Senior Specialist, MAST Application Penetration Tester KPMGSenior Specialist, MAST Application Penetration TesterWashington, DC$95,855–$208,265 / yearOne or more major ethical hacking certifications not required but preferred; GIAC Web Application Penetration Tester (GWAPT), Council for Registered Ethical Security Testers (CREST), Offensive Security Web Expert (OSWE), Offensive Security Web Assessor (OSWA). If you're looking for a firm with a strong team connection where you can be your whole self, have an impact, advance your skills, deepen your experiences, and have the flexibility and access to constantly find new areas of inspiration and expand your capabilities, then consider a career in Advisory.
Specialist Director, Managed Security Testing KPMGSpecialist Director, Managed Security TestingWashington, DC$169,005–$370,530 / yearIf you're looking for a firm with a strong team connection where you can be your whole self, have an impact, advance your skills, deepen your experiences, and have the flexibility and access to constantly find new areas of inspiration and expand your capabilities, then consider a career in Advisory. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, and safeguard business operations and company reputation.
Senior IT Risk and Compliance Analyst NORC at the University of ChicagoSenior IT Risk and Compliance AnalystWashington, D.C.$97,000–$120,000 / yearWith world-class benefits, a business casual environment, and an emphasis on continuous learning, NORC is a place where people join for the stellar research and analysis work for which we’re known, and stay for the relationships they form with their colleagues who take pride in the impact their work is making on a global scale. Experience conducting incident response across vendors, internal stakeholders, and program owners, including implementing, and coordinating the response plan, overseeing the technical response, and coordinating with legal, technical, and communications teams.
NewLead Penetration Tester Revolutional, LLCLead Penetration TesterWashington, DC$110,000–$150,000 / yearGPEN (GIAC Penetration Tester), GXPN (GIAC Exploit Researcher and Advanced Penetration Tester), OSCP (Offensive Security Certified Professional), or equivalent offensive security credential. You develop test plans, lead technical execution, produce security assessment reports and criticality matrices, and deliver out-brief presentations directly to agency CIO and CISO-level audiences.
Penetration Tester Accenture Federal ServicesPenetration TesterWashington, DCThe pay range for the states of California, Colorado, Hawaii, Illinois, Maine, Maryland, Massachusetts, Minnesota, New Jersey, New York, Vermont, Virginia, Washington, and the District of Columbia, and the city of Cleveland is: $126,300—$243,100 USD What We Believe As a company wholly dedicated to serving the US federal government, we bring together the best talent to help reinvent how federal agencies operate and deliver greater value for their mission and the American people. As required by local law, Accenture Federal Services provides reasonable ranges of compensation for hired roles based on labor costs in the states of California, Colorado, Hawaii, Illinois, Maine, Maryland, Massachusetts, Minnesota, New Jersey, New York, Vermont, Virginia, Washington, and the District of Columbia, and the city of Cleveland .
Senior Penetration Tester JPMorgan Chase & CoSenior Penetration TesterDCJPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
Senior Penetration Tester - Web & Hardware/IoT JPMorgan Chase & CoSenior Penetration Tester - Web & Hardware/IoTWashington, DCWorking knowledge of testing approaches for connected devices/IoT and purpose-built banking devices (e.g., ATMs, POS), including common attack surfaces such as exposed services, remote administration paths, authentication/authorization, hardening gaps, and insecure configurations. Experience assessing embedded systems / IoT devices in lab or onsite environments (e.g., device interface review, firmware/configuration analysis, and network/service exposure testing) relevant to ATM/POS ecosystems.
Senior Penetration Tester JPMorgan Chase Bank, N.A.Senior Penetration TesterWashington, DCFull timeJPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
Penetration Tester / Secret Peraton IncPenetration Tester / SecretDC$104,000–$166,000 / yearThis role supports critical national security missions by identifying vulnerabilities, emulating real-world adversaries, and strengthening defensive cyber capabilities across enterprise, cloud, mobile, IoT, and High Value Asset (HVA) systems. You will lead technical engagements, drive red team operations, and collaborate closely with SOC, incident response, and engineering teams to ensure findings translate into measurable security improvements.
