Senior Security Engineer

Evolver Federal is seeking a Senior Security Engineer to fulfill a requirement for a potential government client. The Senior Security Engineer is responsible for designing, implementing, and maintaining advanced security solutions to protect federal systems and data. This role prioritizes continuous monitoring, FISMA compliance, and OIG audit readiness while engineering secure architectures, integrating cybersecurity technologies, and ensuring adherence to federal standards such as NIST 800-series, RMF, and TIC 3.0. The Senior Security Engineer will work closely with SOC teams, architects, and program managers to deliver robust security capabilities across cloud (AWS Gov Cloud, Azure Government), on-premises, and hybrid environments.

This position requires deep technical expertise, hands-on experience with security tools, and the ability to lead engineering efforts for mission‑critical systems in highly regulated environments.

Responsibilities

• Design and implement security solutions for enterprise and federal environments, ensuring compliance with RMF and NIST guidelines.

• Engineer secure configurations for SIEM, SOAR, EDR, and vulnerability management platforms.

• Support Tier 2/3 SOC analysts by developing advanced correlation rules for Splunk and optimizing detection workflows.

• Support SOC operations by integrating advanced detection and response capabilities.

• Conduct security assessments, penetration testing, and risk analysis for critical systems.

• Implement continuous monitoring and automated compliance reporting to meet Department of Labor and federal requirements.

• Develop and maintain security engineering documentation, including system security plans and architecture diagrams.

• Collaborate with architects and program managers to align security engineering with strategic objectives.

• Lead efforts to integrate security into Dev Sec Ops  pipelines and CI/CD workflows.

• Provide technical expertise during incident response and forensic investigations.

• Evaluate emerging technologies and recommend enhancements to improve security posture.

• Define and track measurable outcomes such as MTTR reduction, SLA adherence, compliance score improvements, and false positive reduction to meet performance‑based contract KPIs.

• Coordinate with federal stakeholders (CISO, ISSOs, AO) and provide audit support for ATO processes.

• Ensure adherence to performance‑based contract requirements and federal cybersecurity mandates.

Basic Qualifications

• Bachelor's Degree in Computer Science, Information Management (IM), Information Technology, Engineering, or equivalent with 6 years of technical experience, or 4 years' experience in IT Solutions at senior management

• Certified Information Systems Security Professional (CISSP) mandatory with Information Systems Security Engineering Professional (ISSEP) concentration

• Project Management Institute (PMI) Project Management Professional (PMP) (Highly Recommended)

• Information Technology Infrastructure Library (ITIL) 4 Foundation

• 10 years of successful enterprise experience in an IT or technology-related field, with the last 5 years, on large government technical contract/BPAs

• US Citizen with the ability to pass a comprehensive government background check

Preferred Qualifications

• Master's degree in cybersecurity, IT, or a related technical field

• Experience supporting SOC operations in federal or regulated environments

• Familiarity with RMF, NIST 800-series, OMB A-130, and TIC 3.0

• Proven leadership in cross‑functional teams and performance‑based contracts

• Strong communication skills, including executive briefings and incident reporting

• Hands‑on experience with SIEM (Splunk, Elastic), SOAR (Cortex XSOAR), and EDR (Crowd Strike, Microsoft Defender).

• Expertise in cloud security engineering (AWS, Azure, GCP) and container security (Kubernetes, Docker).

• Familiarity with Zero Trust Architecture principles and implementation strategies.

• Familiarity Continuous Diagnostics and Mitigation (CDM).

• Experience with PKI, encryption standards, and secure network design.

• Knowledge of automation tools for security orchestration and compliance reporting.

• Ability to lead…