Sign In

Blog

Latest News

Senior Security Engineer
Hybrid, Permanent
Bethesda, MD
Posted 1 week ago

Senior Security Engineer

Posted: 06/18/2025 Job Type: Permanent Industry: Cybersecurity

Our client, a highly dynamic and influential leader within the commercial real estate finance industry, is actively seeking an experienced and proactive professional to join their innovative in-house technology team. This is a pivotal role that offers the unique opportunity to make a truly significant impact in advancing the overall information security posture across a wide array of complex systems, critical applications, and expansive networks. You’ll achieve this while collaborating closely with a forward-thinking team that is deeply focused on driving meaningful, positive change and embracing continuous improvement.

Location & Compensation:

  • Location: Bethesda, MD. This position offers excellent flexibility with a hybrid work model, allowing for up to two days of remote work per week.
  • Salary: USD $120,000 – $130,000 annually.

What You’ll Be Doing:

As a Senior Security Engineer, you will be at the forefront of strengthening our client’s defenses and evolving their cybersecurity capabilities. Your key responsibilities will encompass:

  • Strategic Stakeholder Partnerships: You will be instrumental in building and nurturing strong, collaborative partnerships with a diverse range of internal stakeholders across various departments. The goal is to ensure a consistently secure service posture and robust security implementation across multiple products and mission-critical services, aligning security efforts with business objectives.
  • Security Subject Matter Expertise (SME): You’ll serve as a go-to Subject Matter Expert (SME) across numerous security domains. This involves providing expert guidance and advising various business units on the effective implementation of robust, resilient, and cutting-edge security measures tailored to their specific needs.
  • Security Tool Lifecycle Management: You will actively participate in the full lifecycle of security tools. This includes evaluating new and emerging security technologies, implementing selected solutions, and ongoing management and optimization of existing security tools (such as Netskope SWG, Microsoft Defender, and Cisco IronPort) to maximize the organization’s defenses against current and future cyber threats.
  • Incident Response & Investigation Leadership: You will play a crucial role in the incident response process. This involves actively participating in the continuous monitoring for suspicious activities, thoroughly investigating security incidents and events when they occur, and coordinating effective responses to mitigate impact and prevent recurrence.
  • Collaborative Risk Reporting: Working in close collaboration with the VP of Information Risk and Cyber Assessments, you will be responsible for clearly and accurately reporting identified security risks to senior leadership. This requires excellent analytical skills to frame risks in a business context and strong communication to convey potential impacts.
  • Security Architecture & Design Input: Contributing to the secure design and architecture of new systems and applications, integrating security by design principles from the outset.
  • Security Policy & Standard Development: Assisting in the development, review, and enforcement of security policies, standards, and guidelines across the enterprise.

What’s Needed:

We’re looking for a highly skilled and passionate professional who brings a robust blend of technical expertise, practical experience, and a proactive mindset:

  • Extensive Application Security Experience: A minimum of 5+ years of experience directly performing application penetration tests or possessing equivalent relevant experience in application security analysis and vulnerability assessment.
  • Broad Security Domain Knowledge: A comprehensive and in-depth background spanning multiple critical security domains, including application security, network security, and system security. This holistic view is vital for addressing complex threats.
  • Hands-on Security Tooling: Proven hands-on experience with industry-leading security testing and analysis tools such as Burp Suite Pro.
  • Proficiency in SAST/DAST/SCA Tools: Demonstrated proficiency in utilizing DAST (Dynamic Application Security Testing), SAST (Static Application Security Testing), and SCA (Software Composition Analysis) tools, specifically with experience using platforms like OWASP ZAP and Fortify Static Code Analyzer.
  • Code Review & Scripting Aptitude: Experience with reading, writing, and editing code in various programming languages, enabling effective source code review and the development of custom security scripts or tools.
  • In-Depth Infrastructure Knowledge: Comprehensive and in-depth knowledge of various network architectures, diverse operating systems (Windows, Linux, macOS), and complex enterprise IT systems.
  • Cloud Computing & CI/CD Understanding: A solid foundational understanding of modern cloud computing concepts (IaaS, PaaS, SaaS) and practical experience or strong familiarity with CI/CD (Continuous Integration/Continuous Delivery) pipelines and how security integrates within them.
  • Influential Communication Skills: Exceptional written and verbal communication skills, with a proven ability to effectively advise, influence, and build consensus among diverse technical and non-technical teams and leadership.
  • Passion for Innovation: A genuine and strong passion for cybersecurity, a drive for continuous innovation in security practices, and a collaborative spirit that thrives in a team-oriented environment.

Join Our Client’s Mission:

This position offers a compelling opportunity to not only advance your career but also contribute to a vital industry. With the flexibility to work remotely for up to two days per week and a primary onsite schedule of 8:30 am – 5:30 pm EST, you can achieve a healthy work-life balance. If you are an experienced security professional with a passion for driving innovation, fortifying defenses, and ensuring robust cybersecurity in a dynamic environment, we are eager to hear from you. Apply today and become an integral part of our client’s journey to create secure and thriving communities within the commercial real estate finance sector!

Job Features

Job CategoryHybrid, Security

Apply For This Job

A valid phone number is required.
Copyright @ 2024 eStreet Security. All Rights Reserved by eStreet!