NewPenetration Testing Team Lead ECS Federal LLCPenetration Testing Team LeadWashington, DC$170,000–$190,000 / yearEverforth ECS is seeking a Penetration Testing Team Lead who lives in close proximity to the National Capital Region (NCR) to join a premier, enterprise-scale cybersecurity program supporting a major federal civilian agency. As the Penetration Testing Team Lead, you will serve as the principal offensive security authority for the program - planning, directing, and executing advanced penetration testing and Red Team engagements across a large-scale federal civilian environment.
Penetration Testing Team Lead SkyePoint DecisionsPenetration Testing Team LeadWashington, DCRemote$130,000–$160,000 / yearSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. SkyePoint Decisions is seeking a Penetration Testing Team Lead to join our team supporting the Department of Education's (DoED) Federal Student Aid (FSA) Cybersecurity and Privacy Support Services (CPSS) in Washington, DC.
Penetration Testing, Software Assurance and Vulnerability Assessment Engineer One Federal SolutionPenetration Testing, Software Assurance and Vulnerability Assessment EngineerWashington, DCMinimum 2 years of recent experience in each of the following technical areas: software assurance, penetration testing with a range of automated tools, vulnerability assessment, security patch management, secure cloud/hybrid engineering, and CDS. One Federal Solution is seeking a highly skilled cybersecurity professional to provide senior-level penetration testing, software assurance, and vulnerability assessment engineering support.
Counter-Penetration Officer Beyond SOFCounter-Penetration OfficerWashingtonidentifying and mitigating potential security threats by. Develop and implement countermeasures to prevent.
Offensive Security Engineer JPMorgan Chase & CoOffensive Security EngineerDCChase is a leading financial services firm, helping nearly half of America's households and small businesses achieve their financial goals through a broad range of financial products. Exceptional organizational and communication skills, including the ability to write detailed technical reports and present findings to both technical and non-technical stakeholders.
Principal DT Security Analyst - 90289278 - Remote National Railroad Passenger CorpPrincipal DT Security Analyst - 90289278 - RemoteWashington, DCRemote$124,600–$161,352 / hourOur values of 'Do the Right Thing, Excel Together and Put Customers First' are at the heart of what matters most to us, and our Core Capabilities, 'Building Trust, Accountability, Effective Communication, Customer Focus, and Proactive Safety & Security' are what every employee needs to know and do to be most impactful at Amtrak. In accordance with DOT regulations (49 CFR § 40.25), Amtrak is required to obtain prior drug and alcohol testing records for applicants/employees intending to perform safety-sensitive duties for covered Department of Transportation positions.
Principal DT Security Analyst - 90289278 - Remote (Washington, DC, US, 20002) AmtrakPrincipal DT Security Analyst - 90289278 - Remote (Washington, DC, US, 20002)Washington, DCRemote$124,600–$161,352 / hourOur values of ‘Do the Right Thing, Excel Together and Put Customers First’ are at the heart of what matters most to us, and our Core Capabilities, ‘Building Trust, Accountability, Effective Communication, Customer Focus, and Proactive Safety & Security’ are what every employee needs to know and do to be most impactful at Amtrak. In accordance with DOT regulations (49 CFR § 40.25), Amtrak is required to obtain prior drug and alcohol testing records for applicants/employees intending to perform safety-sensitive duties for covered Department of Transportation positions.
NewCapabilities Development Specialist U.S. Department of DefenseCapabilities Development SpecialistWashington, DC$105,262–$197,200 / yearIf you have interests, skills, or experience in one or more of the following areas, wed like to hear from you: Software Specialties: Strong software development skills (C, C++, Assembly, ARM); Software RE/interactive debugging tools (e.g., Ghidra, OllyDbg, gdb); Software application vulnerability analysis and exploitation; Operating system internals; Mobile platform development and analysis; algorithmic analysis; prototyping. Relevant experience must be in one or more of the following: engineering hardware or software over their lifecycle (i.e., requirements analysis, design, development, implementation, testing, integration, deployment/installation, and maintenance), programming, vulnerability analysis, penetration testing, computer forensics, or systems engineering.
