17,879 Engineering Sme jobs in the United States

• Architect & Design
  • Lead creation of the PG network reference architecture spanning Nomad hardware, Smith software builds, and Watch nodemanagement elements.
  • Define routing schemas (BGP/OSPF/ISIS), QoS policies, IPSec/crypto overlays, and multilevel security / crossdomain dataflow rulesets that comply with NSA and DISA STIG requirements.
  • Produce SysML/CAMEO artifacts feeding the governmentowned digital thread.
• Integration & Lab Leadership
  • Specify and configure routers, switches, firewalls, SATCOM modems, and SDRs inside the Integration SIL; drive interfacecontrol documentation (ICDs) for airborne PIMs.
  • Develop automated test harnesses (IXIA/TestCenter, Spirent, Ansible) to validate throughput, latency, packetloss, and IA posture before DT/OT.
• DevSecOps & Cyber Hygiene
  • Embed networksecurity controls into the PG DevSecOps pipeline; champion zerotrust principles and continuous ATO artifacts (RMF eMASS packages, ACAS/SCAP scans).
  • Guide implementation of Software Defined Networking (SDWAN, OpenFlow, or comparable) for dynamic airborne/ground path selection.
• Fielding & Operations
  • Partner with platform SPOs and flighttest organizations to translate lab configs into flightworthy builds; draft Interim Authorizations To Test (IATT) and airworthiness network annexes.
  • Support Watch helpdesk playbooks, operational runbooks, and remote monitoring dashboards (Elastic, Grafana, Prometheus).
• Leadership & Mentoring
  • Serve as the chief technical adviser to Government IPT leads; brief network readiness, risk, and performance metrics at program reviews.
  • Mentor midlevel engineers and ensure knowledge transfer to Government personnel.

Peraton is seeking a Senior Software Developer that can provide TS/SCI C/C++ software development of modules that manipulate pointers, memory structures, and registers using low-level embedded systems techniques. Our teammates on the program provide expert, onsite support in research and development of software designed to exploit vulnerabilities of adversary technology, algorithm development, script writing and software utility development, use of multiple programming languages, analysis and reverse engineering of source code, software integration and testing, technical writing and documentation, and lifecycle maintenance of software programs.

You will have the opportunity to:

Utilize your skills with techniques which include but are not limited to, pointer arithmetic, casting variables to or from structs or arrays, common C preprocessor directives, bit masking, bit shifting for powers of 2, event-driven or state-driven programming, error logging, and exception handling.
• Perform TS/SCI software analysis, architecture, engineering, and integration services at the unit, module, and system levels.
• Perform all aspects of software engineering support required to implement Cyberspace Operations capabilities.
• Adhere to open standards and modern software development methodologies, including what is considered 'best' practices by Industry to the extent that operational requirements will allow.
• Provide technical reports, white papers and other documentation as required to documents findings of all software engineering service activities.

Required

• Minimum of 16 years with BS/BA or Minimum of 14 years with MS/MA, Minimum of 10 years with Phd.
• 10 years supporting CNO development
• C/C++ development on UNIX platform, preferably Linux
• Low-level operating systems experience with Linux background

• Experience in one or more of the following areas required:

  • CNO operational
  • crypto/ blockchain
  • Exploit development
  • C/C++
  • RUST
• U.S Citizenship required
• TS/SCI clearance with a polygraph
• Must be able to clear NWIC screening

Preferred Qualifications:

• 6+ years of experience in software development, testing and deployment.
• Masters Degree Preferred
• Preferred experience with or knowledge of the operational methodologies employed by the USCYBERCOM and MARFORCYBER Cyber Mission Force (CMF) capability development teams and/or national agency computer network operations development teams in support of Offensive Cyberspace Operations (OCO).

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.

Job DescriptionJob Description

ZERO TRUST PROCESS RE-ENGINEERING SME

MILITARY FRIENDLY & - HOH SPONSOR

SUMMARY:

Zermount Inc. is seeking a Zero Trust (ZT) Process Re-Engineer SME, you will provide subject matter expertise in the review and analysis of Executive Order's (EO's) (e.g., EO 14028), OMB Mandates (OMB M) (e.g., OMB M 22-09, M 21-31, etc.), Federal requirements and laws, and Department directives, policies, and process and developing Agency level policies, processes, procedures, standards, and guidelines. Collaborate with stakeholders to understand, document, and implement effective business processes in support of the Agency ZT initiative.

