Security Engineer Remote Jobs in California (US)
This page tracks remote security engineer openings that are location-eligible for California.
This page tracks remote security engineer openings that are location-eligible for California.
Open jobs
4,106
Hiring companies this week
10
Salary sample
$30 - $200,000
Jobs added last hour
0
4106 Jobs
2051 Companies
• Lead the final phase of Sensiba's Zero Trust transformation and endpoint security modernization. • Develop, document, and maintain enterprise security standards and configuration baselines. • Establish scalable security practices that support long-term growth and compliance. • Manage and optimize Microsoft Sentinel for monitoring, detection, and response activities. • Develop and tune detection rules, alerts, investigations, and automated response workflows. • Lead security investigations, incident response efforts, and proactive threat hunting activities. • Own Defender XDR, Defender for Endpoint, and Defender for Cloud administration and security posture management. • Monitor and remediate vulnerabilities across user devices and cloud environments. • Manage Microsoft Purview Data Loss Prevention (DLP) policies and information protection programs. • Support Sensiba's annual SOC 2 Type II audit process by producing technical evidence and validating controls.
• Own Filevine’s FedRAMP 20x Moderate strategy, delivery plan, certification readiness, and ongoing compliance posture. • Lead the design and execution of FedRAMP evidence automation, continuous monitoring, and reporting required for Marketplace certification and sustained authorization. • Serve as the single-threaded owner for FedRAMP engagements with 3PAOs, the FedRAMP PMO, agency stakeholders, and internal executive sponsors. • Set the roadmap and priorities for dedicated FedRAMP engineering resources, ensuring regulatory requirements become shipped technical controls, automated evidence, and operationally sustainable processes. • Own POA&M governance, risk acceptance workflows, certification readiness reporting, and remediation planning across product and platform teams. • Ensure FedRAMP implementations are pragmatic, risk-based, technically grounded, and appropriately scoped for Filevine’s architecture, maturity, and business priorities. • Provide clear, consistent executive reporting on progress, risk, tradeoffs, dependencies, resourcing needs, and certification readiness. • Drive governance for vulnerability findings from scanning tools, penetration tests, customer reviews, audits, and bug bounty programs, including risk adjustment, remediation ownership, escalation, and executive tradeoff decisions. • Maintain a single source of truth for security/compliance status, control gaps, remediation commitments, and customer-facing trust claims. • Ensure trust center materials, customer security responses, sales enablement messaging, and public compliance claims are accurate, current, and defensible. • Translate privacy obligations and customer commitments into product, engineering, and operational requirements. • Support AI and data governance efforts by ensuring privacy, security, and customer trust requirements are reflected in product and operational decisions. • Drive alignment between compliance goals, engineering capacity, product strategy, customer commitments, and business risk.
Role Description This role’s mission & overview: Camps trust Campminder to keep their data safe, and that trust is what lets them focus on running a great summer. You'll own how we protect that data end to end: - Architecting and hardening our security infrastructure - Carrying our PCI and SOC2 programs through every audit - Setting the roadmap that keeps us ahead of real threats - Being the person the engineering org comes to on security - Defining what good looks like at Campminder As a Senior Cybersecurity Engineer on our Engineering team, you will: - Manage identity and access infrastructure, including Azure conditional access, Okta SSO, and Auth0, keeping MFA and zero-trust enforced across production and internal apps - Integrate security scanning (SAST, DAST, SCA) into CI/CD pipelines and drive remediation before code reaches production - Configure, tune, and harden WAF rules across our web applications - Own vulnerability scanning and remediation using tools like Mondoo and SecurityMetrics, and administer EDR, DLP, and SIEM/XDR tooling across servers and endpoints - Manage secrets and credentials in build pipelines, including vault-based storage, rotation, and least-privilege service accounts - Execute PCI technical controls: SAQ completion, quarterly ASV scans, and disaster recovery implementation - Harden containerized and cloud-native environments, including image scanning and Kubernetes configuration - Coordinate pen testing engagements and drive remediation against SLA timelines - Run security awareness training programs (KnowBe4, Security Journey) and maintain AI usage oversight, including approved tooling, code-gen governance, and supply-chain monitoring Qualifications - 5+ years in security engineering or DevSecOps, with hands-on ownership of both pipeline-level and