Senior Engineer, Offensive Security Humana IncSenior Engineer, Offensive SecurityWashington, DCRemote$117,600–$161,700 / yearYou'll embed with each service line and the AI & Tooling Lead rather than build in isolation; ship software with engineering rigor (reproducibility, evaluation, safety guardrails, human-in-the-loop where offensive operations demand it); deliver findings and tooling with reproduction steps, severity, business impact, and remediation; track risk in the enterprise risk platform; and operate within the organization's acceptable-use-of-AI policies and offensive security rules of engagement. Objective-driven adversary emulation; and adversarial assessment of internal LLM-powered products, agents, RAG pipelines, and ML applications, prompt injection, jailbreaks, model extraction and inversion, membership inference, data and supply-chain poisoning, evasion, and agent tool/sandbox abuse, validating that guardrails and classifiers actually hold.
Systems Engineering, SME Peraton IncSystems Engineering, SMEDC$146,000–$234,000 / yearThe successful candidate will serve as a technical advisor and operational SME, bridging advanced AI capabilities with real-world cyber operations to accelerate decision cycles, enhance threat detection, and support offensive cyber planning and execution. Our team of experts provides innovative engineering, logistics, sustainment, and customer support to ensure the functionality of network infrastructure, while addressing the most complex cyber operations and national defense challenges.
Systems Engineering, SME PeratonSystems Engineering, SMEWashington, D.C.$146,000–$234,000 / yearFull timeThe successful candidate will serve as a technical advisor and operational SME, bridging advanced AI capabilities with real-world cyber operations to accelerate decision cycles, enhance threat detection, and support offensive cyber planning and execution. Our team of experts provides innovative engineering, logistics, sustainment, and customer support to ensure the functionality of network infrastructure, while addressing the most complex cyber operations and national defense challenges.
Application Security Engineer Edgewater Federal Solutions, Inc.Application Security EngineerWashington, Washington, DCRemote$140,000–$160,000 / yearFull timeEdgewater Federal Solutions is ISO 9001, 20000-1, 270001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2025. This is a hands-on technical role that will provide the right candidate with an exciting opportunity to develop the federal customer’s application security program, working with developers and the organization to meet the strategic security goals of the agency.
DHS Information Systems Security Engineer OneZero SolutionsDHS Information Systems Security EngineerWashington, DCFull timeOneZero Solutions is on contract to provide division-wide support for Federal Information Security Modernization Act (FISMA) compliance, execution of the Risk Management Framework (RMF) process to achieve and maintain Authority to Operate (ATO) security authorizations, and deliver cyber security compliance for DHS operational mission systems. We are looking for personnel to support our DHS customer in achieving its mission of providing division-wide cyber security support for operational mission systems and assisting programs as they navigate the ATO process.
Application Security Engineer Virtru CorpApplication Security EngineerDC$180,000–$200,000 / yearBacked by Iconiq Capital, Bessemer Venture Partners, Foundry Capital, and Tiger Global, we''re helping Fortune 500 companies and government agencies discover that true data security means having the freedom to share, collaborate, and innovate - without compromise. Think of us as the Android of data protection: a robust platform with an open core that developers and partners can build upon, coupled with our own best-in-class applications that showcase what''s possible when you reimagine security from the ground up.
Web Developer Security Engineer Nationwide IT ServicesWeb Developer Security EngineerDC, DCRemoteFull timeThe selected candidate will be responsible for secure application design, vulnerability management, DevSecOps integration, security monitoring, WAF administration, File Integrity Monitoring (FIM), and Tier II security operations support. Position Overview: Nationwide IT Services (NIS) is seeking a Web Developer Security Engineer to support application security initiatives across web applications, APIs, and the software development lifecycle (SDLC).
Senior Security Engineer Evolver FederalSenior Security EngineerWashington, DCFull timeThe Senior Security Engineer will work closely with SOC teams, architects, and program managers to deliver robust security capabilities across cloud (AWS GovCloud, Azure Government), on-premises, and hybrid environments. This position requires deep technical expertise, hands-on experience with security tools, and the ability to lead engineering efforts for mission-critical systems in highly regulated environments.
