• Own end-to-end vulnerability remediation across Linux package ecosystems and container images. • Analyze CVEs affecting OS packages, runtimes, libraries, and transitive dependencies across multiple Linux distributions. • Validate upstream fixes, evaluate patch applicability, and determine appropriate remediation strategies. • Rebuild, backport, patch, curate, sign, and publish packages across multiple Linux distribution branches. • Maintain and manage trusted package repositories across diverse Linux ecosystems. • Resolve complex dependency, compatibility, and ABI issues across distributions and package versions. • Ensure package and image updates do not break customer environments, builds, or runtime compatibility. • Design and scale automated pipelines for package rebuilding, validation, remediation, signing, publishing, and image generation. • Integrate package validation, repository management, and remediation workflows into pipelines. • Generate and maintain SBOMs, package metadata, provenance data, and trusted software artifacts. • Improve image performance, package footprint, startup efficiency, and operational reliability. • Research emerging threats and best practices in Linux distributions, containers, Kubernetes, and software supply chain security.

Role Description Our client is seeking a highly skilled Cloud Security / DevOps Engineer to focus exclusively on strengthening and maintaining the organization’s cloud security posture. This role is critical in driving remediation efforts, managing security-related backlog, and ensuring systems are secure, updated, and compliant across a large-scale cloud environment. The ideal candidate will have deep expertise in AWS networking and cloud security, along with hands-on experience in vulnerability remediation, patching, and infrastructure hardening. - Take ownership of the security backlog, prioritizing and resolving vulnerabilities across the environment - Perform security remediation activities, including patching, upgrades, and system hardening - Manage and maintain over 1,000 Windows servers (2012 OS), including ongoing upgrade efforts - Utilize Orca Security to identify risks and drive improvements to overall security posture - Perform regular maintenance updates, including system patches and infrastructure upgrades - Work with AWS cloud infrastructure to secure applications and services - Troubleshoot and resolve security issues related to: - Firewalls - AWS load balancers - Network layers and configurations - Collaborate with teams to implement best practices for cloud security and DevOps - Support and enhance utilization of AI-driven tools within AWS (e.g., Anthropic / Mythos) for security initiatives - Partner with penetration testing teams and contribute to remediation efforts based on findings Qualifications - Strong experience in AWS Cloud Security - Deep expertise in AWS networking (VPCs, subnets, routing, security groups, etc.) - Hands-on experience with: - Vulnerability remediation - System patching and upgrades - Infrastructure security hardening - Experience managing and securing large-scale server environments - Knowledge of firewalls, load balancers, and network-layer security controls - Familiarity with security tools such as Orca or similar cloud-native security platforms - Experience working in a DevOps or cloud engineering environment - Understanding of penetration testing processes and remediation workflows Requirements - AWS - Cloud - Security - DevOps - AWS services - Python - CloudWatch - GitHub Benefits - Medical, dental & vision - Critical Illness, Accident, and Hospital - 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available - Life Insurance (Voluntary Life & AD&D for the employee and dependents) - Short and long-term disability - Health Spending Account (HSA) - Transportation benefits - Employee Assistance Program - Time Off/Leave (PTO, Vacation or Sick Leave) Company Description We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

Role Description This role is contingent upon a contract award. ICF is seeking an experienced Cybersecurity Manager to lead cybersecurity governance, risk management, compliance coordination, and security integration for a complex federal technology services program. This role will be responsible for ensuring cybersecurity requirements are addressed across systems, applications, integrations, cloud services, product delivery, and operational support functions. The ideal candidate has demonstrated experience supporting federal cybersecurity programs that require RMF alignment, assessment documentation, POA&M management, contingency planning, vulnerability coordination, cybersecurity reporting, and integration with engineering and product delivery teams. This role requires strong knowledge of federal cybersecurity requirements, practical risk management judgment, and the ability to coordinate across technical, program, operations, assessor, and client stakeholder groups. Job Location: This position is remote within the United States. Please note that ICF monitors employee work locations, restricts access from foreign locations and IP addresses, and prohibits the use of personal VPN connections. What You’ll Be Doing - Lead cybersecurity governance and RMF coordination across a complex federal technology services environment. - Develop, maintain, and coordinate cybersecurity assessment documentation, including FIPS 199 analyses, E-Authentication Risk Assessments, security control implementation statements, and supporting control artifacts. - Support system teams, product teams, security assessors, and client stakeholders in preparing and maintaining cybersecurity evidence and compliance documentation. - Evaluate cybersecurity risks associated with new capabilities, including applications, integrations, plug-ins, software tools, system connections, and platform changes. - Track system security deficiencies, remediation activities, and Plans of Action and Milestones through closure. - Lead or support development, maintenance, and testing of contingency plans for systems and services within program scope. - Develop and maintain cybersecurity governance standard operating procedures, workflows, templates, and reporting mechanisms. - Coordinate cybersecurity inputs into engineering, product delivery, architecture, DevSecOps, cloud, data, and service operations activities. - Support vulnerability management, incident response coordination, risk reviews, control evidence collection, and security-related data calls. - Partner with service operations, identity, device, network, platform, and application teams to ensure cybersecurity responsibilities are clear and evidence is maintained. - Monitor cybersecurity risks, issues, dependencies, and compliance gaps, and escalate items requiring leadership attention. - Translate cybersecurity requirements and risks into practical guidance for technical teams, program leadership, and client stakeholders. Qualifications - Bachelor’s Degree - U.S. Citizenship required due to federal contract requirements. - Must be able to obtain and maintain a Federal Public Trust clearance. - 10+ years of experience supporting cybersecurity, information assurance, security governance, risk management, compliance, or RMF activities in federal or regulated environments. - Active CISSP, CISM, CAP, Security+, GSEC, or equivalent cybersecurity certification. Preferred Qualifications - 7+ years of experience supporting federal cybersecurity requirements, including FISMA, NIST 800-53, RMF, POA&M management, system assessment, or authorization activities. - 5+ years of experience developing or maintaining cybersecurity assessment documentation, control implementation statements, security plans, contingency plans, risk assessments, or security artifacts. - 5+ years of experience coordinating with system owners, security assessors, engineering teams, product teams, operations teams, or federal cybersecurity stakeholders. - 5+ years of experience supporting vulnerability management, incident response coordination, remediation tracking, control evidence collection, or cybersecurity reporting. - 3+ years of experience evaluating cybersecurity risks for new technologies, applications, integrations, SaaS platforms, cloud services, or system connections. - 3+ years of experience supporting cybersecurity governance for cloud, SaaS, application modernization, DevSecOps, data, or enterprise platform environments. - Experience supporting HHS, NIH, FDA, CMS, CDC, or other health-focused federal environments. - Experience with Zero Trust, identity and access management, endpoint security, secure cloud architecture, secure SaaS governance, TIC 3.0, or continuous monitoring. - Experience integrating cybersecurity requirements into Agile, DevSecOps, CI/CD, product delivery, and application modernization workflows. - Experience supporting ATO packages, security assessment activities, security control validation, audit responses, and independent verification or validation reviews. - Experience with cybersecurity tools and repositories used for POA&M tracking, vulnerability management, audit evidence, incident coordination, SIEM/SOAR, or continuous monitoring. - Experience aligning cybersecurity activities with NIST 800-53 Rev. 5, NIST 800-37, NIST 800-61, NIST 800-34, FedRAMP, FISMA, CISA guidance, or HHS security policy. - Experience developing cybersecurity dashboards, executive risk reporting, compliance scorecards, and metrics-based security governance materials. - Additional cybersecurity, cloud security, Agile, ITIL, AWS, Azure, Google Cloud, or project management certification. Pay Range The pay range for this position based on full-time employment is: $158,819.00 - $269,993.00.

