Security Engineer - Remote Opportunity at Atropos Group

About the Role

We are seeking a Security Engineer to join our dynamic team at Atropos Group, a company dedicated to enhancing America’s national security through innovative technology. This Security Engineer remote position offers you the chance to shape the future of security in a fast-paced, mission-driven environment.

What You'll Do

• Spearhead security efforts and improvements for our Microsoft 365 commercial and GCC-High environments, covering identity, device management, data protection, and access governance.
• In coordination with the GRC engineer, design, implement, and maintain security controls aligned to compliance frameworks like CMMC L2 and ISO 27001, ensuring repeatability, auditability, and scalability.
• Partner with our Managed Service Provider (MSP) and Managed Security Service Provider (MSSP) on security operations and maintain internal ownership of security outcomes alongside the Head of Security.
• Provide incident response support as needed to augment our MSSP.
• Embed security into our development lifecycle through DevSecOps practices, ensuring pipelines, repositories, and deployment processes meet security standards without becoming a bottleneck.
• Build and maintain automation to support configuration management, compliance evidence collection, alerting, and remediation workflows.
• Contribute to security architecture decisions, including environment design, tooling selection, segmentation strategy, and cloud security posture management.
• Develop and maintain security documentation, runbooks, and procedures that reduce single-point-of-failure risk and support future team growth.
• Communicate security risk clearly to both technical and non-technical stakeholders, translating complexity into actionable decisions for the business.

Requirements

• 7+ years of security engineering experience with meaningful depth in Microsoft cloud security.
• Hands-on experience implementing NIST 800-171 and CMMC L2 controls in a technical capacity, including system boundary management and evidence production.
• Demonstrated experience with DevSecOps practices, including securing CI/CD pipelines, managing secrets, and integrating security tooling into development workflows.
• Scripting or automation experience (PowerShell, Python, or Bash) applied to security operations, configuration management, or compliance workflows.
• Architectural awareness to contribute meaningfully to environment design conversations.
• Strong documentation and communication skills suited to a cross-functional environment where security is one piece of a broader compliance and business program.
• The ability to see the big picture: understanding how individual security decisions connect to regulatory posture, business risk, and company growth.

Nice to Have

• Exposure to operational or platform security beyond corporate IT (cloud infrastructure, SaaS security, endpoint detection).
• Experience designing and implementing guardrails on AI-powered tooling.
• Experience building or evolving a security program at a startup or high-growth company.
• Current clearance (Secret or above) is nice but not required.
• Certifications that aid with 8140 compliance (CISSP, CISM, CISA, etc).

What We Offer

• Base Salary: $170,000 to $225,000 USD.
• Platinum Healthcare Benefits: comprehensive medical, dental, and vision plans with 100% employer-paid premiums.
• Unlimited PTO, with a minimum of 15 days enforced.
• 20 weeks of paid Caregiver & Wellness Leave.
• Tuition and professional development reimbursement for STEM, MBA, and licenses.
• 401(k) retirement savings plan with 6% employer matching contribution.
• Relocation assistance available depending on role eligibility.
• Strong company culture that values integrity, service, and commitment.

This Security Engineer remote role is perfect for those looking to advance their cybersecurity career while making a significant impact in national security. If you are ready to take on this challenge, we encourage you to apply!