Lead Security Engineer Revolutional, LLCLead Security EngineerWashington, DC$140,000–$200,000 / yearWe apply modern capabilities, including AI/ML, cloud, cybersecurity, and IT modernization to solve complex challenges, enable faster and more secure operations, and drive measurable mission outcomes. This program is driving a large-scale transformation of systems into a data-centric, cloud-native ecosystem capable of supporting high-volume, near real-time data processing and advanced analytics.
Application Security Engineer (REMOTE) EnerSysApplication Security Engineer (REMOTE)DCRemote$117,200–$146,600 / yearCollaborate within an expanding Cybersecurity team, and work closely with internal EnerSys teams to ensure new and continued compliance with cybersecurity frameworks and required programs and initiatives. Serve as a primary liaison between the Cybersecurity and development teams, ensuring security is integrated into design, development, deployment, and operations.
Senior Cyber Security Engineer Cooley LLPSenior Cyber Security EngineerDC$145,000–$210,000 / yearCompetencies: • Exceptional customer service skills • Excellent analytical, problem-solving, customer service, project management and communication skills • Goal-oriented • Excellent decision making, integrity and working with IT management, business users and staff • Excellent oral and written communication skills, including technical and user documentation • Strong organizational skills • Ability to work independently and under high pressure with tight schedules and deadlines • Ability to interact well with all levels of business professionals • Excellent active listening skills • Flexible and patient with process development/execution and adherence to instruct project management practices • Capable of grasping new concepts quickly and without prior experience • Detail-oriented • Ability to multi-task and work in fast-paced environment • Ability to interact and coordinate with several teams to achieve objectives • Ability to solve problems independently and simultaneously, effectively managing multiple tasks • Professional demeanor at all times. Preferred: • Bachelor's Degree in Information Technology or Computer Information Systems • CISSP or equivalent certifications and/or experience • Experience working with the following products: • Palo Alto Network's Firewalls and Prisma Access • Tenable Vulnerability Scanner • VMWare • Cyberhaven Data Loss Prevention • Proofpoint Email Gateway and Anti-Spam • Forensic Tools • S/MIME email encryption • Delina Secret Server • Crowdstrike • Google SecOps SIEM • Two factor authentication technologies • Penetration testing tools • Patch management systems.
Threat Detection and Vulnerability Managment Cybersecurity Engineer InquisIT LLCThreat Detection and Vulnerability Managment Cybersecurity EngineerWashington, DCThreat Hunting • Threat Detection • Detection Engineering • Vulnerability Management • Vulnerability Assessment • Vulnerability Remediation • Penetration Testing • Security Validation • MITRE ATT&CK • NIST RMF • NIST 800-53 • DISA STIGs • Continuous Monitoring • Incident Response • SIEM • EDR/XDR • Splunk • Elastic (ELK) • CrowdStrike Falcon • Microsoft Sentinel • Tenable • Nessus • Qualys • Rapid7 • Burp Suite • Metasploit • Nmap • Kali Linux • Windows Security • Linux Security • AWS Security • Azure Security • PowerShell • Python • Bash • Security Automation • Technical Documentation • ATO Support • POA&M Management. This role requires hands-on experience applying NIST RMF, NIST 800-53, DISA STIGs, and other federal cybersecurity frameworks through technical implementation, vulnerability remediation, authorization support, threat hunting, penetration testing, and continuous improvement of security controls.
Threat Detection and Vulnerability Managment Cybersecurity Engineer Inquisit LLCThreat Detection and Vulnerability Managment Cybersecurity EngineerWashington, DCThreat Hunting Threat Detection Detection Engineering Vulnerability Management Vulnerability Assessment Vulnerability Remediation Penetration Testing Security Validation MITRE ATT&CK NIST RMF NIST 800-53 DISA STIGs Continuous Monitoring Incident Response SIEM EDR/XDR Splunk Elastic (ELK) CrowdStrike Falcon Microsoft Sentinel Tenable Nessus Qualys Rapid7 Burp Suite Metasploit Nmap Kali Linux Windows Security Linux Security AWS Security Azure Security PowerShell Python Bash Security Automation Technical Documentation ATO Support POA&M Management. This role requires hands-on experience applying NIST RMF, NIST 800-53, DISA STIGs, and other federal cybersecurity frameworks through technical implementation, vulnerability remediation, authorization support, threat hunting, penetration testing, and continuous improvement of security controls.