DUTIES & RESPONSIBILITIES:

The ZT Process Re-Engineering SME will lead provide the follow support and services:

• Assist with updates to the clients ZT roadmap and implementation plan.
• Review and interpret Executive Orders (EOs), OMB memos, Public Law (PL), DHS directives such as Binding Operational Directives (BODs), DHS Undersecretary Memos, NIST SPs, and recommended best practices and provide recommendations and potential solutions to meet requirements.
• Conduct gap analyses in existing Agency policy documentation (policies, processes, SOPs, standards, guidelines, white papers, and training) compliance with Cybersecurity mandates, requirements, and best practices; develop report and roadmap to meet compliance requirements and obtain client approval to implement appropriate policy documentation.
• Provide guidance and insights necessary for meeting requirements established through the OMB M's or EO's.
• Assist in the development of the enterprise ZT common Control Catalogue (CCC).
• Assist leadership with ZT initiative to include planning, scheduling, guidance, solutions, reporting, performance metrics, and recommendations.
• Assist and support for all internal and external ZT data calls, requests, audits, compliance, and updates - ensuring accurate information and statuses are obtained and provided.
• Manage the policy inquiry/intake mailbox or policy help desk.
• Support the client in interpreting and implementing IT public policy initiatives. Typical support includes assistance with long-term strategy development, tracking legislation, and making policy recommendations. Meet with customers often daily to relay progress and establish priorities.
• Track and resolve cybersecurity policy related questions.
• Conduct internal and external policy research to support help desk policy inquiries using various sources and approved documentation.
• Review, interpret, edit, create, and update cybersecurity policy related documents utilizing the Zermount Agile approach.
• Create new cybersecurity policy documents as needed to address identified gaps or changes emanating from EO's, OMB M's, NIST, DHS, or TSA mandates.
• Modify/update existing IAD cybersecurity-related policy standard operating procedures (SOPs), technical standards (TSs), management directives (MDs), CCSH, TSA Forms, Open-Source Software (OSS) guide, SSI Program and Privacy Office related document reviews, and related Notification Memos capturing summary of changes.

QUALIFICATIONS:

• A minimum of 10 years of IT cybersecurity experience, including direct support for the US Government and 5 years serving as a Policy Analyst for an enterprise IT system. 13 years if the candidate does not have a bachelor's degree.
• Knowledge of NIST Guidelines and FISMA Cybersecurity compliance requirements.
• Technical knowledge of complex enterprise IT systems.
• Knowledge and skill with Microsoft Suite such as Word, Excel, PowerPoint, Outlook and SharePoint management.
• Experience communicating effectively, both oral and written, with technical, non-technical, and executive-level customers.
• Knowledge of Zero Trust architecture, principles, and methodologies, EO 14028, OMB M 22-09, Federal, DoD, and CISA Zero Trust Architecture, Maturity Model, and Technical Reference Architectures.
• Experience with in-depth analysis of Cybersecurity, IT, and Risk Management principles, requirements, and principles.
• Ability to work independently and as part of a team.
• Ability to navigate complex and politically sensitive client environments with professionalism, patience, and tact.
• Demonstrated ability to effectively engage and manage relationships with highly political clients while maintaining a professional demeanor, exhibiting patience, and navigating sensitive situations with tact.
• Experience with Zero Trust principals, practices, and maturity model

EDUCATION:

Bachelor preferable but professional experience is Permitted.

• Minimum of a Bachelor of Science (or higher) in one of the following: computer engineering, computer science, IT, cyber security, or a related field.
  • Relevant years of experience may be used in substitution for situations where the candidate does not have a Bachelor's degree in the required field.

CERTIFICATIONS:

A minimum of at least one of the following certifications is required:

• Certified Information Security Manager (CISM)
• Certified Information Systems Security Professional (CISSP)
• Certificate of Cloud Security Knowledge (CCSK)
• Certified Chief Information Security Officer (CCISO)
• Similar certification.

