×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Security Engineer; Platform Assurance​/Compliance

Job in Huntsville, Madison County, Alabama, 35824, USA
Listing for: Guidehouse
Full Time position
Listed on 2026-01-12
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below
Position: Security Engineer (Platform Assurance / Compliance)

Job Family: IT Cyber Security

Travel Required: Up to 10%

Clearance Required: Active Top Secret (TS)

Guidehouse is seeking a Security Engineer to join our Technology / AI and Data team, supporting mission‑critical initiatives for Defense and Security clients. In this role, you will ensure advanced AI‑driven platforms meet stringent federal security and compliance requirements, including FedRAMP High, RMF, and NIST standards. You will embed secure architecture patterns, validate control implementation, and maintain continuous monitoring readiness across cloud, backend, and AI/ML components.

Acting as a key liaison between engineering teams and security stakeholders, you will drive risk identification and remediation, support accreditation activities, and deliver secure, resilient solutions that enable trusted decision‑making in support of national security objectives.

What You Will Do
  • Serves as a core security engineer ensuring the adjudication AI platform meets applicable federal requirements including FedRAMP High, RMF, NIST 800‑53, CJIS, and FBI ATO standards.
  • Collaborates with cloud, Dev Ops, backend, and AI/ML teams to embed secure architecture patterns, validate control implementation, and maintain continuous monitoring readiness across all platform components.
  • Develops RMF documentation, supports POA&M management, conducts vulnerability assessments, ensures secure baseline configurations, and supports accreditation activities.
  • Acts as the liaison between engineering teams and ISSO/security stakeholders, ensuring risks are identified, tracked, and remediated efficiently.
Security Engineering & Control Implementation
  • Implement NIST 800‑53 and FedRAMP High controls across access management, encryption, monitoring, boundary protection, configuration management, and secure data lifecycle workflows.
  • Validate secure configuration of AWS Gov Cloud services, EKS clusters, container runtimes, VPC boundaries, IAM policies, and workload identities.
  • Ensure backend APIs, vector stores, retrieval services, LLM inference gateways, scoring engines, and memo‑generation modules follow compliant security standards.
  • Embed secure coding, least‑privilege access enforcement, input validation, and hardened model‑serving workflows across all development teams.
RMF, ATO Support & Compliance Documentation
  • Develop and maintain SSPs, CIS statements, boundary diagrams, data‑flow diagrams, and continuous monitoring documentation for ATO readiness.
  • Assist with creation, tracking, and remediation of POA&M items, ensuring timely closure of vulnerabilities and deficiencies.
  • Prepare system artifacts for assessments, security testing, authorization reviews, and continuous monitoring updates.
  • Support mapping of AI/ML‑specific risks—model outputs, retrieval pathways, data provenance—to RMF controls and ATO expectations.
Vulnerability Management & Continuous Monitoring
  • Conduct vulnerability scans (Inspector, ECR scanning, Nessus/Qualys), analyze results, and coordinate remediation with engineering teams.
  • Support patching workflows, baseline enforcement, configuration drift detection, and container/OS hardening processes.
  • Validate Cloud Trail, Cloud Watch, Guard Duty, Config Rules, and other logging/monitoring systems for compliance with AU, SI, RA, and CM control families.
  • Develop dashboards and reporting for CA‑7, RA‑5, CM‑6, AU‑x, and other continuous monitoring requirements.
Secure Development, CI/CD & Dev Sec Ops  Alignment
  • Integrate SAST, SCA, IaC scanning, container scanning, and dependency verification into Dev Sec Ops  workflows.
  • Validate Terraform/Cloud Formation templates for alignment with encryption, identity, and Gov Cloud boundary restrictions.
  • Review API design, authentication flows, model inference endpoints, and data‑ingestion pipelines for security gaps or policy violations.
  • Support hardening of LLM workflows, retrieval processes, and document‑ingestion operations.
Mission Support & Collaboration
  • Work with backend, cloud, AI/ML, and data engineering teams to translate controls into engineering requirements aligned with adjudication workflows.
  • Provide teams with security requirements, engineering checklists, and compliance guidance to…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search