OverviewGovCIO is hiring a Senior Security Engineer to support the Department of Veterans Affairs (VA) Data Modernization initiative with a focus on VA environment vulnerability remediation. The Senior Security Engineer will provide expert guidance on cloud security, deliver surge support for data ingestion needs, and help customers efficiently navigate the Security Impact Analysis (SIA) process. This role is critical to enabling secure, rapid, and scalable access to VA cloud environments. This position is fully remote within the United States.
Responsibilities
- Performs advanced vulnerability identification, analysis, and remediation across UNIX/Linux systems (UNIX, RedHat Enterprise Linux, Ubuntu), VMware infrastructures, and containerized workloads (Docker, Kubernetes, AWS EKS).
- Apply security engineering best practices to cloud environments in AWS (EC2, IAM, VPC, S3, ECR, ES) and Azure (Key Vaults, Storage Accounts, Databricks), ensuring secure configurations, compliance alignment, and mitigation of risks across application, infrastructure, and data layers using shell scripting, secure baselining, and automated remediation approaches.
- Provide end0to0end security support for all aspects of the Data Modernization effort, including secure workspace provisioning, access configurations, and governance controls.
- Deliver surge support to help customers ingest additional datasets securely, ensuring compliance with VA security and privacy requirements.
- Guide users through the Security Impact Analysis (SIA) process, ensuring documentation accuracy, risk identification, and alignment with VA security standards.
- Collaborate with intake, provisioning, and data engineering teams to ensure security requirements are integrated into automated workflows and common use0case configurations.
- Review and validate security controls for pre0created workspaces, including service principals, role-based access configurations, linked services, and data access pathways.
- Support the rapid provisioning goal by ensuring security checkpoints are met for DevTest and Production environments within required SLAs (12 days when applicable).
- Act as a security advisor to customers, helping them understand cloud-native tools, data governance policies, and best practices for secure analytics development.
- Coordinate with Databricks SMEs, CDW data teams, and VHA Data Lake stewards to validate security configurations and ensure secure data connectivity.
- Maintain and update security documentation, standard operating procedures, security architecture diagrams, and onboarding guidance.
- Support the 2single front door2 customer experience by contributing security-focused content related to onboarding, platform policies, and data access procedures.
- Help identify blockers that slow security review steps during provisioning and recommend enhancements to streamline approval workflows
Qualifications
Posted Salary RangeUSD $175,000.00 - USD $200,000.00 /Yr.