Cyber Security Engineer SME Abacus TechnologyCyber Security Engineer SMEWashington, Washington, DCDevelop automation scripts for security monitoring and incident response tasks using tools like Terraform, Ansible, or cloud-native automation tools and implement and maintain security tools and technologies that enhance the overall security posture such as Prisma Cloud CSPM (Cloud Security Posture Management) platform. Experience in assisting responses to external audits, penetration tests, vulnerability assessments, recommending and coordinating application fixes, patch management, risk assessments, and implementing security procedures in the event of a security breach.
Staff Application Security Engineer The Nuclear CompanyStaff Application Security EngineerWashingtonWe expect every team member to continuously identify opportunities to automate workflows, enhance decision-making, improve processes, and contribute to the ongoing evolution of NOS as a strategic operating capability that enables The Nuclear Company to scale with excellence. This is a high-ownership role for a builder who is equally comfortable reviewing application architecture, threat modeling an API, improving GitHub security controls, and partnering directly with engineers to ship secure software quickly.
Senior Application Security Engineer II The Upside Travel Company, LLC.Senior Application Security Engineer IIDC$2–$3 / hourRun security code tests (SAST, SCA) and partner with engineers to remediate unsafe code Create threat models and engage technology teams to review and document risks Guide leadership on security architecture, design and best AppSec practices Train and upskill engineers on safe coding and vulnerability management Assist penetration testing initiatives and/or help manage bug bounties Support administration of AWS Control Tower and IAM provisioning Interact with the security community and keep aware of trends. What You Should Have: 6+ years of application or product security inclusive of reviewing Python code Experience with innovating and delivering solutions related to vulnerability management Deep knowledge of AWS and Lambda security architecture and AWS Control Tower Strong understanding and adoption of AI technologies Bachelor's degree in Computer Science or Engineering highly preferred Exceptional customer service and people skills.
NewStaff Application Security Engineer UpsideStaff Application Security EngineerWashington, District of ColumbiaOur technology uses the sophistication of online retail—profit measurement, attribution, and incrementality—to provide users with more value on their everyday purchases and brick-and-mortar businesses with new, profitable customers. Billions of dollars in commerce run through the Upside platform every year, and that value goes directly back to our retailer partners, the consumers they serve, and important sustainability initiatives.
Senior Cyber Security Engineer Howard University HospitalSenior Cyber Security EngineerDCAs a mission-driven healthcare organization Howard University Hospital relies on secure resilient and high-performing technology systems to support patient care clinical operations and enterprise services. Working across on-premises hybrid and cloud environments the Senior Cybersecurity Engineer helps ensure the hospitals technology environment remains secure compliant and resilient against emerging threats.
Senior Information Systems Security Engineer ManTech International CorpSenior Information Systems Security EngineerDC$141,500–$236,000 / year4 + years of focused experience in one or more of the following: computer network penetration testing and techniques; computer evidence seizure, computer forensic analysis, and data recovery; computer intrusion analysis and incident response, intrusion detection; computer network surveillance and monitoring; network protocols, network devices, multiple operating systems, and secure architectures. There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories.
Senior Security Engineer Evolver IncSenior Security EngineerDCThe Senior Security Engineer will work closely with SOC teams, architects, and program managers to deliver robust security capabilities across cloud (AWS GovCloud, Azure Government), on-premises, and hybrid environments. This position requires deep technical expertise, hands-on experience with security tools, and the ability to lead engineering efforts for mission-critical systems in highly regulated environments.
