability to partner effectively with engineering and infrastructure teams to drive security outcomes - Strong risk assessment, prioritization, and communication skills Preferred Qualifications - Experience performing third-party vendor security assessments - Familiarity with cloud-native architectures and container security - Prior experience in fintech, regulated industries, or environments handling sensitive customer data - Experience with threat intelligence platforms and integrating feeds into detection workflows - Security certifications such as CISSP, CISM, GCIA, GCIH, GCED, or equivalent experience Base salary range: $ 180,000-210,000 annually. Individual pay is based on factors unique to each candidate, including skill set, experience, and other job-related reasons. Benefits and Perks: We have the compensation and benefits you expect. But there's one thing that Self Financial can offer that many companies cannot: we can positively change the world, while making a profit. We are a team of Builders, empowering our customers to build their dreams. We have a Do the Right Thing ethos in all that we do, and we hope you value that approach, too. Our perks include: - Company equity in the form of Stock Options - Performance-based bonuses - Generous employer-paid health, vision and dental insurance coverage - Flexible vacation policy - Educational assistance - Free gym membership - Casual dress code - Team building events and activities - Remote work arrangements/ flexible work schedule - Paid parental leave Self Financial requires all employees hired to successfully pass a background check. We are an Equal Opportunity Employer. At this time, we are only able to consider applicants who are U.S. Citizens or Green Card Holders for employment opportunities. We appreciate your understanding.