Position Summary
ERT is seeking a Security Engineer to work directly with Agile development and operations teams supporting the modernization of AWIPS (Advanced Weather Interactive Processing System) into a cloud-native, microservices-based enterprise platform.
The Security Engineer will be embedded within one or more Agile teams to implement, test, and automate security controls, ensuring compliance and mission security requirements are met. This role provides the hands-on expertise needed to bring the Security Architect’s strategy and design into day-to-day execution, making security a seamless part of the Agile delivery process.
Agile Team Integration
1. Participate in Agile ceremonies (refinement, planning, reviews) to identify and address security requirements early.
2. Translate security policies and architecture guidance into actionable user stories and backlog items.
3. Work with Product Owners to include security in acceptance criteria.
Implementation & Automation
4. Configure and maintain cloud-native security services (IAM, key management, encryption, security groups, policies).
5. Implement automated security scanning in CI/CD pipelines (SAST, DAST, container scanning, IaC validation).
6. Support secure configuration of microservices, containers, and APIs.
Monitoring & Response
7. Deploy and tune logging, monitoring, and alerting solutions to detect anomalous or malicious activity.
8. Assist in vulnerability management, incident response, and remediation.
9. Partner with Site Reliability Engineers (SREs) to ensure resilience and fault tolerance.
Collaboration & Support
10. Work closely with Cloud Engineers, Developers, and Network Engineers to enforce zero-trust principles.
11. Provide technical expertise to resolve security issues during development and deployment.
12. Escalate risks and gaps to the Security Architect for resolution and program-wide action.
Required Skills
13. 3+ years of experience in IT security or cloud security engineering.
14. Familiarity with cloud service provider security tools (AWS, Azure, GCP).
15. Hands-on experience with CI/CD pipeline security (e.g., GitLab CI, Jenkins, SonarQube, Aqua, Snyk).
16. Strong understanding of IAM, encryption, container security, and API security.
17. Ability to troubleshoot and secure distributed, data-intensive systems.
18. Good communication skills for collaborating with Agile teams.
19. Must be a US Citizen or Permanent Resident and be able to pass a background investigation to obtain a security badge to enter the applicable government facility.
Desired
20. Security certifications: CompTIA Security+, AWS Security Specialty, Azure Security Engineer Associate, or equivalent
21. Experience supporting federal mission systems (NOAA, NWS, DoD, DHS).
22. Background in large-scale cloud migrations or data-intensive platforms.
23. Familiarity with SAFe or other scaled agile frameworks.
Education
Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience).
Location
This position supports work at NOAA's Silver Spring and College Park, MD facilities.
Compensation
The salary range for this role is $66,000 - 242,000/year. This range is a good faith estimate based on similar roles across the organization. ERT uses several factors when extending an offer, including but not limited to, the position's scope and expected duties, a candidate’s work experience, education/training, and key skills.
Benefits
All full-time employees are eligible to participate in our flexible benefits package, which includes:
24. Medical, Rx, Dental, and Vision Insurance
25. 401(k) retirement plan with company-matching
26. 11 Paid Federal Government Holidays
27. Paid Time Off (PTO)
28. Basic Life & Supplemental Life
29. Health Savings Account, Flexible Spending and Dependent Care Flexible Spending Accounts
30. Short-Term & Long-Term Disability
31. Employee assistance program (EAP)
32. Tuition Reimbursement, Personal Development & Learning Opportunities
33. Skills Development & Certifications
34. Professional Membership Reimbursement
35. Employee Referral Program
36. Competitive compensation plan
37. Discretionary variable incentive bonuses based on factors such as individual performance, business unit performance, and/or the company’s performance
38. Publication and Conference Presentation Awards with bonuses
ERT is a VEVRAA Federal Contractor and Equal Opportunity employer - All qualified applicants will be considered for employment without regard to race, color, religion, sex, national origin, disability, or protected Veteran status.