CLEARANCE:

Minimum of an active Secret Clearance.

HOURS OF OEPRATION:

8:00 am EST - 4:30 pm EST

• ct as the primary SME for commercial operations, providing insights and leadership in Sales, Marketing, Incentive Compensation (IC), Patient Data Management, Longitudinal Access and Adjudication Data (LAAD), and Claims.
• Guide the design, implementation, and optimization of business processes in the commercial functions, ensuring alignment with company objectives and industry standards.
• Translate complex commercial business needs into actionable data solutions, ensuring that technology strategies align with business priorities.

• Lead the development and deployment of data engineering solutions within the Azure ecosystem, utilizing tools such as Azure Datalake, Azure Databricks, to manage large datasets effectively.
• Design and implement scalable, secure, and efficient data pipelines that integrate diverse commercial datasets from Sales, Marketing, Claims, Patient Data, and LAAD.
• Collaborate with cross-functional teams (including IT, Data Science, and Business Operations) to ensure seamless integration of data engineering solutions across various commercial and business functions.
• pply expertise in SQL, Python, and other data engineering languages to build and manage data pipelines and models.

• Deeply understand the Life Sciences sector, particularly commercial functions, including sales performance analytics, marketing effectiveness, incentive compensation, patient-centric data, and claims management.
• Work closely with business stakeholders to define KPIs, performance metrics, and reporting strategies for Sales, Marketing, and Claims processes, driving actionable insights for business decisions.
• Ensure compliance with industry regulations (e.g., HIPAA, GDPR) in all data management and analytics activities related to commercial operations.
• Provide functional leadership on the management and utilization of Longitudinal Access and Adjudication Data (LAAD), ensuring the successful integration of longitudinal data to support patient-centric commercial activities.

• Serve as the key liaison between business and technical teams, ensuring that data solutions meet business requirements and deliver on key commercial goals.
• Collaborate with IT teams to ensure data infrastructure supports business intelligence, reporting, and analytics needs, optimizing performance, availability, and security.
• Lead the design of business intelligence solutions, including dashboards and reports, for senior commercial leadership, helping them drive data-informed decisions.

• Contribute to the development of data governance frameworks for commercial data, ensuring high data quality, security, and compliance standards are met.
• Help drive strategic initiatives related to data management, standardization, and integration across commercial functions.
• Provide guidance on best practices for data-driven decision-making and ensure alignment with both business and regulatory requirements.

• 8+ years of experience in commercial operations within the Life Sciences industry, with expertise in areas like Sales, Marketing, Incentive Compensation (IC), Patient Data, LAAD, and Claims.
• 5+ years of experience in Data Engineering, including hands-on experience with cloud platforms (preferably Azure), and a strong background in managing and analysing large datasets.
• Proven track record of developing and deploying data solutions that support commercial business functions in Life Sciences.

• Proficiency in Azure Data Services (e.g., Azure Data Lake, Azure SQL, Azure Databricks, Azure Synapse).
• Expertise in SQL, Python, or other relevant data engineering languages for building data models, pipelines, and reports.
• Strong understanding of data warehousing, ETL processes, and data lake architectures.
• Familiarity with business intelligence tools such as Power BI, Tableau, or similar platforms for visualization and reporting.

• Extensive understanding of Life Sciences commercial functions, including Sales, Marketing, Incentive Compensation (IC), Claims, Patient
• Data Management, and Longitudinal Access and Adjudication Data (LAAD).
• bility to translate complex Life Sciences business processes into technical requirements and solutions.
• Knowledge of industry regulations (e.g., HIPAA, GDPR, 21 CFR Part 11) and compliance considerations in managing commercial data.

