Purpose and Impact:

Come be a part of an exciting and ever-changing program that provides a comprehensive range of state-of-the-art solutions and hands-on assistance in designing, implementing, managing, and sustaining operations across various network environments for our customer.

We provide an environment that fosters and supports innovation and valuing "outside-the-box" thinking to solve complex problems. There are several training opportunities for team members that want to learn new technologies and stay current with their technical skillset. We are a highly technical group and nurture growth, with a technical culture of cross-trained teammates with opportunities to develop additional skillsets.

Work Schedule: 8hrs/day, 5days per week, all onsite. Must be able to support Thursday night patching after hours (starting at 5pm). Occasional travel will be available.

Essential Responsibilities:

The Systems Engineer - Security serves as a technical leader responsible for architecting, engineering, and sustaining enterprise-grade security solutions across complex IT environments. This role is deeply hands-on and requires the ability to design, build, implement, operate, and optimize security technologies that protect mission-critical systems. The Systems Engineer provides technical direction, mentors junior engineers, and drives security innovation across the organization.

The Engineer leads advanced research, evaluation, and integration of emerging security technologies to strengthen the enterprise security posture. They ensure that system hardware, operating systems, software, and security controls adhere to organizational policies, compliance frameworks, and mission objectives.

Key responsibilities include:

• Architect, implement, and maintain enterprise security controls and infrastructure components across Windows, Linux, and virtualized environments
• Lead the design, deployment, configuration, and lifecycle management of endpoint hardening and security tools (e.g., Ivanti, WSUS, Trellix, Tenable)
• Oversee patch management processes, including OS updates, third-party software updates, and administrative tool upgrades
• Provide expert-level troubleshooting, root-cause analysis, and performance optimization for complex security and infrastructure issues
• Evaluate, recommend, and lead the adoption of new security tools, technologies, and methodologies
• Develop and maintain security documentation, including SSPs, RMF artifacts, engineering diagrams, and operational procedures
• Design and implement security requirements within enterprise business processes and technical architectures
• Support vulnerability assessments, interpret results, and develop risk-based mitigation strategies
• Conduct system hardening, configuration baselining, and compliance scanning to ensure adherence to security standards
• Support and guide incident response activities, including forensic analysis and containment strategies
• Collaborate with cross-functional teams to ensure security is embedded throughout system lifecycles
• Mentor and provide technical leadership to junior and mid-level security engineers
• Contribute to long-term security strategy, capability development, and continuous improvement initiatives
• Support a diverse set of enterprise networks and mission environments as part of a high-performing security engineering team

Work Environment, Physical Demands, and Mental Demands: Standard Work Environment

Minimum Requirements (Knowledge, Skills, and Abilities):

• 6+ years of progressive experience designing, engineering, and securing enterprise-scale IT systems across complex network environments
• Senior-level knowledge in architecting, deploying, and maintaining security infrastructure, including endpoint protection, vulnerability management, configuration management, and enterprise hardening solutions
• Demonstrated experience leading security engineering initiatives, including implementing advanced security controls, designing secure configurations, and overseeing patch and update strategies for Linux and Windows environments
• Extensive hands-on experience with enterprise security tools, such as Ivanti, WSUS, Trellix, Tenable, or equivalent platforms, including tool integration, optimization, and lifecycle management
• Strong understanding of security frameworks and compliance requirements, such as NIST RMF, NIST 800-53, STIGs, or equivalent federal/DoD standards
• Demonstrated ability to lead complex troubleshooting efforts, perform root-cause analysis, and drive long-term remediation strategies across enterprise systems
• Experience mentoring junior engineers, providing technical leadership, and contributing to team capability development
• Required IAT/Management-level certification: one or more of the following - CASP+, CISSP, or equivalent senior-level certification
• Required vendor certification in one or more relevant technologies (e.g., Microsoft, VMware, Cisco, NetApp, Pure Storage, HP, Dell, Linux+, Red Hat, HBSS, ACAS). Candidates without an active certification must obtain at least one within 6 months of hire

Security Clearance Required:

• TS/SCI

Minimum Years of Experience:

• 6+

Required Certifications:

• Required IAT Certs: one or more of the following: CISM, CISSP, or equivalent senior-level certification
• Required vendor certification in one or more relevant technologies (e.g., Microsoft, VMware, Cisco, NetApp, Pure Storage, HP, Dell, Linux+, Red Hat, HBSS, ACAS). Candidates without an active certification must obtain at least one within 6 months of hire

Preferred Qualifications:

• Bachelors Degree
• Experience working within a SOC
• Prior Military experience

This position is not designated as a safety sensitive position.

Other Responsibilities:

Safety - Amentum enforces a safety culture whereby all employees have the responsibility for continuously developing and maintaining a safe work environment. As appropriate, each employee is responsible for completing all training requirements and fulfilling all self-aid/buddy aid responsibilities, participating in emergency response tasks and serving on safety committees and teams.

Quality - Quality is the foundation for the management of our business and the keystone to our goal of customer satisfaction. It is our policy to consistently provide services that meet customer expectations. Accordingly, each employee must conform to the Amentum Quality Policy and carry out job activities in compliance with applicable Amentum Quality System documents and customer contracts. Each employee must read and understand his/her Quality Management and Customer Satisfaction responsibilities.

Procedure Compliance - Each employee must read, understand and implement the general and specific operational, safety, quality and environmental requirements of all plans, procedures and policies pertaining to his/her job.

Compensation Details:
$155,000 - $175,000

The compensation range or hourly rate listed for this position is provided as a good-faith estimate of what the company intends to offer for this role at the time this posting was issued. Actual compensation may vary based on factors such as job responsibilities, education, experience, skills, internal equity, market data, applicable collective bargaining agreements, and relevant laws.

Benefits Overview:

Our health and welfare benefits are designed to support you and your priorities. Offerings include:

• Health, dental, and vision insurance
• Paid time off and holidays
• Retirement benefits (including 401(k) matching)
• Educational reimbursement
• Parental leave
• Employee stock purchase plan
• Tax-saving options
• Disability and life insurance
• Pet insurance

Note: Benefits may vary based on employment type, location, and applicable agreements. Positions governed by a Collective Bargaining Agreement (CBA), the McNamara-O'Hara Service Contract Act (SCA), or other employment contracts may include different provisions/benefits.

Original Posting:
05/20/2026 - Until Filled
Amentum anticipates this job requisition will remain open for at least three days, with a closing date no earlier than three days after the original posting. This timeline may change based on business needs.