HSEEP Cybersecurity/Infrastructure Protection Exercise Professional CybervanceHSEEP Cybersecurity/Infrastructure Protection Exercise ProfessionalResponsibilities of the Project Manager include, but are not limited to, providing assistance to the Project Executive; enforcement of the contract provisions; serving as the primary point of contact for Contract communications; maintaining appropriate staffing levels; implementation of quality assurance and control measures; review of daily activity; review and submittal of invoices; and overall management and oversight of action planning and process improvements. Proven production experience in understanding cybersecurity frameworks, familiarity with SIEM tools, knowledge of network protocols and infrastructures, ability to analyze logs for irregularities, basic scripting or coding for task automation, threat intelligence analysis, and incident response.
IT & Cyber Security Engineer LASERSHIP, INC.IT & Cyber Security EngineerWashington, DCRemote$125,600–$157,000 / yearFounded in 1986, OnTrac has evolved into the leading provider of same-day and next-day delivery services in the U.S. for premier e-commerce and product-supply businesses, including five of the largest retailers in the U.S. Location: Remote - This position may be performed remotely in states where the company is authorized to employ individuals. This role develops and maintains security policies, monitors environments for vulnerabilities and suspicious activity, supports incident response and remediation, and helps ensure alignment with applicable compliance and regulatory frameworks.
Forward Deployed Security Engineer OpenAIForward Deployed Security EngineerWashington, District of ColumbiaFor unincorporated Los Angeles County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: protect computer hardware entrusted to you from theft, loss or damage; return all computer hardware in your possession (including the data contained therein) upon termination of employment or end of assignment; and maintain the confidentiality of proprietary, confidential, and non-public information. We’re looking for motivated, tenacious, and curious people who will work closely with engineering teams to ensure our infrastructure deployments are highly secure against our adversaries.
Security/Policy Engineer 10PearlsSecurity/Policy EngineerDCOur work has ranged from creating highly usable, secure digital experiences, mobile and software products, to helping businesses modernize through cloud adoption and development and the digitalization of their business processes. Our clientele is highly diverse, including Global 1000 enterprises, mid-market businesses, and high-growth start-ups.
Forward Deployed Security Engineer OpenAI LLCForward Deployed Security EngineerDCFor unincorporated Los Angeles County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: protect computer hardware entrusted to you from theft, loss or damage; return all computer hardware in your possession (including the data contained therein) upon termination of employment or end of assignment; and maintain the confidentiality of proprietary, confidential, and non-public information. We're looking for motivated, tenacious, and curious people who will work closely with engineering teams to ensure our infrastructure deployments are highly secure against our adversaries.
Information Security Engineer Municipal Securities Rulemaking BoardInformation Security EngineerDCThis role is responsible for securing web applications, cloud environments, networks, SaaS platforms, and enterprise systems while supporting day-to-day security operations and incident response activities. This position plays a key role in vulnerability management, detection engineering, cloud and application security, identity and access management, and continuous improvement of the company's overall security posture.
Cyber Palo Alto Networks Security Engineer/ Senior Consultant, Strategy, Growth, and Transformation Deloitte Touche Tohmatsu LtdCyber Palo Alto Networks Security Engineer/ Senior Consultant, Strategy, Growth, and TransformationWashington, DC$105,400–$207,800 / yearConfiguring and tuning security capabilities including Threat Prevention, intrusion prevention system/intrusion detection system (IPS/IDS), Anti-Spyware, Antivirus, WildFire, Domain Name System (DNS) Security, and Secure Sockets Layer/Transport Layer Security (SSL/TLS) decryption policies. This role supports the design, deployment, and optimization of Zscaler capabilities across complex enterprise environments, helping organizations strengthen security posture, improve user access experiences, and enable secure transformation across on-premises and cloud ecosystems.
Lead, Offensive Security Humana IncLead, Offensive SecurityWashington, DCRemote$142,300–$195,700 / yearYou'll embed with each service line rather than build in isolation; ship production-grade software with engineering rigor (reproducibility, evaluation, safety guardrails, human-in-the-loop where offensive operations demand it); deliver findings and tooling with reproduction steps, severity, business impact, and remediation; track risk in the enterprise risk platform; and operate within the organization's acceptable-use-of-AI policies and offensive security rules of engagement. Build autonomous and semi-autonomous agents that perform real offensive operations against networks, web applications, and infrastructure, LLM-driven planning loops that reason through reconnaissance, exploitation, privilege escalation, and lateral movement, multi-agent orchestration for breadth, and tool/function-calling that drives real offensive tooling.
