At ValidaTek, we modernize and optimize IT services to solve some of the most critical challenges facing federal civilian and defense agencies. From customers to partners to top-talent employees, ValidaTek puts people first, empowering them to exceed expectations and transform government organizations. Our success starts and ends with our people, so we built a company where great people can do great things, with the resources and autonomy to make decisions that transform organizations. We operate as one team of diverse people, united by a passion for continuous growth and optimization. Our commitment to quality and performance optimization is the reason why our IT Service Projects and New Development Projects have been appraised at CMMI Maturity Level 5, positioning us as one of a handful of elite companies to receive the highest form of third-party validation. www.validatek.com

We are seeking a highly skilled and motivated SecOps Engineer to join our Corporate Information Security team. The ideal candidate will be responsible for the security operations and defense of corporate systems, networks, and data. You will collaborate closely with the IT team to ensure that security best practices are integrated into our infrastructure and operations. Your role will be pivotal in identifying, mitigating, and responding to security threats while maintaining business continuity. 

• Security Operations: Manage and monitor security tools such as SIEM, IDS/IPS, firewalls, and antimalware solutions to identify and respond to threats in real-time. 

• Incident Response: Lead and coordinate response efforts to security incidents, including investigation, containment, and remediation. 

• Vulnerability Management: Conduct regular vulnerability assessments, risk analysis, and patch management to ensure systems are secure and up to date. 

• Infrastructure Hardening: Implement and maintain security configurations for corporate servers, workstations, networks, and cloud services in accordance with best practices (e.g., NIST, CIS benchmarks). 

• Security Automation: Develop and implement automated security processes to reduce manual efforts and enhance incident detection and response time. 

• Collaboration: Work closely with the IT Operations team to ensure security controls are integrated into infrastructure design, including corporate networks, data centers, and cloud platforms. 

• Compliance and Governance: Ensure the corporate IT infrastructure complies with industry regulations such as GDPR, HIPAA, and ISO standards. Participate in internal and external audits. 

• Continuous Monitoring: Establish a continuous monitoring environment for all corporate IT assets, including endpoints, network infrastructure, and cloud services. 

• Documentation & Reporting: Maintain thorough documentation of security incidents, configurations, and procedures. Generate regular reports on security posture and vulnerabilities. 

• Security Awareness: Provide training and guidance to IT staff and corporate users on security best practices, incident reporting, and threat awareness. 

• Bachelor’s degree in Information Security, Computer Science, or related field, or equivalent experience. 

• 6+ years of experience in security operations, cybersecurity, or IT infrastructure security roles. 

• Strong knowledge of security frameworks (e.g., NIST, CIS, ISO 27001) and threat detection methodologies. 

• Experience with security technologies such as SIEM (Splunk, Sentinel, IDS/IPS, endpoint protection, and firewalls (Palo Alto, Cisco). 

• Proficiency in scripting and automation (e.g., PowerShell, Bash) to automate security tasks and workflows. 

• Knowledge of cloud security best practices (AWS, Azure, GCP) and container security (Kubernetes, Docker). 

• Experience with vulnerability assessment tools such as Nessus, Qualys, or OpenVAS. 

• Familiarity with incident response and forensics tools (Wireshark, EnCase, FTK). 

• Strong understanding of network protocols, architecture, and security (TCP/IP, DNS, VPN, encryption). 

• Excellent problem-solving skills, with the ability to think critically under pressure. 
• Security certifications such as CISSP, CISM, CEH, or OSCP. 
• Experience working in a corporate IT environment, preferably in a highly regulated industry (e.g., healthcare, finance)
• Experience in zero-trust architecture and endpoint detection and response (EDR). 
• Strong analytical mindset with attention to detail. 
• Excellent communication skills and the ability to collaborate across departments. 
• Ability to handle multiple tasks in a fast-paced environment. 
• Self-driven and eager to learn about the latest security threats and technologies. 
• Must be able to obtain a security clearance.

USD $95,577.60/Yr.

USD $159,296.00/Yr.

Actual salary will be based on a variety of factors including but not limited to experience, geographic location, contract affordability, internal equity, education, and certifications.

The upper end of the salary range may be reserved for individuals who have demonstrated tenure with the company, seniority, and proven excellent performance. This includes factors such as education, certifications, and extensive/unique experience beyond what is required.

ValidaTek is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, or disability status.

Applicants who are selected for employment will be required to verify authorization to work in the United States.

Offers of employment will be contingent upon passing a post-offer background check.