Ultra MaritimeRemote
Information Systems Security Engineer Senior
United States of America
Full Time
13 hours ago
$60,000 - $90,000 USD
No H1B
Key skills
IAMEntra IDActive DirectoryLeadershipRisk ManagementChange ManagementCommunicationNetwork SecurityFirewall
About this role
Ultra Maritime is a company focused on advancing naval technology and supporting the U.S. Navy and allied forces. They are seeking a hands-on Information Systems Security Engineer Senior to support cybersecurity engineering and compliance for unclassified environments handling Controlled Unclassified Information (CUI), emphasizing NIST SP 800-171 and CMMC Level 2 readiness and sustainment.
Responsibilities:
- Lead implementation and sustainment of NIST SP 800-171 controls and CMMC Level 2 practices
- Develop and maintain compliance artifacts: SSPs, POA&Ms, Asset inventories, boundary definitions, Network and data flow diagrams
- Conduct internal gap assessments and readiness reviews for CMMC
- Support evidence collection and technical walkthroughs during audits
- Translate compliance requirements into actionable technical work items
- Design, implement, and harden on-premise systems supporting CUI environments (Windows/Linux servers, AD/Entra ID hybrid, virtualization, network segmentation)
- Implement and tune technical security controls, including: Identity & access management (MFA, least privilege, RBAC), Endpoint security (EDR, device hardening, patching), Vulnerability scanning and remediation, Centralized logging and monitoring (SIEM), Secure configuration baselines (CIS/STIG-aligned)
- Partner with IT infrastructure to implement network security controls (firewalls, VLANs, NAC, secure remote access)
- Support secure system builds, change management, and incident response in CUI environments
- Help integrate security into on-prem and hybrid architectures (VMware/Hyper-V + cloud where applicable)
Requirements:
- Hands-on experience implementing NIST SP 800-171 controls
- Experience supporting CMMC Level 2 readiness or assessments
- Strong background in on-prem infrastructure security, including Windows and/or Linux server hardening
- Experience with Active Directory or hybrid identity environments
- Experience with virtualized infrastructure (VMware/Hyper-V)
- Experience with network segmentation and firewall policy design
- Experience with security tooling: vulnerability scanners, EDR, SIEM, MFA/IAM, configuration management
- Experience securing environments handling CUI (unclassified)
- Ability to move fluidly between documentation and technical implementation
- Strong communication skills with engineers, IT staff, and leadership
- Experience remediating findings from 800-171 assessments or pre-CMMC readiness reviews
- Experience with hybrid environments (on-prem + cloud)
- Typically, a Bachelor Degree (or equivalent) in Computer Science, Information Technology, Cybersecurity, or a related field with 4+ years of experience
- Familiarity with NIST SP 800-53 and other relevant security standards for classified systems
- CompTIA Security+ certification or equivalent
- Understanding of risk management frameworks used in government environments
- May be required to maintain security clearance