infrastructure-level security - Experience configuring IAM and SSO platforms (Okta, Auth0) alongside cloud-native identity controls like Azure conditional access - Comfort embedding security directly into CI/CD workflows: SAST/DAST/SCA tooling, secrets management, and policy-as-code - A track record hardening containerized and cloud-native environments, including Kubernetes and image scanning - Experience executing PCI or similar compliance technical controls (scans, SAQs, evidence prep); program ownership isn't required, but you know how to translate auditor requirements into engineering work - Familiarity administering SIEM/XDR and EDR/DLP tooling - The judgment to triage real vulnerabilities over theoretical ones, and to know when to escalate versus fix directly - Experience running or supporting security awareness and training programs - Exposure to AI tooling governance, such as MCP inventories, code-gen release gating, or supply-chain monitoring for AI-assisted development Benefits - Robust medical, dental, and vision coverage options with generous employer contributions, plus a $500 employer HSA contribution for HSA-compatible plans - Ability to choose where you work - remotely, in the office, or a mix! - A variety of resources to support mental health and emotional well-being - 12 weeks of 100% paid parental leave for all new parents, including via adoption, surrogacy, and foster care - 401(k) with 4% company matching - Trust-Based (flexible) PTO (and yes, we use it!) - $900/year wellness allowance - Company-paid subscriptions, training, and support for using AI professionally and personally Company Description We know the best people can choose to work anywhere. Here’s a few reasons why 100+ of them choose Campminder: - With 20+ years experience of serving the industry through its digital transformation, we’re stable, profitable, and have developed a loyal customer base (that continues to grow). - We build software for summer camps, an industry that enables meaningful experiences for kids. - We work on interesting, ambitious projects that create real value for our clients. - We know our team members feel their work has an impact on the organization’s purpose. - We are genuinely committed to work/life balance. - We invest in emerging technology and cutting-edge leadership and are proud to take an "AI-Enabled" approach in our solutions. - We’ve been listed on Outside Magazine’s 50 Best Places to Work for 8 consecutive years for our values-led culture and employee experience.
This is a remote position.
Role Description We are seeking an experienced Cybersecurity Assessment & Authorization (A&A) Subject Matter Expert (SME) to support Department of Defense (DoD) cybersecurity programs. The A&A SME will lead Risk Management Framework (RMF) activities, support the Authorization to Operate (ATO) lifecycle, and provide expert guidance on cybersecurity compliance for complex enterprise environments, including traditional IT, cloud-hosted systems, operational technology (OT), applications, and outsourced IT services. The position requires expertise in NIST SP 800-53, DoD cybersecurity policies, and enterprise risk management. Key Responsibilities - Serve as the cybersecurity SME for Assessment & Authorization (A&A) and RMF activities. - Lead and support the development, review, and maintenance of RMF authorization packages, including SSPs, SARs, POA&Ms, and ATO documentation. - Assess security controls in accordance with NIST SP 800-53 and DoD cybersecurity requirements. - Evaluate vulnerabilities, determine residual risk, and recommend risk mitigation strategies to support authorization decisions. - Conduct security control assessments and continuous monitoring activities to maintain system authorization. - Support enterprise cybersecurity compliance for on-premises, cloud, and hybrid environments. - Advise Information System Owners (ISOs), ISSMs, ISSOs, engineers, and Authorizing Officials throughout the RMF process. - Prepare executive-level briefings and communicate cybersecurity risks, authorization status, and remediation recommendations to senior leadership. - Ensure compliance with DoD cybersecurity policies, DISA STIGs, and applicable federal security standards. Qualifications - Minimum five (5) years of relevant experience in Assessment & Authorization (A&A), Certification & Accreditation (C&A), Risk Management Framework (RMF), and NIST cybersecurity compliance within a DoD environment. - Demonstrated experience conducting security control assessments and authorization reviews for large, complex organizations. - Strong knowledge of NIST SP 800-53, DoDI 8510.01, DoD RMF, continuous monitoring, and cybersecurity governance. - Excellent analytical, technical writing, communication, and briefing skills. Requirements - Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field (or equivalent experience, if permitted by contract). - DoD 8570/8140 Baseline Certification – IAM Level III (e.g., CISSP, CISM, GSLC, or equivalent approved certification). Benefits - 401(k) - Dental insurance - Health insurance - Paid time off - Vision insurance Company Description This is a remote position.
