Unlock the true potential of your supply chain.
Systems Security Engineer
Location
United States
Posted
40 days ago
Salary
0
Seniority
Lead
Job Description
Systems Security Engineer
TrueCommerce
• Design, implement, and maintain security controls across Windows and Linux systems • Manage and optimize Check Point, Cisco, and FortiGate firewall infrastructure, including policy design and advanced threat prevention • Manage and optimize Web Application Firewall solutions such as F5 WAF or Check Point CloudGuard • Manage and optimize endpoint detection and response (MDR/EDR/XDR) solutions such as Palo Alto Cortex or Microsoft Defender for Servers • Standardize and harden cryptographic policies and TLS configurations across enterprise systems • Develop and maintain security baselines, hardening guidelines, and automated security configurations • Monitor, analyze, and respond to security incidents • Conduct vulnerability assessments and guide remediation • Provide documentation and mentor junior team members
Job Requirements
- 8+ years of professional IT experience with 5+ years in security engineering
- Bachelor’s degree or equivalent experience
- Expert experience with Windows Server and Linux
- Hands-on expertise with Check Point, Cisco, and FortiGate firewalls
- Experience with VMware and Hyper-V
- Familiarity with JBoss, Tomcat, and IIS
- Knowledge of IAM, segmentation, encryption, and hardening practices
- Experience with vulnerability tools such as Nessus or Qualys
- Scripting skills in PowerShell, Bash, or Python
Benefits
- Remote first and casual work environment
- 401k with 3.5% company match and vested after 2 years
- 20 PTO days – 1 birthday day off – 3 summer days - 1 Volunteer day – 11 company holidays
- Medical, dental, vision and other life/health insurance plans
- Paid parental leave
- Wellness reimbursement program
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Define and execute the ATO pathway, including responsibility allocation across government and contractor teams • Author and maintain RMF documentation (SSP, SAP, SCTM, ConMon) in accordance with DoDI 8510.01 and NIST 800-53 • Coordinate with eMASS and Authorizing Officials on assessment and authorization activities • Lead continuous monitoring and reauthorization efforts across the system lifecycle • Define security requirements for cross-domain data flows (IL-5, IL-6, tactical edge) • Evaluate and guide selection of DoD-approved cross-domain solutions • Ensure classification-aware data segmentation is enforceable, auditable, and aligned with policy (e.g., NOFORN, REL_TO, ORCON) • Review system architecture to ensure compliant handling of classified data flows • Support secure operation across NIPR, SIPR, and higher classification environments • Define authorization approaches (inheritance vs. standalone ATOs) across enclaves • Ensure security posture scales without requiring fundamentally different architectures • Serve as the authoritative internal resource for DoD security and RMF-related questions • Advise on container security, RBAC, service mesh security, PKI/CAC integration, and secrets management • Define expectations for security scanning, container hardening, and vulnerability management (without owning the pipeline) • Evaluate new capabilities for security and authorization impacts prior to production deployment
• Define and execute the ATO pathway, including responsibility allocation across government and contractor teams • Author and maintain RMF documentation (SSP, SAP, SCTM, ConMon) in accordance with DoDI 8510.01 and NIST 800-53 • Coordinate with eMASS and Authorizing Officials on assessment and authorization activities • Lead continuous monitoring and reauthorization efforts across the system lifecycle • Define security requirements for cross-domain data flows (IL-5, IL-6, tactical edge) • Evaluate and guide selection of DoD-approved cross-domain solutions • Ensure classification-aware data segmentation is enforceable, auditable, and aligned with policy (e.g., NOFORN, REL_TO, ORCON) • Review system architecture to ensure compliant handling of classified data flows • Support secure operation across NIPR, SIPR, and higher classification environments • Define authorization approaches (inheritance vs. standalone ATOs) across enclaves • Maintain alignment with evolving joint and service-level security requirements
Lead Security Engineer
PipePipe has built the world’s first trading platform to help founders access the capital they need to grow on their terms.
• Review and help design robust security standards and monitoring • Maintain and improve our policy-as-code platform to enable rapid detection and response • Work closely with our Infrastructure team to ensure cloud-based deployments have proper monitoring and adhere to our policies • Manage SOC II audits, set a high standard for compliant software and processes, and ensure we consistently meet those standards • Participate in on-call rotation to support critical security issues • Own the vulnerability disclosure program and triage inbound reports to security@ • Run periodic tabletop exercises and incident response drills • Maintain security policies and lead recurring reviews (e.g., firewall changes, security reviews) • Lead responses to partner and customer security questionnaires • Maintain the security risk register, track remediation, and produce periodic security metrics for leadership
• Manage user identities, roles, and access rights across IAM platforms and Active Directory. • Handle ServiceNow tickets related to IAM access requests, incidents, and changes. • Provision, modify, and deprovision access in IAM tools, systems, and local servers. • Provide administrative support including account unlocks, password resets, and remote access provisioning. • Act as last-level support for ATA-operated IAM solutions. • Collaborate closely with IAM operations teams, stakeholders, and customers. • Prepare and deliver weekly and monthly IAM service status reports. • Support internal and external audits by providing evidence and representing the IAM administration team.