Our Purpose Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build asustainableeconomy where everyone can prosper. We support a wide range of digital payments choices, making transactionssecure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential. Title and Summary VP, Engineering SME, Second Line Technology Risk Overview: Mastercard Risk is looking for a highly experienced and technically adept Vice President, Engineering Subject Matter Expert (SME) to join our Second Line Technology Risk function. In this critical role, you'll provide independent oversight and challenge to our technology and product teams, ensuring robust risk management practices across our global payments infrastructure. You'll act as a trusted advisor, leveraging your deep engineering expertise to assess the effectiveness of controls, identify emerging risks, and drive continuous improvement in our technology risk posture. This is an excellent opportunity for a seasoned engineering leader to gain experience/transition into a vital risk management role, influencing the security and resilience of a leading payments company. Role: • Provide Technical Expertise: Serve as the primary engineering SME for the Second Line Technology Risk function, offering in-depth knowledge of payment systems, distributed architectures, cloud computing, cybersecurity, software development lifecycles (SDLC), and emerging technologies. • Incident & Issue Review: Participate in the review of significant technology incidents and issues, providing technical insights into root causes and effectiveness of remediation plans. • Independent Risk Assessment & Challenge: Conduct independent reviews and challenges of technology and product initiatives, architectures, and controls to identify potential weaknesses, single points of failure, and areas of elevated risk. • Control Effectiveness Evaluation: Assess the design and operational effectiveness of technology controls, including those related to security, resilience, data security, and operational processes. • Emerging Technology Risk Identification: Proactively identify and evaluate risks associated with new and evolving technologies, providing recommendations for mitigation strategies. • Policy & Standard Influence: Contribute to the development and enhancement of technology risk policies, standards, and guidelines, ensuring they align with industry best practices and regulatory expectations. • Stakeholder Engagement: Collaborate effectively with First Line technology and product teams, internal audit, and other risk functions to foster a strong risk culture and drive informed decision-making. • Reporting & Communication: Prepare clear, concise, and impactful reports and presentations for senior management and relevant committees, articulating complex technical risks in an accessible manner. All About You: Qualifications • Significant prior experience in engineering roles within the financial services or technology sector, with a significant focus on payments systems, distributed systems, or high-transaction platforms. • Technical Depth: o Demonstrable expertise in software engineering principles, secure coding practices, and architectural design patterns. o Strong understanding of cloud native architectures (AWS, Azure, GCP), microservices, APIs, and containerization technologies (e.g., Kubernetes, Docker). o In-depth knowledge of cybersecurity principles, threat modeling, vulnerability management, and incident response. o Familiarity with data management, data privacy principles, and regulatory compliance (e.g., PCI DSS, GDPR, SOX). o Experience with various programming languages (e.g., Java, Python, Go) and development methodologies (Agile, DevOps). • Risk Management Acumen: o Experience in technology risk management, audit, or a related control function is a significant plus. o Understanding of risk frameworks (e.g., NIST, ISO 27001, COBIT) is also a plus • Leadership & Communication: o Proven experience in a leadership or senior technical individual contributor role, with the ability to influence and guide technical discussions. o Excellent analytical, problem-solving, and critical thinking skills. o Strong written and verbal communication skills, with the ability to translate complex technical concepts into clear and actionable insights for both technical and non-technical audiences. • Education: Bachelor's degree in Computer Science, Engineering, or a related technical field desired. Master's degree or relevant certifications (e.g., CISSP, CISM, AWS Certified Solutions Architect) are a plus. Mastercard is a merit-based, inclusive, equal opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. We hire the most qualified candidate for the role. In the US or Canada, if you require accommodations or assistance to complete the online application process or during the recruitment process, please contact and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly. Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: Abide by Mastercard’s security policies and practices; Ensure the confidentiality and integrity of the information being accessed; Report any suspected information security violation or breach, and Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines. In line with Mastercard’s total compensation philosophy and assuming that the job will be performed in the US, the successful candidate will be offered a competitive base salary and may be eligible for an annual bonus or commissions depending on the role. The base salary offered may vary depending on multiple factors, including but not limited to location, job-related knowledge, skills, and experience. Mastercard benefits for full time (and certain part time) employees generally include: insurance (including medical, prescription drug, dental, vision, disability, life insurance); flexible spending account and health savings account; paid leaves (including 16 weeks of new parent leave and up to 20 days of bereavement leave); 80 hours of Paid Sick and Safe Time, 25 days of vacation time and 5 personal days, pro-rated based on date of hire; 10 annual paid U.S. observed holidays; 401k with a best-in-class company match; deferred compensation for eligible roles; fitness reimbursement or on-site fitness facilities; eligibility for tuition reimbursement; and many more. Pay Ranges O'Fallon, Missouri: $170,000 - $63,000 USD New York City, New York: 204,000 - 316,000 USD Purchase, New York: 196,000 - 302,000 USD #J-18808-Ljbffr