At Bluestaq, we build secure data platforms that matter for space missions, national defense, healthcare systems, and commercial innovation. Founded in 2018, we've become a leader in enterprise software and secure data management. Recognized as one of Inc. Magazine's Fastest-Growing Private Companies. Consistently ranked among Colorado's Best Workplaces.
Role Description NSPM-11 directs the national security enterprise to adopt AI fast and assure it across the full stack, down to the data pipeline. We are hiring a Principal AI Engineer, AI Security to build agentic and mission AI on the Bluestaq platform. You will prove it secure and resilient from design through deployment. This is a senior individual-contributor role with a player-coach path. You will deliver hands-on now and stand up and lead a small AI team as the work grows. You will be the AI technical authority across the full lifecycle, from shaping bids to assuring what we deliver. What you'll do - Serve as the AI Security technical authority on captures and bids. - Translate mission-owner AI and AI-security requirements into solutions that win. - Build credibility with technical buyers across the IC, DoD, and partners. - Own AI-assurance/security roadmap for the platform, spanning model security, runtime protection, and threat modeling for AI built on Bluestaq data. - Partner with engineering to embed assurance by design. - Design and assure AI for environments mission owners operate in, including disconnected, classified, and air-gapped settings. - Threat-model AI systems against significant attacks: adversarial inputs, model extraction and distillation, data and supply-chain poisoning, and agentic or tool-use abuse. - Establish and carry the external voice on secure AI for national security through talks, writing, and demonstrated technical work. - Ensure delivered AI meets the assurance, TEVV, and supply-chain standards mission owners depend on. - Connect AI-security work into Bluestaq's broader AI platform. - Stay ahead of AI/ML advances and bring in the ones that offer real advantage. - Coach mission owners and non-technical stakeholders on realistic AI capabilities. - Spot gaps in Bluestaq's AI tooling, skills, or process and drive proposals that close them. - Hire and lead a small AI team as the pipeline grows. Qualifications - Five or more years across AI security architecture, AI/ML engineering, or a closely related combination. - Hands-on experience securing modern AI systems: LLMs, retrieval-augmented generation, and agentic or tool-using architectures. - Working command of the AI threat landscape and practical countermeasures. - Cloud security depth, AWS preferred. - Ability to translate AI risk for different stakeholders. - The seniority to own a domain, set standards, and influence engineering decisions. - U.S. citizenship and the ability to obtain and maintain a U.S. government security clearance. Requirements - Active TS/SCI. - A public technical record in AI security: research, conference talks, open tooling, red-team writeups, or sustained content. - Experience delivering and assuring AI in regulated or government environments. - Familiarity with the federal AI assurance landscape, including NIST AI RMF, TEVV, and the NSPM-11 mandate. - Secure AI/ML supply-chain experience: model and dataset provenance, third-party model risk, and the equivalent of an SBOM for models. - Experience standing up an AI or AI-security capability from zero and growing a team into it. Education - Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent experience. - Advanced degree preferred. Required Location & Travel This position is remote, open to candidates based in Colorado or Virginia, with up to 12 trips per year to customer, partner, or government sites, including secure facilities. Salary Range (CO) $200,000 — $300,000 USD Clearance Requirement This position may require the ability to obtain a TS/SCI Clearance. To be eligible for a security clearance, U.S. citizenship is required, and an employee must agree to participate in a background screen and credit check. Relocation This position does not offer relocation. Candidates must live in the immediate area or relocate at their own expense. Date the Position Closes Applications will be accepted for 60 days beyond the posting date, or until the position is filled, whichever comes first. Company Description At Bluestaq, we build secure data platforms that matter for space missions, national defense, healthcare systems, and commercial innovation. Founded in 2018, we've become a leader in enterprise software and secure data management by staying focused on what counts: modern architecture, operational excellence, and mission impact. We're engineers, problem-solvers, and builders who take the mission seriously, but not ourselves. We automate the repeatable, question the status quo, and design systems that are as reliable as they are scalable.
