Lead Security Engineer
InstantServe LLC
Job Summary
We are seeking a Subject Matter Expert (SME)-level Lead Security Engineer to lead application security across a large-scale, cloud-native federal modernization program supporting the U.S. Census Bureau's Decennial Transformation and Application Modernization (DTAM) effort. This role provides technical and management leadership on major security tasks, embedding security into every phase of the System Development Life Cycle (SDLC) using a DevSecOps methodology. The ideal candidate will architect and enforce Zero Trust principles, drive Authorization to Operate (ATO) activities, and direct application security testing, threat modeling, and vulnerability remediation across a System of Systems (SoS). This position interfaces with senior Government stakeholders and the Office of Information Security (OIS), and decision-making and domain knowledge may have a critical impact on overall program implementation. May supervise others. Responsibilities
Required:
We are seeking a Subject Matter Expert (SME)-level Lead Security Engineer to lead application security across a large-scale, cloud-native federal modernization program supporting the U.S. Census Bureau's Decennial Transformation and Application Modernization (DTAM) effort. This role provides technical and management leadership on major security tasks, embedding security into every phase of the System Development Life Cycle (SDLC) using a DevSecOps methodology. The ideal candidate will architect and enforce Zero Trust principles, drive Authorization to Operate (ATO) activities, and direct application security testing, threat modeling, and vulnerability remediation across a System of Systems (SoS). This position interfaces with senior Government stakeholders and the Office of Information Security (OIS), and decision-making and domain knowledge may have a critical impact on overall program implementation. May supervise others. Responsibilities
- Lead the design and implementation of application security solutions, frameworks, and processes across all phases of the SDLC, in compliance with U.S. Census Bureau (USCB) and Office of Information Security (OIS) policies
- Implement Zero Trust (ZT) principles for applications, workloads, and data, aligned with EO 14028, OMB M-22-09, and NIST SP 800-207 (Zero Trust Architecture)
- Integrate security into DevSecOps CI/CD pipelines, establishing security gates, automated code inspection, and supply-chain controls including Software Bill of Materials (SBOM) generation
- Direct Static and Dynamic Application Security Testing (SAST/DAST), vulnerability assessments, and penetration testing to identify, triage, and remediate security weaknesses
- Lead threat modeling exercises to analyze application architecture, identify attack vectors, and document mitigation strategies throughout design, development, testing, and deployment
- Support the Authorization to Operate (ATO) process, including security control assessment, artifact and evidence collection, Privacy Threshold Analysis/Privacy Impact Assessment support, and Plan of Action and Milestones (POA&M) management
- Implement security controls in accordance with the NIST Cybersecurity Framework and NIST SP 800-53, and remediate identified vulnerability and compliance findings
- Design and implement secure architecture patterns - secure API design, authentication/authorization, input validation, encryption, secure logging and monitoring (SIEM), and secure error/session/configuration management
- Develop and maintain metrics, dashboards, and reporting to track application security posture, threat trends, and remediation progress over time
- Support the development and management of Interagency Security Agreements (ISA), security playbooks, and incident response in accordance with current cybersecurity policies
- Collaborate with application developers, data engineers, systems engineers, and OIS to identify and mitigate vulnerabilities, and provide expert security consultation to development teams
- Assist in FedRAMP certification activities and the assessment/remediation of independent penetration testing results, as applicable
- Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field
- 15+ years of relevant IT/cybersecurity experience, providing technical and management leadership on major tasks or technology assignments (SME level)
Required:
- Certified Information Systems Security Professional (CISSP)
- Certified Cloud Security Professional (CCSP)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- Demonstrated expertise integrating security into a DevSecOps SDLC, including CI/CD security gates and automated security testing
- Hands-on experience implementing Zero Trust Architecture and applying NIST SP 800-53 controls and the NIST Cybersecurity Framework
- Proven experience leading vulnerability assessments, penetration testing, and threat modeling for enterprise applications
- Experience supporting the ATO lifecycle and managing POA&Ms, security artifacts, and evidence collection
- Experience generating Software Bill of Materials (SBOMs) and implementing software supply-chain security controls
- Familiarity with SIEM deployment, container/image hardening, and secure baseline configuration
- Experience in large-scale, multi-cloud federal environments and FedRAMP processes
- Strong analytical, problem-solving, written, and verbal communication skills, including the ability to brief senior Government stakeholders
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Lead Security Engineer in Suitland, MD vacancy
- ...Lead Security Engineer This position supports Revolutional's federal customer as part of an application transformation and modernization initiative. This program is driving a large-scale transformation of systems into a data-centric, cloud-native ecosystem capable...SuggestedFor contractors
- ...Lead Security Engineer At B&A, we foster and embrace a distinct set of values that we live by and instill in all aspects of our organization: dedication, commitment, partnership, trust, and recognition. We have incorporated these values into successful delivery...SuggestedFull timeWork at officeLocal area
- Onyx Government Services, LLC in Suitland, MD is looking for a Subject Matter Expert (SME)-level Lead Security Engineer to lead application security for a federal modernization program. This role requires extensive experience in security integration, particularly in a...Suggested
- ...Lead Security Engineer Job Description Overview CoStar Group is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index, CoStar Group is on a mission to digitize the...SuggestedFull timeWork at officeWork from homeMonday to Thursday
- ...Lead Security Engineer Job Description Overview CoStar Group is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index, CoStar Group is on a mission to digitize the world...SuggestedFull timeWork at officeWork from homeMonday to Thursday
$140k - $155k
...the members of the Seneca Nation. Clear Creek Federal is seeking a Lead Security Enginee r in Washington, D.C. The ideal candidate is a highly skilled and experienced Lead Security Engineer. The successful candidate will lead a team of three security engineers and...Full timeContract workFlexible hours- A high-tech company is seeking a Lead Security Engineer to oversee cybersecurity operations within the DC area. The ideal candidate will lead efforts to ensure compliance with federal security standards while managing vulnerabilities and incidents. Qualifications include...Work at office
$114.08k - $152.11k
...by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and... ...and issue posture and assessment reports This Lead Information Security Engineer position operates in a supportive role implementing security...Temporary workWorldwide- ...United States Digital Space LLC is seeking a Principal Security Software Engineer for Starshield, focusing on security infrastructure and features for cutting-edge in-space technologies. Ideal candidates should possess a robust background in security software development...
