Senior Security Engineer

Job Description

Everforth ECS is seeking a Senior Security Engineer to work in our Portland, OR office. This position is contingent upon contract award. The Senior Security Engineer plays a critical role in designing, implementing, and maintaining advanced security controls to protect the organization’s infrastructure, applications, and data. This role combines hands‑on engineering, incident leadership, and strategic security design, serving as a technical authority and mentor within the security organization.

The ideal candidate has deep technical expertise, strong judgment under pressure, and the ability to drive security outcomes across complex, distributed environments.

• Design, implement, and maintain security controls across network, endpoint, cloud, and application environments
• Lead secure architecture reviews and contribute to system and platform designs
• Evaluate and recommend security tools, technologies, and architectural improvements
• Ensure security is embedded into system life cycles and engineering workflows

• Design and tune detection logic, alerts, and monitoring for threats and anomalous activity
• Lead and support incident response activities, including triage, investigation, containment, and remediation
• Perform root cause analysis and drive long‑term corrective actions
• Support threat hunting and proactive security assessments

• Oversee vulnerability management efforts, including prioritization and remediation guidance
• Conduct security assessments, configuration reviews, and system hardening
• Support compliance, audit, and risk management initiatives

• Develop scripts, tooling, or automation to improve security operations and response
• Partner with Dev Ops, SRE, and engineering teams to integrate security tooling into CI/CD pipelines
• Improve reliability, scalability, and efficiency of security platforms

• Serve as a technical escalation point and subject matter expert
• Mentor and guide junior security engineers
• Collaborate cross‑functionally with IT, Dev Ops, Product, and SOC teams
• Communicate risks, findings, and recommendations to technical and leadership audiences

• 5+ years of experience in security engineering or related technical security roles
• Strong expertise in operating systems (Linux, Windows)
• Strong expertise in networking concepts and protocols
• Strong expertise in common attack techniques and defensive controls
• Hands‑on experience with enterprise security tools such as SIEM, EDR/XDR, IDS/IPS, vulnerability scanners, and firewalls
• Experience leading or significantly contributing to incident response efforts
• Strong scripting or automation skills (Python, Bash, Power Shell, or similar)

• Experience with cloud security (AWS, Azure, GCP) and hybrid environments
• Familiarity with infrastructure‑as‑code and CI/CD tooling
• Experience in regulated industries (finance, healthcare, government)
• Security certifications such as CISSP, GIAC, Security+, CEH, or equivalent
• Experience designing security for large‑scale or high‑availability environments

Everforth ECS (ECS Federal LLC) is an equal‑opportunity employer and does not discriminate on any basis protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran, or any other status protected by applicable federal, state, or local jurisdiction law.