Security Engineer & Operations - Senior

Job Description

Active Top Secret Clearance Required

About Aretum

Aretum is a mission-driven organization committed to delivering innovative, technology-enabled solutions to our customers across defense, civilian, and homeland security sectors. Our teams work at the intersection of strategy, technology, and transformation, helping agencies solve their most critical challenges. We believe in investing in our people and creating a culture where collaboration, inclusion, and professional growth are at the forefront.

Job Summary

The Senior-Level Security Engineer & Operations professional provides advanced cybersecurity, compliance, and security engineering support to Department of War mission systems operating in complex, classified C5ISR and IIR environments. This role is responsible for technical leadership across Zero Trust implementation, SIEM/SOAR operations, traffic pattern analysis, incident response, and advanced risk assessment. The position serves as a senior technical authority and escalation point across enterprise, tactical, and mission networks.

Due to the nature of our work as a federal consulting organization, employees may be expected to handle Controlled Unclassified Information (CUI) and must adhere to applicable safeguarding and compliance requirements. 

Responsibilities

Zero Trust (ZT) Architecture & Implementation

• Support planning, assessment, and implementation of Zero Trust principles across classified environments
• Evaluate identity, device, network, application, and data protection controls
• Assess Zero Trust maturity against DoD Zero Trust reference architectures
• Provide recommendations to reduce implicit trust and strengthen access control enforcement

SIEM, SOAR & Traffic Pattern Analysis

• Oversee SIEM and SOAR operations for classified networks
• Analyze security logs, alerts, and correlated events to identify threats and anomalous behavior
• Perform traffic pattern analysis to detect lateral movement, unauthorized activity, and data exfiltration risks
• Support incident response investigations and forensic analysis

Advanced Vulnerability & Risk Analysis

• Oversee vulnerability management and advanced vulnerability analysis efforts
• Assess mission risk across enterprise, tactical, and mission networks
• Ensure the security posture of complex, interconnected classified systems
• Cloud Security: Configure and manage AWS Security toolsets (CloudTrail, GuardDuty, Inspector, Security Hub).

Leadership & Mentorship

• Provide technical leadership and guidance to engineering, operations, and compliance teams
• Mentor junior and mid-level cybersecurity personnel
• Support cybersecurity strategy development and continuous process improvement
• Stay current with emerging threats, adversary TTPs, and evolving DoD cybersecurity guidance

Requirements

• Master’s Degree + 5 years of relevant experience or Bachelor’s Degree + 8 years of relevant experience

• 8–12 years of experience in information assurance, cybersecurity, or security engineering
• IAT Level III Certification: Must possess one of the following: CASP+ CE, CCNP Security+, CISA, CISSP, GCED, GCIH, or CCSP
• Active Top Secret Clearance Required
• Extensive experience supporting RMF in classified C5ISR and IIR environments
• Strong hands-on experience with ACAS, ESS, SIEM/SOAR, SCAP, DISA STIGs, and Burp Suite
• Demonstrated expertise in traffic pattern analysis and advanced vulnerability analysis
• Expert knowledge of NIST 800-series publications and DoD cybersecurity requirements
• Proven ability to lead complex cybersecurity and compliance efforts across multiple systems
• Demonstrated willingness to learn new tools/techniques and support cross-functional cybersecurity activities as mission needs evolve

Preferred Requirements

• Extensive knowledge of AWS Security
• Experience supporting Department of War, DoD, or intelligence community mission systems
• Advanced certifications such as CISSP, CISM, CAP, or GSLC
• Experience implementing or assessing Zero Trust architectures
• Familiarity with cross-domain solutions and interconnected system authorization
• Hands-on experience with SIEM/SOAR tuning

Travel Requirements

This is a remote position; however, occasional travel may be required based on project needs, client meetings, team collaboration events, or training sessions. Travel is expected to be less than 10% and will be communicated in advance whenever possible. 

EEO Statement

Aretum is committed to fostering a workplace rooted in excellence, integrity, and equal opportunity for all. We adhere to merit-based hiring practices, ensuring that all employment decisions are made based on qualifications, skills, and ability to perform the job, without preference or consideration of factors unrelated to job performance. 

As an Equal Opportunity Employer, Aretum complies with all applicable federal, state, and local employment laws. 

We are proud to support our nation’s veterans and military families, providing career opportunities that honor their service and experience. 

If you require reasonable accommodation during the hiring process due to a disability, please contact [email protected] for assistance. 

Equal Opportunity Employer/Veterans/Disabled

U.S. Work Authorization

Applicants must be U.S. citizens and currently authorized to work in the United States on a full-time basis. This position supports a federal government contract and therefore requires an active Top Secret clearance. 

Benefits

Health Care Plan (Medical, Dental & Vision)  

Retirement Plan (401k) 

Life Insurance (Basic, Voluntary & AD&D)  

Paid Time Off 

Family Leave (Maternity, Paternity)  

Short Term & Long-Term Disability  

Training & Development