- Motion Recruitment Partners LLC is looking for a Reverse Engineer to join their team in Arlington, VA. This hybrid role focuses on low-level... ..., vulnerability research, and exploit development. You will lead efforts on complex embedded systems and have opportunities to mentor...
- ...for enterprise systems, ensuring high-performance connectivity and security. The ideal candidate has over 8 years of experience, a TS/SCI clearance, and a bachelor's degree in IT, Cyber, or Engineering. You will collaborate with various teams to enhance network resilience...
$146k - $232k
Koitecc Solutions is seeking a Cybersecurity Expert located in Washington DC to lead the establishment of a FedRAMP-compliant Security Operations Centre (SOC). The ideal candidate will have significant cybersecurity experience, specializing in SOC operations and incident...- ...strengthen our work. Veterans, transitioning service members, and military spouses are strongly encouraged to apply. Network Security Engineer (Cisco ISE) Tria Federal is seeking a Network Security Engineer to join the Network Engineering Team. In this role, you...
- ...We are seeking a Senior Network Security Engineer for an operations-first role supporting enterprise network security infrastructure across on-premises, remote-access, hybrid-cloud, and cloud-connected environments. This is not primarily an architecture/design role. The...Remote workFlexible hoursNight shift
$140k - $266k
...range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation... ...realize their greatest potential. Title and Summary Lead, Cryptographic Security Engineer Who is Mastercard? Mastercard is a global...Full timeTemporary workPart timeWorldwideFlexible hours- JOB OVERVIEW MartinFed is seeking a highly experienced Lead Cyber Security Engineer to provide technical leadership in the design, implementation, assessment, and continuous improvement of enterprise cybersecurity programs and secure system architectures. The ideal candidate...Work at officeLocal area
- ...Planning and Analysis, Inc. in Washington, D.C. is seeking a Lead Cyber Systems Engineer to guide defense programs through the systems engineering lifecycle. You will ensure program protection and manage security threats while being a technical lead. Required...
$115k - $150k
...safer. As a global leader in innovative security technology, we help businesses and law enforcement... ..., trust, and collaboration. From engineering to sales and support, every role... ...be part of something that matters. The Lead Security Systems Engineer plays a pivotal...Full timeWorldwideFlexible hours$104k - $156k
...Posting Type Remote/Hybrid Job Overview The Advanced Security Engineer is a technically deep, hands-on practitioner who forms the operational backbone of the enterprise security function. Operating within a layered defense-in-depth program, this engineer owns...Remote work- ...Systems Solutions (ISS) is looking for a mid-level ISSE supporting the Office of Naval Intelligence. The Information Systems Security Engineer (ISSE) is responsible for engineering, implementing, and maintaining security solutions across information systems and networks...Work at office
$158k - $294k
...to-end technology solutions connecting the space, air, land, sea and cyber domains in the interest of national security. Job Title: : Lead, Software Engineer Job Code : 37557 Job Location: Herndon, VA (on-site) Schedule: 9/80 Regular (Employees work 9 out of...Local areaFlexible hours$135k - $195k
Arenatechnologies is looking for a Lead Cyber Systems Engineer specializing in defense acquisition to support advanced radar programs in Washington, D.C. This role requires overseeing test and evaluation activities to validate Navy radar information systems. The ideal candidate...- ...Network Security Engineer (Cisco, Palo Alto) About Us: We are a dynamic technology services company based in Washington, DC, specializing in cutting-edge network solutions. We are seeking a skilled Network Engineer to join our team to ensure the seamless operation...Remote work
- ...Web Developer Security Engineer At Ardent, we hire people who want more than a job — they want to serve a mission that matters. Our teams support the federal government's most critical national security and defense priorities, helping protect the nation, strengthen...Local areaRemote workFlexible hours
- ...Web Developer Security Engineer The Web Developer Security Engineer protects mission-critical web applications, application programming interfaces (APIs), and sensitive data by embedding security across the software development lifecycle. This role combines application...Worldwide
$166k - $253k
...Security Software Engineer - Endpoint Security Washington, District of Columbia, United States Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise...Full timeWork experience placementImmediate start- ...The Senior Federal Information Systems Security Engineer (ISSE) serves as a technical integrator responsible for ensuring that system-to-system connections across federal boundaries are properly documented, approved, and compliant with all required cybersecurity and interoperability...Contract workWork experience placementRelocation
$40 per hour
A cybersecurity firm is seeking experienced cybersecurity professionals to evaluate AI-generated security content, solve technical problems, and provide feedback to improve AI systems. This is a flexible remote position, allowing you to work on chosen projects within a...Remote jobHourly payFlexible hours- ...Evolver Federal is seeking a Senior Security Engineer to fulfill a requirement for a potential government client. The Senior Security Engineer... ...hands‑on experience with security tools, and the ability to lead engineering efforts for mission‑critical systems in highly...Contract workFlexible hours
- ...one resource. If you are a problem-solving people-person, apply today! Position Overview We are seeking an experienced Senior Security Engineer to work in Washington DC to join our team supporting an Enterprise Security Operations Center (ESOC) and Computer Security Incident...For contractorsWork at officeLocal area
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Lead Security Engineer. Be the first to apply!