Role Description We are looking for an Information Security Engineer to help scale and mature our corporate security program in a fast-moving, high-growth environment. This role will focus on identity and access management, endpoint security, SaaS security, corporate infrastructure security, and security operations enablement. The ideal candidate is hands-on, automation-minded, and comfortable partnering across IT, Engineering, Infrastructure, HR, and Compliance teams to improve security controls while maintaining a strong employee experience. You will help design and operate security systems that protect corporate assets, secure employee access, improve visibility, and reduce organizational risk across cloud-first and SaaS-heavy environments. Responsibilities - Identity & Access Management - Design, implement, and improve identity and access management controls across enterprise applications and infrastructure. - Manage and optimize SSO, MFA, lifecycle management, conditional access, RBAC, and privileged access workflows. - Partner with IT and business stakeholders to implement least-privilege access models. - Support onboarding, offboarding, and automated provisioning/deprovisioning workflows. - Conduct periodic access reviews and help drive remediation efforts. - Improve authentication security and identity posture across corporate systems. - Corporate Security Engineering - Secure and manage corporate endpoints across macOS, Windows, and cloud-managed environments. - Improve endpoint visibility, hardening, monitoring, and response capabilities. - Help implement and tune modern endpoint protection, browser security, device trust, and web/data protection controls. - Partner with Infrastructure and IT teams on secure configuration standards and operational improvements. - Support security initiatives related to enterprise SaaS applications and collaboration platforms. - Assist with vendor and third-party security evaluations related to enterprise tooling. - Security Operations & Monitoring - Assist with security monitoring, detection engineering, and incident response activities. - Improve log visibility and telemetry coverage across identity, endpoint, and SaaS platforms. - Build and maintain detections, alerts, and operational playbooks. - Participate in incident investigations and post-incident remediation efforts. - Help operationalize security metrics and reporting. - Automation & Engineering - Build automations and integrations that improve security operations efficiency. - Develop scripts and workflows to reduce manual processes. - Partner with Engineering and Infrastructure teams to improve security guardrails and operational maturity. - Contribute to infrastructure-as-code and policy-as-code initiatives where applicable. - Compliance & Security Programs - Support security compliance initiatives such as SOC 2, ISO 27001, or similar frameworks. - Help document technical controls, processes, and operational procedures. - Participate in risk assessments and remediation tracking. - Contribute to security awareness and internal enablement efforts. Qualifications - 4+ years of experience in information security, security engineering, IT security, or related fields. - Experience administering enterprise identity providers and access management systems. - Experience with endpoint management and endpoint security tooling. - Familiarity with security monitoring, logging, and incident response workflows. - Strong understanding of authentication protocols and identity security concepts, including SAML, OIDC, OAuth, SCIM, MFA, conditional access, and RBAC. - Experience working in cloud-first environments using modern SaaS platforms. - Strong scripting or automation experience using Python, Bash, PowerShell, or similar. - Ability to balance security requirements with operational usability and business needs. - Strong communication and cross-functional collaboration skills. Preferred - Experience securing macOS environments at scale. - Experience with modern browser security and data protection technologies. - Experience with cloud-native security monitoring or SIEM platforms. - Familiarity with MDM/UEM platforms, EDR solutions, identity governance, and SaaS security tools. - Experience implementing automation around identity lifecycle management. - Familiarity with infrastructure-as-code or cloud security practices. - Experience in high-growth startup or enterprise environments. - Security certifications such as Security+, CISSP, GIAC, identity provider certifications, endpoint management certifications, or equivalent.