Molina Healthcare is a Fortune 500 managed care company with a storied history that dates back to 1980 and the opening of a medical clinic by Dr. C. David Molina. As an employer, M
Role Description This role provides dedicated engineering ownership for Molina’s Secure Access Service Edge (SASE) platform and enterprise data protection capabilities, with supporting responsibility for endpoint resilience technologies such as Dell Absolute. The position is responsible for the design, stability, and operational effectiveness of secure access and data protection services that are critical to workforce access, vendor connectivity, and regulatory compliance. Key Responsibilities - Serve as the primary technical owner for Molina’s SASE / Secure Access platforms. - Design, implement, and maintain secure access policies for workforce, third‑party, and application access. - Lead troubleshooting, root‑cause analysis, and remediation of SASE‑related production issues. - Manage vendor escalations, upgrades, and roadmap alignment. - Assist on supporting Microsoft Purview Data Loss Prevention (DLP), sensitivity labeling, and cloud data controls. - Provide engineering oversight for endpoint persistence and recovery technologies (e.g., Dell Absolute) to ensure devices remain recoverable and enforceable. - Develop standards, documentation, and runbooks; support audit and compliance activities. - Develop AI Automation. Qualifications - Bachelor's Degree. - 5-7 years of experience in security engineering. - Strong experience with SASE / Secure Web Gateway technologies, preferably Zscaler. - Working knowledge of data protection / DLP, preferably Microsoft Purview. - Experience with endpoint persistence or recovery platforms such as Dell Absolute (or equivalent). - Experience working in a regulated enterprise environment. - Industry certifications preferred. Benefits - Molina Healthcare offers a competitive benefits and compensation package. - Molina Healthcare is an Equal Opportunity Employer (EOE) M/F/D/V.
Litigation finance to contingency law firms of all sizes. Focused on providing law firm funding.
• Lead enterprise IT operations, infrastructure, cloud services, and cybersecurity • Own the full lifecycle of IT operations and information security • Manage on-prem network and servers (VLANs, firewalls, DNS/DHCP) and the Azure Government / M365 GCC High environment • Administer hybrid identity (AD / Entra ID): provisioning, access reviews, MFA, PIM • Oversee Tier 2/3 support, onboarding, and hardware lifecycle to SLA targets • Lead IT projects and migrations; manage vendors, licensing, and assets • Own the CMMC Level 2 / NIST SP 800-171 program • Report posture, risk, and budget performance to leadership
The London, England, United Kingdom-based BAE Systems is the world’s preeminent provider of defense, security, and aerospace solutions. The company’s produc
Title: Security Specialist II Location: Nashua, New Hampshire, United States San Diego, California, United States Job Description: Sector Electronic Systems Req # 126988BR Physical Location Hybrid Job Category Other Professionals Clearance Level - Must Be Able to ObtainTop Secret U.S. Person RequiredYes Travel Percentage<10% Clearance Level - Must Currently PossessSecret U.S. Citizenship RequiredYes Is Relocation AvailableNo Job Description You don’t see it, but it’s there. Our employees work on the world’s most advanced electronics – from saving emissions in the City of Lights to powering the Mars Rover to protecting the F-35 fighter jet. At Electronic Systems, you’ll be among the brightest minds, working on the aerospace and defense industry’s most difficult problems. Drawing strength from our differences, we’re innovating for the future. And you can, too. Our flexible work environment provides you a chance to change the world without giving up your personal life. We put our customers first – exemplified by our missions: “We Protect Those Who Protect Us®” and “We Innovate For Those Who Move The World™.” Sound like a team you want to be a part of? Come build your career with us. Become part of our growing and dynamic Security Team! BAE Systems in Nashua, NH is looking to hire a Security Specialist to support the Electronic Systems Personnel Security Office - ensuring the requirements of the National Industrial Security Program Operating Manual (NISPOM) and other applicable manuals are implemented and compliance is maintained. Support the ES Security Personnel Clearance Processing, ES Visitor Control and ES Special Programs Processing across the growing Sector. This is a great opportunity to further your career and grow your skills in a high intensity, team-based