Defense and Intelligence Systems Security Engineer - Remote

About the Role

We are seeking a Defense and Intelligence Systems Security Engineer to join our team at Esri. This remote position plays a hands-on role in securing systems that support critical Defense and Intelligence missions. As a Defense and Intelligence Systems Security Engineer, you will focus on applying risk management frameworks, engineering security controls, and maintaining system authorizations for cloud and on-prem environments. You'll collaborate closely with other system engineers, administrators, and program teams to ensure systems are built, assessed, and operated in compliance with DoD and NIST requirements.

What You'll Do

• Apply RMF processes to support system Assessment & Authorization (A&A), including control selection, implementation, assessment, and continuous monitoring.
• Develop, review, and maintain security documentation such as SSPs, POA&Ms, SARs, and ATO artifacts in tools such as XACTA or eMASS.
• Conduct vulnerability assessments and compliance scans (such as ACAS) and track remediation of findings and IAVM requirements.
• Implement and validate security controls aligned with NIST 800-53, CNSSI 1253, and related DoD guidance.
• Support system hardening, patching, and configuration management in compliance with STIGs for Linux, Windows, and network devices.
• Monitor systems for security events and support incident response and risk mitigation activities.
• Collaborate with system engineers, administrators, and DevSecOps teams to integrate security throughout the system lifecycle.
• Provide cybersecurity risk input to program leadership, Authorizing Officials (AOs), and stakeholders.

Requirements

• 8+ years of professional experience in a similar position, supporting similar responsibilities.
• Professional experience with RMF, A&A, POA&M, and ATO documentation (XACTA/eMASS).
• Hands-on experience with vulnerability scanning and compliance tracking (ACAS, IAVM).
• Experience securing Linux and Windows systems, STIGs, patching, and system hardening.
• Knowledge of NIST 800-series publications and incident response processes.
• DoD 8570 IAT Level II or higher certification (such as Security +, CySA +, CISSP).
• Strong analytical, communication, and collaborative skills.
• US citizenship with Active or Current (within 2 years of active) Top Secret Security Clearance with SCI eligibility.
• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a STEM-related field.

Nice to Have

• Scripting or development experience (Python, Java, React).
• DevSecOps tools and pipeline experience.
• Experience with Linux (Red Hat/CentOS), databases, web apps, or big data platforms.
• Familiarity with Agile environments and tools (Jira, Confluence).
• Experience with NIST SP 800-171 and System Security Engineering (SSE).
• Master's degree in Computer Science, Cybersecurity, Information Technology, or a STEM-related field.

What We Offer

• Comprehensive relocation assistance to help you settle in your new role.
• Competitive total rewards strategy including industry-leading health and welfare benefits.
• 401(k) and profit-sharing programs.
• Minimum accrual of 80 hours of vacation leave and twelve paid holidays throughout the calendar year.
• Opportunities for personal and professional growth.