Security Engineer- Fargo, ND - Fargo, North Dakota, United States

ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warrio ...

Job description

ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers. If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps. All positions are onsite, unless otherwise stated.

Description
*Position is Eligible for Remote / Work from Home Opportunity*
Department: Systems Security
Telecommuting Eligible: Yes
Job Grade: E14 

Job Summary:
The Security Engineer designs, implements, and maintains enterprise security technologies to protect systems and data, ensuring compliance with Acceptable Risk Safeguards (ARS), National Institute for Standards and Technology (NIST), and Federal Information Systems Management Act (FISMA) standards. Engineers focus on Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), automation, vulnerability management, endpoint protection, and threat detection, collaborating with Security Operations Center (SOC), Governance, Risk, and Compliance (GRC), and IT teams to strengthen detection, prevention, and response. Senior Security Engineers provide advanced expertise, lead tool and process design, mentor junior staff, and drive continuous improvement and automation across security operations.

Essential Functions:
(Key Duties/Responsibilities/Accountabilities)

• Designs, implements, and maintains enterprise security tools including SIEM, Endpoint Detection Response (EDR), Data Loss Prevention (DLP), and vulnerability management systems.
• Integrates log sources and ensures end-to-end visibility across cloud and on-prem environments.
• Develops, tunes, and optimizes SIEM correlation rules, dashboards, and alerts.
• Designs and maintains SIEM/SOAR detection rules mapped to MITRE ATT&CK techniques to improve alert fidelity and adversary coverage.
• Incorporates ATT&CK-based logic into automation workflows and detection engineering initiatives.
• Supports incident response by performing root cause analysis and recommending mitigations.
• Conducts security assessments and assists in vulnerability remediation and patch validation.
• Performs secure code reviews and static code analysis (SAST) to identify vulnerabilities; provides remediation recommendations and targeted training.
• Automates routine security operations and compliance processes using scripting languages (PowerShell, Python, etc.).
• Conducts penetration testing of security tools, controls, and processes.
• Supports compliance evidence gathering for ARS, NIST, FISMA, and other applicable audits.
• Collaborate with IT teams to embed security best practices and ensure security controls align with compliance frameworks.
• Provide strategic recommendations for new security tools, process improvements, remediations, risk mitigation, and targeted security training based on penetration testing findings.
• Provides technical mentoring and training to analysts on detection and tuning techniques.
• Communicates complex security concepts to both technical teams and non-technical stakeholders.
• As assigned, provides after-hours support for security incidents as part of an on-call or escalation rotation.

Non-Essential Duties and Functions:

• Other duties as assigned.

CMS Access Compliance and Regulation Contingency Statement:
Some positions require compliance with (i) federal and agency specific regulations and related clauses included in Noridian's prime contracts with the Government, (ii) background checks, and (iii) eligibility for a government-issued identification card.

An employee in this position may be required to possess a "Federal Identification Card" (Federal ID) as a condition of employment. Federal ID's may include one of the following: Personal Identity Verification (PIV) card, Personal Identity Verification-Interoperable (PIV-I) card, a Local-Based Physical Access Card issued by CMS, or a Local-Based Physical Access Card issued by another Federal agency and approved by CMS.  Obtaining a Federal ID and continued eligibility for this position may require the successful completion of a Federal Background Investigation performed by the Federal Government and a residency requirement that you have lived in the United States at least three out of the last five years. Failure to obtain a Federal ID may result in the removal from the position or termination of employment. 
Required:

• One Offensive Security Certification: (Offensive Security Certified Professional (OSCP), Offensive Security Experienced Penetration Tester (OSEP), Offensive Security Wireless Professional (OSWP), Offensive Security Web Assessor (OSWA), and Offensive Security Web Expert (OSWE).

Preferred Qualifications:

• Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC) GIAC Certified Incident Handler (GCIH) GIAC Certified Detection Analyst (GCDA), or Microsoft Cybersecurity Architect (SC-100).

Minimum Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, or related field OR equivalent experience as determined by Human Resources.
• 5 years of experience in security operations, engineering, or related technical field.
• Skills in developing and maintaining scripts in PowerShell, Python, or Bash.
• Demonstrated experience with SIEM platforms (e.g., Microsoft Sentinel, Trellix, Splunk, QRadar).
• Working knowledge of log management, Intrusion Detection System/Intrusion Prevention System (IDS/IPS), Endpoint Detection and Response (EDR), SOAR, NIST 800-53, 5.1, Center for Internet Security Controls, or other vulnerability management standards.
• Working knowledge of MITRE ATT&CK or other threat modeling frameworks (e.g., D3FEND, Cyber Kill Chain) and its application to detection logic, automation, and threat modeling.
• Strong analytical and problem solving skills to investigate complex security incidents, assess vulnerabilities, and design effective technical solutions. 
• Excellent written and verbal communication skills.
• Experience with testing tools such as Nmap, SQLmap, Metasploit, Wireshark, Nessus, Burp Suite, or other similar tools.
• One Offensive Security Certification: (Offensive Security Certified Professional (OSCP), Offensive Security Experienced Penetration Tester (OSEP), Offensive Security Wireless Professional (OSWP), Offensive Security Web Assessor (OSWA), and Offensive Security Web Expert (OSWE).

Preferred Qualifications:

• 7 Years experience
• Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC) GIAC Certified Incident Handler (GCIH) GIAC Certified Detection Analyst (GCDA), or Microsoft Cybersecurity Architect (SC-100).

Environment and Cognitive/Physical Demands:

• Office environment
• Ability to read, hear, speak, keyboard, reason, communicate effectively and problem solve
• Requires prolonged sitting and telephone usage
• Requires the use of office equipment such as computer terminals, telephones, copiers and printers
• Infrequent lifting to 20 pounds
• Infrequent stooping

Segregation of Duties:
Every employee is responsible to perform their duties and responsibilities in accordance with Noridian values, policies and procedures, including but not limited to, Segregation of Duties Principles, HIPAA, Security and Privacy, CMS requirements, the Noridian Compliance Program, and any other applicable laws, rules and regulations.

Statement of Other Duties:
This document describes the essential functions, requirements, and responsibilities of this job, and is not intended to be a complete list of all tasks and functions.  Employees may be requested to perform job related tasks other than those specifically listed in this description, and may be required to perform any task requested by the supervisor or management.

Salary:
Salary Range: The pay range for this position is $79,267.71 – $130,374.83 per year, however, the base pay offered may vary depending on geographic region, internal equity, job-related knowledge, skills, and experience among other factors.