Our client is seeking a Application Security & Web/App Scanning Engineering SME. This role supports a Homeland Security client by providing deep expertise in web and application security scanning, penetration testing, and stakeholder communication. The SME will help identify, articulate, and remediate security risks, bridging technical depth with effective communication to a range of stakeholders.

• Lead and perform dynamic application security testing (DAST), static application security testing (SAST), and manual penetration testing.

• Configure, optimize, and operate scanning tools such as Burp Suite, Fortify SSC, WebInspect, and OWASP ZAP.

• Translate complex security findings into clear, actionable insights for internal teams and federal partners.

• Develop and deliver briefings, executive summaries, and presentations for leadership audiences.

• Collaborate with engineering, operations, system owners, and compliance teams to remediate findings.

• Contribute to secure software development lifecycle (SDLC) practices and application security policy development.

• Bachelor’s degree required.

• 8+ years of hands-on experience in web and application security, including scanning and penetration testing.

• Strong knowledge of OWASP Top 10, CVSS, and secure coding principles.

• Proficient with security scanning tools such as Fortify SSC, WebInspect, and similar platforms.

• Exceptional written and verbal communication skills, with the ability to distill complex risks for technical and non-technical audiences.

• Must be a U.S. Citizen with an active Secret clearance.

• Develop and evolve PG's network reference architecture, incorporating Nomad hardware platforms, Smith software configurations, and Watch management tools.
• Define secure routing strategies (BGP, OSPF, IS-IS), QoS, and IPSec overlays in compliance with NSA and DISA STIG guidelines.
• Model systems using SysML and CAMEO to align with the government's digital engineering efforts.

• Configure and validate core components-routers, switches, firewalls, SATCOM modems, and SDRs-within the PG Integration System Integration Lab (SIL).
• Author and maintain Interface Control Documents (ICDs) for airborne Platform Integration Modules (PIMs).
• Implement automated test environments using tools like IXIA/TestCenter, Spirent, and Ansible to measure performance and validate security postures.

• Build security directly into the DevSecOps pipeline, implementing zero-trust principles and delivering RMF artifacts (e.g., ACAS scans, SCAP benchmarks) to support continuous ATO.
• Design and implement dynamic pathing solutions using Software Defined Networking technologies such as SD-WAN or OpenFlow.

• Collaborate with flight-test teams and platform SPOs to operationalize lab configurations for airborne deployment; author IATTs and airworthiness documentation.
• Develop and support runbooks, help-desk guides, and monitoring dashboards using observability tools like Elastic, Grafana, and Prometheus.

• Act as the principal technical advisor to Integrated Product Team (IPT) leads, briefing program status, performance metrics, and technical risks.
• Provide mentorship to mid-level engineers and help transition expertise to government partners.

• U.S. Citizenship and active TS/SCI clearance required.
• Bachelor's degree in Electrical Engineering, Computer Engineering, or related discipline (Master's preferred).
• 12+ years of experience architecting, deploying, and securing IP-based networks for DoD or Intelligence Community missions.
• Deep technical knowledge in Layer 2/3 networking, RF/mesh transport, SATCOM, and operating in bandwidth-constrained environments.
• Proven track record with cross-domain solutions, NSA Type 1 encryption, and MLS architectures.
• Proficient in scripting and test automation (Python, Ansible, Terraform) and use of network performance tools.

• Expert-level certifications such as CCNP/CCIE or JNCIE.
• Hands-on involvement in CJADC2, ABMS, OMS/UCI, or airborne networking programs (e.g., Link-16, TTNT).
• Experience with containerized networking (e.g., CNI, Service Mesh) and classified DevSecOps toolchains (e.g., Platform One, Iron Bank).
• Demonstrated success navigating RMF processes through eMASS to full ATO.
• Agile or SAFe certification.