Information Security EngineerFull-time
Huntsville, AlabamaPosition SummaryTrideum is seeking a skilled and detail-oriented Information Security Engineer at our Huntsville, Alabama headquarters to plan, design, implement, and sustain enterprise-wide security solutions across our corporate environment in support of Trideum's Department of Defense and government contracting mission. This role is responsible for security architecture, compliance posture, information and data security, technical documentation, and classified system authorization-operating as a key individual contributor within a small cyber team responsible for Trideum's entire enterprise security program.
Thisis an onsite position at our headquarters office in Huntsville, AL.What You'll Do- Architect and maintain security hardened baselines and controls for systems, endpoints, networks, cloud workloads, and containers in alignment with Cybersecurity Maturity Model Certification (CMMC), National Institute of Standards and Technology (NIST), Risk Management Framework (RMF), ISO 27001, SOC 2, and Center for Internet Security (CIS) standards
- Design and maintain security architecture artifacts including network, system, component, and data flow diagrams aligned to the organization's compliance and operational requirements
- Design, configure, and maintain Microsoft Purview information protection solutions within Microsoft 365 GCC High-including sensitivity labels, Data Loss Prevention (DLP) policies, and custom Sensitive Information Types (SITs)-to classify and protect Controlled Unclassified Information (CUI) across the enterprise
- Administer Purview risk and compliance capabilities-Insider Risk Management, Communication Compliance, eDiscovery, Information Barriers, Records Management, and Compliance Manager-to support governance, audit readiness, and regulatory obligations
- Support and execute the RMF authorization process for Trideum's corporate classified lab-including System Security Plan (SSP), Security Assessment Report (SAR), Authority to Operate (ATO) package, continuous monitoring, and artifact management in Enterprise Mission Assurance Support Service (eMASS)
- Sustain and mature Trideum's CMMC compliance posture through ongoing control monitoring, internal assessments, gap analyses, and audit readiness activities
- Contribute and maintain the full body of compliance documentation-security policies, standards, procedures, evidence packages, and assessment artifacts-required to satisfy CMMC, RMF, and applicable regulatory frameworks and support internal reviews and third-party audits
- Maintain Plan of Action and Milestones (POA&M) and Organizational Plan of Action (OPA) records; actively track, coordinate, and drive remediation of security deficiencies across the enterprise
- Perform security impact analyses on change requests-assessing risk, documenting findings, and providing recommendations for approval or denial-for manager review and final determination
- Leverage the full Microsoft security stack-Defender, Microsoft Sentinel, Entra ID, Intune, Purview, and Azure Log Analytics-to validate control coverage and inform architecture decisions
- Perform and coordinate vulnerability management using Tenable Security Center and Microsoft Defender Vulnerability Management; validate hardening posture with CIS-CAT Pro and Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs)
- Conduct threat modeling of services, applications, and infrastructure tied to organizational risk and data classification; define how new systems and interfaces impact the current security posture
- Support Security Operations Center (SOC) functions through Security Information and Event Management (SIEM) rule development, threat hunting, incident triage, and root cause analysis alongside the Cybersecurity Analyst
- Coordinate security requirements across IT workflows-change, configuration, patch, and asset management-via Jira
Travel: 0-10% - Occasional travel may be required to Trideum branch offices, customer sites, or professional development conferences
Requirements and QualificationsEducation & Certifications- U.S. citizenship and must possess an Active Secret Clearance
- Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or related field is preferred
- Relevant certifications desired: SC-400 (Microsoft Purview Information Protection), AZ-500 (Microsoft Azure Security Engineer), CompTIA Security+, GIAC Security Architect (GDSA), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM)
- Commitment to professional growth and continuous learning
Experience- 2-5 years of experience in information security, cybersecurity engineering, or a compliance-focused technical role
- Working knowledge of one or more compliance frameworks: CMMC, NIST SP 800-171, RMF, ISO 27001, or SOC 2, including experience producing associated documentation or artifacts
- Hands-on experience with two or more Microsoft 365 security tools: Defender, Microsoft Sentinel, Entra ID, Intune, Purview, or Azure Log Analytics
- Familiarity with vulnerability management tools such as Tenable or Microsoft Defender Vulnerability Management
- Familiarity with Enterprise Mission Assurance Support Service (eMASS) for RMF package development, control implementation, and system authorization workflows
Technical Skills- Proficiency applying security controls across on-premises, hybrid, cloud, and containerized environments
- Proficiency with Microsoft Purview information protection and governance solutions within a GCC High environment, including DLP, sensitivity labeling, Insider Risk Management, and CUI data protection
- Strong technical writing skills for security documentation, architecture artifacts, and compliance evidence
We Take Care of Our PeopleWhether you're looking to launch a new career or grow an existing one, Trideum is the type of company where you can balance great work with great life because we believe that taking care of our people is the right thing to do. Trideum offers:
- Competitive pay based on the work you do here and not your previous salary.
- Traditional benefits such as medical, dental, vision, life, disability, and 401k matching.
- Employee Stock Ownership Plan (ESOP).
- Paid leave and the ability to cash out leave.
- Free access to certified financial planners, wellness and support services, and discount programs.
- Education assistance and professional development opportunities.
- And much more.
Ready to Apply?Start Your Application now!
