Information Systems Security Engineer

Brightline is seeking a hands-on, highly skilled Information Systems Security Engineer (ISSE) to lead the design and implementation of robust security policies, controls, and configurations across our secure enclaves and cloud-based virtual machines for both internal development environments and our spatial computing platform. This role requires a proactive security professional adept at implementing cyber controls without disrupting production efforts, especially within sensitive data environments. The ideal candidate can effectively protect data at all classification levels, educate the team on security best practices, and ensure strict adherence to security requirements. 

Key Responsibilities 

• Security Design & Implementation: Architect, design, and implement security policies, controls, and configurations that secure both cloud-based virtual machines and secure enclaves. 

• Hands-On Cyber Controls: Independently design, code, and deploy cyber controls and configurations across multi-system environments, ensuring non-disruptive protection of production systems. 

• Information Classification Management: Implement and manage security controls aligned with data sensitivity and classification levels, including the highest levels of security for sensitive data. 

• Education & Best Practices: Advocate for security best practices, providing training and guidance to teams across the organization. 

• Compliance & Standards: Regularly audit systems and apply updates to ensure continuous adherence to regulatory and security requirements. 

Technical Skills & Required Tools 

• Programming & Scripting Languages: 

• Proficiency in Python, Bash, and PowerShell for security automation, script development, and configuration management. 

• Experience with secure coding practices, especially within C++ and Python environments. 

• Cloud & Virtualization: 

• Advanced knowledge of AWS and/or Azure including configuring security controls such as IAM, VPC, firewalls, and encryption for cloud-based virtual machines. 

• Experience in managing security for virtual machines and containers, using tools such as Docker, Kubernetes, and Terraform. 

• Network & System Security: 

• Expertise with network security tools and protocols, including WireGuard, OpenVPN, and IPsec, for establishing secure network connections. 

• Strong understanding of firewall configurations, IDS/IPS, VPN setups, and encryption protocols for data protection. 

• Familiarity with access controls, multi-factor authentication (MFA), and encryption standards for securing data at rest and in transit. 

• Security Information and Event Management (SIEM): 

• Experience configuring and managing SIEM solutions such as Splunk, ELK Stack, or Sentinel, with skills in alert tuning, threat detection, and response automation. 

• Secure Enclave Experience: 

• Hands-on experience working within secure enclave environments, ensuring controls are appropriately applied and maintained with zero disruption to production. 

• Familiarity with remote access tools for secure environments and protocols for maintaining security controls without direct hardware access. 

• Security Configuration & Management: 

• Proficiency with endpoint security and configuration management tools, such as Ansible, Chef, or Puppet. 

• Experience with vulnerability assessment tools like Nessus, Qualys, or OpenVAS, and patch management strategies. 

• Technical Certifications: 

• Current certifications, such as CISSP, CISM, CEH, or equivalent, are required to demonstrate expertise and proficiency. 

Preferred Skills 

• Familiarity with spatial computing and its specific security requirements. 

• Experience implementing security within game engines, VR/AR environments, or immersive technology platforms. 

• Knowledge of advanced security frameworks (e.g., NIST, ISO 27001, FedRAMP) and compliance with high-level security standards. 

What We Value 

• Strong communication and mentorship skills, with a proactive approach to team security education. 

• A meticulous approach to maintaining system integrity and compliance without disrupting development workflows. 

• Passion for staying current with cybersecurity trends, emerging threats, and best practices in secure environments. 

This role is a unique opportunity to shape the security infrastructure of a leading spatial computing platform, leveraging secure enclaves, cloud environments, and high-level controls. Join us to lead, safeguard, and ensure the resilience of our advanced technology solutions. 

This position requires the candidate to be a US citizen and to able to obtain a security clearance.