Security Engineer; Platform Assurance​/Compliance

Security Engineer (Platform Assurance / Compliance)

Guidehouse is seeking a Security Engineer to join our Technology / AI and Data team, supporting mission‑critical initiatives for Defense and Security clients. In this role you will ensure advanced AI‑driven platforms meet stringent federal security and compliance requirements, including FedRAMP High, RMF, and NIST standards. You will embed secure architecture patterns, validate control implementation, and maintain continuous monitoring readiness across cloud, backend, and AI/ML components.

Acting as a key liaison between engineering teams and security stakeholders, you will drive risk identification and remediation, support accreditation activities, and deliver secure, resilient solutions that enable trusted decision‑making in support of national security objectives.

• Serve as a core security engineer ensuring the adjudication AI platform meets applicable federal requirements including FedRAMP High, RMF, NIST 800‑53, CJIS, and FBI ATO standards.
• Collaborate with cloud, Dev Ops, backend, and AI/ML teams to embed secure architecture patterns, validate control implementation, and maintain continuous monitoring readiness across all platform components.
• Develop RMF documentation, support POA&M management, conduct vulnerability assessments, ensure secure baseline configurations, and support accreditation activities.
• Act as liaison between engineering teams and ISSO/security stakeholders, ensuring risks are identified, tracked, and remediated efficiently.
• Implement NIST 800‑53 and FedRAMP High controls across access management, encryption, monitoring, boundary protection, configuration management, and secure data lifecycle workflows.
• Validate secure configuration of AWS Gov Cloud services, EKS clusters, container runtimes, VPC boundaries, IAM policies, and workload identities.
• Ensure backend APIs, vector stores, retrieval services, LLM inference gateways, scoring engines, and memo‑generation modules follow compliant security standards.
• Embed secure coding, least‑privilege access enforcement, input validation, and hardened model‑serving workflows across all development teams.
• Develop and maintain SSPs, CIS statements, boundary diagrams, data‑flow diagrams, and continuous monitoring documentation for ATO readiness.
• Assist with creation, tracking, and remediation of POA&M items, ensuring timely closure of vulnerabilities and deficiencies.
• Prepare system artifacts for assessments, security testing, authorization reviews, and continuous monitoring updates.
• Conduct vulnerability scans, analyze results, and coordinate remediation with engineering teams.
• Support patching workflows, baseline enforcement, configuration drift detection, and container/OS hardening processes.
• Validate Cloud Trail, Cloud Watch, Guard Duty, Config Rules, and other logging/monitoring systems for compliance with AU, SI, RA, and CM control families.
• Develop dashboards and reporting for CA‑7, RA‑5, CM‑6, AU‑x, and other continuous monitoring requirements.
• Integrate SAST, SCA, IaC scanning, container scanning, and dependency verification into Dev Sec Ops  workflows.
• Validate Terraform/Cloud Formation templates for alignment with encryption, identity, and Gov Cloud boundary restrictions.
• Review API design, authentication flows, model inference endpoints, and data‑ingestion pipelines for security gaps or policy violations.
• Support hardening of LLM workflows, retrieval processes, and document‑ingestion operations.
• Work with backend, cloud, AI/ML, and data engineering teams to translate controls into engineering requirements aligned with adjudication workflows.
• Provide teams with security requirements, engineering checklists, and compliance guidance to accelerate delivery while maintaining security posture.
• Collaborate with adjudicators, mission SMEs, and operations teams to ensure evidence tracking, audit logging, and data‑handling workflows support mission needs.

• Active and maintained "TOP SECRET" Federal or DoD security clearance and obtained and maintain TS/SCI clearance.
• Bachel…