Security Engineer

Who is Element?

We serve as a partner at the intersection of innovation and our clients' needs, efficiently crafting meaningful user experiences for government and commercial customers. By breaking down complex problems to their fundamental elements, we create modern digital solutions that drive efficiencies, maximize taxpayer dollars, and deliver essential outcomes that serve the people.

Why Work at Element?

Make an impact that resonates-join our vibrant team and discover how you can improve lives through digital transformation. Our talented professionals bring unparalleled energy engagement, setting a higher standard for impactful work. Come be a part of our team and shape a better future.

Position Overview

Element is looking for a Security Engineer with an unwavering passion for working in autonomous, self-directed teams to build and secure complex systems using lean, agile mindsets—this means delivering incremental business value with each sprint and enabling options at all scales. For this project, you and your team will be operating, enhancing, and securing an enterprise platform that effectuates the consumption and usage of data to improve healthcare experiences formillions of Americans.

You’ll be part of a multi-disciplinary, agile team tasked with operating and enhancing an enterprise government system and with performing migration from one AWS account to another. The project work is primarily remote but may require some client on-site work estimated at <10%.

• Perform migration of infrastructure from one AWS environment to another ensuring security and compliance.
• Mob and pair with teammates to design, develop, test, debug, deploy, and document software in a secure and agile environment.
• Work with other DevSecOps Engineers, Full Stack Software Engineers, Data Engineers and Data Analysts to build and maintain infrastructure with 100% automation of operations.
• Perform security code reviews and pair with teammates to ensure security best practices are followed throughout the entire development lifecycle.
• Ensure the team remains in compliance with agency security and compliance protocols.
• Tackle a wide variety of technical problems.
• Exercise and expand your full range of skills and experience.

• Bachelor's degree in Computer Science or related field.
• 6+ years of experience System Security Engineer or related position.
• Extensive experience in Information Security, Cloud/Operations Security, Application Security, Threat Modeling and Risk Identification, Security Controls and Compliance, Pen Testing, Dynamic and Static Scanning Tools.
• The ability to facilitate the identification of relevant application security threats (Threat Modeling in particular) and the establishment of appropriate security control requirements and test plans.
• Experience with tools such as AWS Trusted Advisor and dynamic and static scanner analysis for heterogeneous code bases.
• The ability to ensure that software and infrastructure is architected, designed, and implemented to avoid security-related logic flaws and other adverse security consequences.
• Application security experience, including familiarity with OWASP and ASVS.
• Security and privacy know how sufficient to apply NIST RMF (800-53 rev 5) in application design and implementation.
• Experience within CMS is a plus.
• US Citizenship or Permanent Residency required.
• Must reside in the Continental US.
• Depending on government agency, specific requirements may include public trust background check or security clearance.

Location

Be in your Element. We are a remote-first company based in Washington, DC.

Element is an equal opportunity employer All qualified applicants will receive consideration for employment without regard to age, ancestry, race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, marital status, protected veteran status, or any other legally protected class.

We believe in a world where solutions we build improve the lives of those who use them.