Security Engineer

Job description

Responsibilities Peraton is seeking an experienced Security Engineer to support the security, compliance, and maintenance of a large-scale, web-based government application. In this role, you will be responsible for implementing and sustaining a comprehensive security posture aligned with NIST SP 800-53 (Moderate), SOC 2 Type II, OWASP Top 10, and applicable state and federal regulatory requirements. You will work closely with program teams, agency stakeholders, and independent auditors to ensure continuous compliance, rapid incident response, and robust data protection across all environments. Location: This position will be remote but preferred to have a candidate from Oregon/Washington area. Day to Day Roles and Responsibilities: - Design, implement, and maintain security controls in accordance with NIST SP 800-53 (Moderate) across all system components - Deploy, configure, and maintain a Web Application Firewall (WAF) and enforce OWASP Top 10 validation throughout the software development lifecycle - Implement and manage TLS 1.2/1.3 encryption for data in transit and 256-bit AES (FIPS 140-2/140-3 compliant) encryption for data at rest - Conduct and coordinate SAST, DAST, and So...