Security Engineer

Security Engineer

Job no: 5106246

Work type: Full-Time (Salaried)

Location: Richmond (City), Virginia

Categories: Administrative Services

Title: Information Security Engineer

State Role Title: Salary Non-Specified

Hiring Range: Minimum starting salary $88,507 commensurate with experience

Pay Band: UG

Agency: VA Workers' Compensation Comm

Location: RICHMOND HEADQUARTERS

Agency Website:

Recruitment Type: General Public - G

Are you looking for the opportunity to naturally dig deeper, question what others miss, and solve complex security problems before they become real threats?

At the Virginia Workers' Compensation Commission, you'll join a collaborative cybersecurity team where your work directly supports and protects critical systems serving the Commonwealth of Virginia.

If you stay curious about evolving cyber risks, enjoy working hands-on with security tools and systems, and take pride in building secure, resilient environments that people can depend on, this could be the position for you.

This role is ideal for someone who thrives in both technical problem-solving and continuous improvement and someone who enjoys balancing engineering, security operations, threat analysis, and strategic security initiatives in a mission-driven environment.

Job Duties

The Virginia Workers' Compensation Commission (VWC), an independent state agency, is seeking an Information Security Engineer to help strengthen and evolve cybersecurity operations across the agency. This is an exciting opportunity for a security professional who enjoys hands-on engineering, problem-solving, threat defense, and working across a broad range of modern security technologies in a collaborative, mission-driven environment.

In this role, you will partner closely with the Information Security Officer (ISO), Security Analyst, and IS/IT teams to support and improve the Commission's Information Security Program. You'll play a key role in securing systems and data that support Virginia's workforce while contributing to initiatives focused on security engineering, threat monitoring, vulnerability management, incident response, governance, and continuous improvement.

This position is ideal for someone who enjoys balancing technical depth with strategic thinking, thrives in a collaborative environment, and wants to make a meaningful impact through public service while maintaining strong work-life balance and flexibility.

Some key responsibilities include:
• Configure, maintain, tune, and optimize enterprise security technologies including SIEM, EDR, vulnerability management, IAM/PAM, DLP, and monitoring platforms.
• Design, implement, and support security tools and controls that align with Commonwealth security standards and industry best practices.
• Monitor system and network activity to identify threats, suspicious behavior, vulnerabilities, and security risks.
• Support threat detection and incident response efforts through alert tuning, threat intelligence integration, analysis, and remediation activities.
• Automate security tasks and operational processes using scripting languages such as Python, PowerShell, or Bash.
• Research, recommend, and implement security technologies and solutions that improve operational security and efficiency.
• Perform vulnerability and configuration assessments across systems, infrastructure, and security platforms.
• Assist with governance, compliance, risk management, incident response planning, and third-party security oversight activities.
• Maintain documentation related to systems, security configurations, operational procedures, and security processes.
• Collaborate with internal business units and external partners to support secure, resilient agency operations.

Virginia Workers' Compensation Commission Overview

Led by a Senior Leadership team consisting of three Commissioners, an Executive Director, and a Chief Deputy Commissioner. Our mission is to serve injured workers, victims of crimes, employers, and related industries by providing exceptional services, resolving disputes, and faithfully executing the duties entrusted to us by the Commonwealth of Virginia. Our vision is to lead the nation as the most effective and innovative state agency. VWC demonstrate seven core values: innovation, respect, accountability, reliability, impartiality, integrity, and effectiveness.

We are a "Virginia Values Veterans" (V3) official certified state agency that supports Veterans and Members of the Reserves and/or National Guard. If you are a Veteran or Spouse of a Veteran or Active Military Member, we urge you to respond accordingly on your state application. Virginia Workers' Compensation Commission is an Equal Opportunity Employer, and we encourage diversity within our workforce. Virginia Workers' Compensation Commission does not provide sponsorship for employment.

VWC has been recognized as a Top Workplace for the past several years in the Richmond Region and in the country. It is the recipient of the following awards:

• 2022 - 2026 Top USA Workplace
• 2021 - 2026 Top Workplace Richmond Region
• 2023 - 2025 Top Award for Mid-Sized Companies
• 2022 - 2023 Doers Award
• 2024 Manager's Award
• 2025 Leadership Award, McGill

Minimum Qualifications
• Experience in information security, network engineering, systems administration, security operations, or a related technical field.
• Working knowledge of enterprise security technologies such as SIEM, EDR, IAM/PAM, vulnerability management, IDS/IPS, and system monitoring tools.
• Experience with scripting or automation using tools such as Python, PowerShell, or Bash.
• Knowledge of cybersecurity principles, threat detection, incident response, and security best practices.
• Knowledge of and network/security concepts including TCP/IP protocols.
• Familiarity with security frameworks and standards such as NIST 800-53 and Commonwealth of Virginia SEC501/SEC530 standards.
• Strong analytical, troubleshooting, and problem-solving skills.
• Ability to communicate effectively both verbally and in writing.
• Knowledge of cloud computing.
• Knowledge of Artificial Intelligence (AI) integration.

Additional Considerations

• Splunk management experience, physical routers, firewall configurations, Microsoft Purview administration and other network infrastructure is a plus.
• Cloud security controls (AWS, Azure, GCP), experience in managing and configuring Microsoft Entra ID security features.

Special Instructions

You will be provided a confirmation of receipt when your application and/or résumé is submitted successfully. Please refer to "Your Application" in your account to check the status of your application for this position.

Contact Information

Name: Amy Habel

Phone: View phone number on click.appcast.io

Email: View email address on click.appcast.io

In support of the Commonwealth's commitment to inclusion, we are encouraging individuals with disabilities to apply through the Commonwealth Alternative Hiring Process. To be considered for this opportunity, applicants will need to provide their AHP Letter (formerly COD) provided by the Department for Aging & Rehabilitative Services (DARS), or the Department for the Blind & Vision Impaired (DBVI). Service-Connected Veterans are encouraged to answer Veteran status questions and submit their disability documentation, if applicable, to DARS/DBVI to get their AHP Letter. Requesting an AHP Letter can be found at AHP Letter or by calling DARS at View phone number on click.appcast.io.

Note : Applicants who received a Certificate of Disability from DARS or DBVI dated between April 1, 2022- February 29, 2024, can still use that COD as applicable documentation for the Alternative Hiring Process.

Advertised: 10 Jun 2026 Eastern Daylight Time

Applications close: 17 Jun 2026 Eastern Daylight Time

Whatsapp Facebook LinkedIn Email App