Staff Security Engineer

Job not on LinkedIn

November 12

Apply Now

Receive Emails with Similar Jobs

Acuity, Inc.

WebsiteLinkedInAll Job Openings

B2B • Government • Technology

Acuity, Inc. is a leading IT consultancy that empowers federal missions through innovation and technology. Partnering with federal agencies, Acuity focuses on evolving IT infrastructure, enabling data-driven decision-making, and automating critical processes to enhance mission performance. With expertise in areas such as digital evolution, data enablement, and hyperautomation, Acuity combines cutting-edge technology with a people-first approach to deliver tailored solutions that drive meaningful outcomes and foster collaborative relationships.

201 - 500 employees

Founded 2002

🤝 B2B

🏛️ Government

📋 Description

• Design and implement a comprehensive application security program—including policies, standards, and procedures—that reflects industry best practices. • Conduct regular security assessments and penetration tests to identify vulnerabilities and drive remediation. • Collaborate with engineering teams to integrate security into the software development lifecycle. • Lead initiatives to embed security testing throughout the Secure Software Development Lifecycle (SSDL) using Snyk. • Perform security code reviews and application-level testing. • Lead investigations and responses to security incidents and breaches. • Partner with GTM and Revenue teams to support customer security reviews and questionnaires. • Support SOC2 and other compliance efforts, ensuring audit readiness. • Document runbooks, best practices, and team initiatives using scalable, repeatable patterns. • Stay current on emerging threats, technologies, and frameworks to continuously improve our security posture. • Recommend and implement strategic enhancements to our security architecture.

🎯 Requirements

• Minimum of 5 years of experience in security engineering, with a focus on application and infrastructure security within a B2B Enterprise SaaS product. • Strong experience with Microsoft Azure cloud environments and native tooling. • Strong grasp of network and web protocols (e.g., TCP/IP, HTTP/S, IPSEC). • Familiarity with CI/CD pipelines (Github, Github Actions). • Experience with tools like Snyk (SSDL) and Wiz (CSPM). • Experience with OWASP, ASVS, MASVS, and other relevant standards. • Hands-on experience with security technologies: IDS/IPS, firewalls, antivirus, vulnerability scanners, forensic tools. • Knowledge of security frameworks like NIST and MITRE ATT&CK. • Proficiency in programming languages such as Python, PowerShell and Java. • Excellent analytical, problem-solving, and communication skills. • Security certifications such as CISSP, CISM, or OSCP are a plus.

🏖️ Benefits

• Stay healthy and happy with our comprehensive medical, dental and vision plans. • You can also choose from FSA or HSA options to suit your needs. • Save for your future with our 401K plan that matches your contributions. • Enjoy paid leave for various life events, such as sickness, disability, or parenthood. • Own a piece of the company with our #Allin Shares Program. • Take a break from work with our unlimited PTO policy to refresh and recharge. • Company paid holidays, birthday day off, closed 4th of July week and December holiday week, half day summer Fridays* and half day first Fridays*, and 8 hours of volunteer time. • Earn extra cash by referring qualified candidates to join our team. • Access professional and personal support through our employee assistance program. • Work from anywhere with our remote work environment that fosters collaboration and creativity.