Key skills
Network securityFirewallsIntrusion Detection SystemsIntrusion Prevention SystemsNetwork monitoring toolsVulnerability managementCompliance frameworks - NISTCompliance frameworks - FISMANetwork infrastructureNetwork protocolsTraffic monitoringAccess controlSecurity documentationIncident loggingRunbook executionPatch managementSecurity configurationThreat detectionRemediation trackingPOA&M analysisSpill responseNetwork SecurityFirewall
About this role
Maximus is a trusted federal partner supporting mission-critical programs across national security, defense, and public service delivery. The Security & Compliance Engineer will support documentation, reporting, and compliance activities while ensuring alignment with enterprise security and compliance requirements.
Responsibilities:
- Experience supporting documentation, reporting, and compliance activities
- Understanding of network monitoring tools and alert triage processes
- Ability to support activities across multiple enterprise network environments
- Strong attention to detail and ability to work in structured, compliance-driven environments
- Familiarity with network security concepts, including firewalls, access control, and traffic monitoring
- Experience or exposure to vulnerability management, compliance tracking, or IT security support functions
- Basic understanding of network infrastructure, protocols, and communications systems
- Ability to execute directed security actions using standard operating procedures and runbooks
- Provide embedded cybersecurity support within network and communications environments, ensuring alignment with enterprise security and compliance requirements
- Execute directed cyber actions including network access restrictions, firewall and policy updates, allow/block list management, and configuration changes
- Support vulnerability management and ISVM compliance activities for network and communications systems, including remediation tracking and reporting of findings
- Perform POA&M analysis and assist with remediation coordination for network-related security issues
- Monitor and operate network security tools, supporting alert triage, threat detection, and initial response actions across network and communications infrastructure
- Assist in spill response and containment activities impacting network systems, including execution of predefined remediation actions and evidence collection
- Contribute to preparation of monthly scorecard data and reporting metrics related to network security posture and compliance
- Maintain documentation, incident logs, and runbooks to support auditability, traceability, and knowledge transfer
- Support testing and validation activities following network changes, patching, upgrades, and security configuration updates
- Collaborate with network, infrastructure, and security teams to ensure consistent enforcement of security controls across all communications environments
Requirements:
- Ability to obtain and maintain a Public Trust is required
- Must be a U.S. Citizen without dual citizenship
- Experience supporting documentation, reporting, and compliance activities
- Understanding of network monitoring tools and alert triage processes
- Ability to support activities across multiple enterprise network environments
- Strong attention to detail and ability to work in structured, compliance-driven environments
- Familiarity with network security concepts, including firewalls, access control, and traffic monitoring
- Experience or exposure to vulnerability management, compliance tracking, or IT security support functions
- Basic understanding of network infrastructure, protocols, and communications systems
- Ability to execute directed security actions using standard operating procedures and runbooks
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience)
- 6+ years of experience in cybersecurity, network security, or IT infrastructure support in enterprise environments
- An active Public Trust and/or DHS suitability is preferred
- Experience with network security tools such as firewalls, IDS/IPS, and monitoring platforms
- Familiarity with vulnerability scanning and remediation in network environments
- Knowledge of compliance frameworks such as NIST and FISMA
- Experience supporting network configuration changes and access control enforcement
- Exposure to hybrid environments including on-premises and cloud networking
- Strong troubleshooting, documentation, and coordination skills
- Ability to work effectively across network and security teams
- Provide embedded cybersecurity support within network and communications environments, ensuring alignment with enterprise security and compliance requirements
- Execute directed cyber actions including network access restrictions, firewall and policy updates, allow/block list management, and configuration changes
- Support vulnerability management and ISVM compliance activities for network and communications systems, including remediation tracking and reporting of findings
- Perform POA&M analysis and assist with remediation coordination for network-related security issues
- Monitor and operate network security tools, supporting alert triage, threat detection, and initial response actions across network and communications infrastructure
- Assist in spill response and containment activities impacting network systems, including execution of predefined remediation actions and evidence collection
- Contribute to preparation of monthly scorecard data and reporting metrics related to network security posture and compliance
- Maintain documentation, incident logs, and runbooks to support auditability, traceability, and knowledge transfer
- Support testing and validation activities following network changes, patching, upgrades, and security configuration updates
- Collaborate with network, infrastructure, and security teams to ensure consistent enforcement of security controls across all communications environments