← all jobs

[Remote] Security Engineer - Remote

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. ICF is looking for an enthusiastic Security Engineer to join our team and help with ensuring our environments and applications meet Federal Security Standards. The selected candidate will be required to work on multiple products, develop secure solutions, assess risks, and advise on security standards in a dynamic, remote-friendly setting.

Responsibilities

  • Perform Static Application Security Testing (SAST) to identify potential vulnerabilities in the application code and infrastructure
  • Perform Dynamic Application Security Testing (DAST)
  • Create and update threat models for FISMA systems
  • Assist and lead security incident response
  • Assist with documentation of System Security plan and Contingency Plans for related projects
  • Ensure security systems are up to date and create documentation and planning for all security-related information, including incident response and disaster recovery plans
  • Review policies and procedures for compliance with applicable standards; and to identify areas of improvement for finding remediation
  • Interact with senior level management, including the ISSO
  • Use security assessment tools such as Nessus, Snyk, AWS GuardDuty and AWS Inspector
  • Apply a demonstrated understanding of cryptography to secure web applications and data at rest
  • Work with development teams to review and correct code written in higher level programming languages and scripts
  • Work with DevOps teams to securely harden Linux based machines and cloud infrastructure

Skills

  • Bachelor's Degree
  • 5+ years of professional security engineering experience
  • Candidate must be able to obtain and maintain a Public Trust
  • Candidate must reside in the U.S., be authorized to work in the U.S., and all work must be performed in the U.S
  • Candidate must have lived in the U.S. for three (3) full years out of the last five (5) years
  • Hands on experience that includes: NIST 800‑53 security controls
  • System hardening and implementation of DoD STIGs
  • Leading incident response activities
  • Data management and applied cryptography
  • Cloud security and infrastructure (AWS, Azure, and/or GCP)
  • Awareness of OWASP Top Ten and CWE Top 25
  • Linux command line usage (e.g., bash, sh, zsh)
  • Scripting in Python, Perl, or similar languages
  • Prior experience in consulting or healthcare is an advantage but not essential
  • Strong engineering background
  • Application architecture experience
  • Federal Government contracting work experience
  • One or more of the following certifications is preferred: OSCP/OSCE/OWSE, CISSP, GPEN, GXPN, Security +, CEH

Benefits

  • Option to start earlier or work later depending on your time zone
  • Travel for a conference or to another ICF location for collaboration may be required once a year
  • Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process
  • We will consider for employment qualified applicants with arrest and conviction records

Company Overview

  • ICF is a global consulting and technology services provider focused on making big things possible for our clients. It was founded in 1969, and is headquartered in Fairfax, Virginia, USA, with a workforce of 5001-10000 employees. Its website is https://www.icf.com.
  • More open positions

    [Remote] WtX Account Management

    Work from home Full-time role

    [Remote] Sr. Project Manager - Accounting

    Work from home Full-time role

    [Remote] Accountant Business Advisor (Account Manager)

    Work from home Full-time role

    [Remote] Enterprise Account Manager, Networking

    Work from home Full-time role

    [Remote] Healthcare Informatics AI Intern

    Work from home Full-time role

    Marketing Manager

    Work from home Full-time role

    Licensed Crisis Counselor - Fully Remote in Prescott, AZ

    Work from home Full-time role

    Experienced Customer Success Manager – Mid-Market Private Markets

    Work from home Full-time role

    Biostatistician job at Goldbelt, Inc. in Silver Spring, MD

    Work from home Full-time role

    D365 Business Central Consultant

    Work from home Full-time role

    Experienced Tagalog-English Bilingual Healthcare Customer Service Representative – Remote in California

    Work from home Full-time role

    Professional Services Intern

    Work from home Full-time role

    Call Centre Agents - UAE National

    Work from home Full-time role

    Remote Mental Health Counselor

    Work from home Full-time role

    Lehrer/in für SPSS und Statistik für Nachhilfeunterricht (online oder vor Ort)

    Work from home Full-time role

    Call Center Sales Representative (Remote)

    Work from home Full-time role

    Work from Home Admin Assistant – Entry Role

    Work from home Full-time role

    Senior Product Manager, HRIS Integrations

    Work from home Full-time role

    Mechanical Integrity Engineer (Cranes & Lifting Equipment)

    Work from home Full-time role

    Remote Part-Time Administrative Data Entry Clerk – Flexible 4‑Hour Daily Schedule, $30/hr Competitive Pay, Home‑Based Role at careerzynith

    Work from home Full-time role

    Remote Revenue Integrity Coordinator (No Degree RQD/Work from Home)

    Work from home Full-time role