×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Network Security Information Security

Security Engineer

Job in Washington, District of Columbia, 20022, USA
Listing for: Nominal
Full Time position
Listed on 2026-01-12
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Network Security, Information Security
Salary/Wage Range or Industry Benchmark: 200000 - 250000 USD Yearly USD 200000.00 250000.00 YEAR
Job Description & How to Apply Below

Security & Compliance Engineer

Join to apply for the Security & Compliance Engineer role at Nominal.

About Nominal

Nominal is building the software infrastructure powering the world’s most advanced hardware systems—from spacecraft and autonomous vehicles to next‑generation industrial machines. Our platform ingests high‑rate telemetry, validates complex autonomy software in real time, and enables engineers to iterate faster without sacrificing safety or precision. We’re a small, fast‑moving team of engineers and operators who own problems end‑to‑end, work across disciplines, and thrive on challenges at the intersection of hardware and software.

About

the Role

As an early team hire dedicated to information security (Security) and governance, risk, and compliance (GRC), you’ll be responsible for working across the organization, developing and maturing various Security and GRC controls. You’ll also play a critical role in assisting Nominal to meet various authority to operate (ATO) initiatives. This may include tasks such as hardening Nominal’s software platform (both security and availability), deploying into secure environments, assisting with incident response, managing Nominal’s network, ensuring endpoint security, establishing baseline device configuration, guaranteeing technical compliance with information security standards, and more.

  • Own the Posture:
    Technical excellence in product hardening and information security is table‑stakes for Nominal’s success due to our product and industry. You’ll need to internalize this and fully own it in a first‑class way. Set Nominal up for success in serving large DoD and enterprise customers in a secure manner.
  • Detect and Respond:
    Strengthen Nominal’s operational and product security through active monitoring, threat detection, and incident response. Manage endpoint protection and logging tools (e.g., EDR, SIEM), investigate alerts, and collaborate with engineering to close gaps and prevent recurrences.
  • Plan and Execute:
    Translate GRC requirements (e.g., CMMC, NIST 800‑171, FedRAMP, NIST 800‑53, Impact Level (IL) 4/5, and National Security Systems (NSS)) to propose and lead a rollout of technical actions and policies that meet stringent information security standards. Assist and support the maintenance of our Information Security Program. Apply technology standards to classified, air‑gapped environments.
  • Coach Our Team:
    Create and deliver approachable, relevant training to ensure all employees are equipped to maintain high technical standards for Security and Compliance. Provide guidance regarding procurement or download of secure, vetted third‑party software, applications, and libraries.
  • Communicate the Standard:
    Prepare communications for government partners, assessors, auditors, and customers that satisfactorily explain Nominal’s technical security posture, both for our software platform and IT systems/endpoints, and inspire confidence in our secure product and business practices.
We're looking for someone with
  • 4+ years of experience working as a Security Engineer/Security Analyst.
  • Hands‑on expertise in endpoint protection, event monitoring and logging (EDR & SIEM). Incident handling experience including incident preparation, detection, analysis, containment & eradication, and post‑mortem.
  • Strong understanding of system administration, including network setup (VPN, SSIDs, firewalls), software & hardware allow listing/block listing, encryption & secure protocols, identity and access management controls.
  • Familiarity with cloud environments such as AWS Gov Cloud, Microsoft Azure, Microsoft Government Community Cloud (GCC). Experience implementing and maintaining compliance frameworks such as CMMC, NIST 800‑171, FedRAMP, NIST 800‑53, DoD Impact Levels (IL4/5), National Security Systems (NSS), SOC2, and ISO 27001/27002.
  • Experience with federal contracting and data protection requirements, whether in government or industry settings.
  • Experience conducting risk assessments, vulnerability management, and security control testing to proactively identify and remediate issues and areas of improvement.
  • General knowledge of Dev Sec Ops  and infrastructure concepts, with the…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search