Advanced Security Engineer, Enterprise Security Relativity ODA LLCAdvanced Security Engineer, Enterprise SecurityWashington, WA$104,000–$156,000 / yearRole Responsibilities: • Design, implement, and operate endpoint security controls across laptops and mobile devices • Build automation and tooling to enforce secure configuration baselines and reduce manual effort • Partner with IT on device management, deployment, and lifecycle security • Reduce enterprise risk by hardening devices, limiting standing privilege, and improving visibility • Participate in incident response and endpoint‑related investigations in partnership with Cyber teams • Continuously improve endpoint security posture using metrics, telemetry, and risk insights. Required Skills: • Endpoint Security • Network Security • Penetration Testing • Security Architecture Design • Security Automation • Security Information • Security Information and Event Management (SIEM) • Security Operations • Threat Modeling • Vulnerability Management.
AI Cyber Engineer (Enterprise Security & Autonomous Remediation) Ampcus IncorporatedAI Cyber Engineer (Enterprise Security & Autonomous Remediation)Washington, DC$120,000–$180,000 / yearThe AI Cyber Engineer is a senior technical role responsible for implementing and operating AI-driven cybersecurity capabilities to continuously detect, prioritize, and remediate vulnerabilities across the enterprise IT environment. The engineer will leverage advanced AI models, agentic frameworks, and security tooling to: Continuously Client vulnerabilities across infrastructure, applications, and AI systems.
Senior Cybersecurity Engineer / Offensive Security Lead Apogee Global RMSSenior Cybersecurity Engineer / Offensive Security LeadWashington, District of ColumbiaApogee operates under the prime tier engagement where your offensive skill is respected, your time isn’t wasted, and your work directly supports national‑level missions. This role is designed for operators who bring hands‑on offensive tradecraft, current certifications, and recent red‑team experience in mission‑critical environments.
Security Software Engineer, Applied Computing Starshield Space Exploration Technologies CorpSecurity Software Engineer, Applied Computing StarshieldDC$130,000–$150,000 / yearPREferred SKILLS AND EXPERIENCE: • Demonstrated ability to deal with ambiguity, learn quickly, problem solve, and take ownership of the end result • Understanding of core security engineering topics: cryptography, authentication, network security, operating system security • Experience designing, prompting, and securing agents that can perform long-running autonomous tasks • Experience red-teaming/penetration-testing LLMs, including prompt injection, jailbreaking, and data exfiltration • Experience deploying and managing LLMs, including infrastructure and maintenance to ensure reliable, scalable operation • Experience contributing security improvements to complex systems • Flexibility, communicating clearly, and establishing and maintaining productive working relationships with other engineering teams • Excellent communication skills, both written and verbal • Ability to work both independently and in a team • Advanced degree in a technical or engineering discipline • Active Top Secret, Top Secret SCI, or DOE Level Q clearance. BASIC QUALIFICATIONS: • Bachelors degree in computer science or another STEM discipline; OR 2+ years of professional experience in security software development in lieu of a degree • Experience with one or more software development languages (i.e. Python, C++, Golang) • Experience designing and implementing security solutions for operating systems, distributed systems, or other enterprise/large-scale infrastructure • Experience designing and implementing solutions with LLMs, LLM-based agents, or other AI topics.
Sr. Security Software Engineer, Applied Computing Starshield Space Exploration Technologies CorpSr. Security Software Engineer, Applied Computing StarshieldDC$168,000–$230,000 / yearThe Starshield team is building highly reliable in-space mesh networks, designing secure systems to guarantee access to space, designing next-gen communication and sensing software, and more. You may also be eligible for long-term incentives, in the form of company stock, stock options, or long-term cash awards, as well as potential discretionary bonuses and the ability to purchase additional stock at a discount through an Employee Stock Purchase Plan.