environment. In this entry level Security Specialist II position you will make impacts in the following ways; - Acquires, reviews, and processes to completion - Initial Clearances, 5 year clearance reinvestigations, reinstatements and clearance upgrades. - Process ES New Hires and Terminations - SIMS/DISS/NBIS - Support and process PSQ's, Foreign Travel and reporting as per Special Program requirements - Working knowledge of SIMS, DISS, eQIP/eAPP, NISS and JADE - Manage and maintain ES SIMS, DISS and NBIS - Maintain PERSEC Shared Area and PERSEC One Space - Develops security plans to comply with existing directives and future requirements - Provide/maintain monthly and quarterly metrics - Maintain continuity plans relative to the PERSEC Office - Professional demeanor, good people skills, ability to communicate effectively, performs in a multi-tasked environment - Ability to manage time, make sound decisions, work independently, analyze problems and provide focused solutions. - Additional duties as assigned *** This opportunity will offer a hybrid remote work schedule where you spend part of your time on site, and part of your time remotely while also working a Nine-Eighty schedule that gives you every other Friday off . Required Education, Experience, & Skills - Must hold an active government Secret Clearance - High School diploma or equivalent - 2 or more years of related administrative and clerical experience - Eligible for Top Secret Clearance - Working knowledge of SIMS, DISS, NBIS, EQIP, EAPP , JADE - Excellent communication skills, both oral and written - Decision making and reasoning skills - Working knowledge of the 32 CFR Part 117 (NISPOM) and other related security manuals - Must be organized and be able to work independently as well as with a team Preferred Education, Experience, & Skills - Bachelor's Degree - Top Secret (TS) clearance Pay Information Full-Time Salary Range: $67406 - $114590 Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience. Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics. About BAE Systems Electronic Systems BAE Systems Electronic Systems is the global innovator behind game-changing defense and commercial electronics. Exploiting every electron, we push the limits of what is possible, giving our customers the edge and our employees opportunities to change the world. Our products and capabilities can be found everywhere – from the depths of the ocean to the far reaches of space. At our core are more than 14,000 highly talented Electronic Systems employees with the brightest minds in the industry, we make an impact – for our customers and the communities we serve.
• Provide professional installation, configuration, troubleshooting, and maintenance of security and smart home systems, including intrusion alarms, surveillance cameras, access control, and automation components. • Ensures all work is documented accurately, including system configuration, programming notes, and service logs. • Adheres to all safety standards, electrical codes, and security regulations during fieldwork. • Works closely with team members, project managers, and clients to ensure smooth installations and service visits. • Supports team coordination on large-scale projects and cross-trade integration. • Communicates clearly with internal staff and end users to ensure expectations are aligned and met. • Identifies potential installation challenges before they impact timelines or quality. • Keeps systems and tools organized and ready, anticipating parts or programming needs in advance. • Reports recurring technical issues or process inefficiencies and suggest solutions. • Stays current on evolving technologies in security, automation, and networking. • Goes the extra mile to ensure every system is tested thoroughly and functioning flawlessly. • Designs neat and efficient cable routes, panel layouts, and device placements.
The Quantum Computing Company
• Lead the end-to-end delivery of strategic ETS programs • Drive governance, risk, and compliance programs across cloud infrastructure, IT systems, and security operations • Establish and maintain program management best practices, playbooks, and governance frameworks • Serve as the primary point of accountability for program status and executive-level reporting • Partner with ETS stakeholders to define program objectives and navigate ambiguity • Identify, track, and proactively mitigate program risks and issues • Champion continuous improvement by analyzing program performance data
4,096more opportunities are still waiting for you.Log in now and take your next shot before someone else does.
Cloud, AI, Azure, Observability/Monitoring, Amazon IAM, Okta