Security & Compliance Engineer

Maximus TCS (Technology and Consulting Services) Internal Job Profile Code: TCS039, T3, Band 6

Job-Specific Essential Duties and Responsibilities:

- Experience supporting documentation, reporting, and compliance activities

- Understanding of network monitoring tools and alert triage processes

- Ability to support activities across multiple enterprise network environments

- Strong attention to detail and ability to work in structured, compliance-driven environments

- Familiarity with network security concepts, including firewalls, access control, and traffic monitoring
- Experience or exposure to vulnerability management, compliance tracking, or IT security support functions
- Basic understanding of network infrastructure, protocols, and communications systems
- Ability to execute directed security actions using standard operating procedures and runbooks

Job-Specific Minimum Requirements:

- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience)

- 6+ years of experience in cybersecurity, network security, or IT infrastructure support in enterprise environments

Preferred Skills and Qualifications:
- Experience with network security tools such as firewalls, IDS/IPS, and monitoring platforms
- Familiarity with vulnerability scanning and remediation in network environments
- Knowledge of compliance frameworks such as NIST and FISMA
- Experience supporting network configuration changes and access control enforcement
- Exposure to hybrid environments including on-premises and cloud networking
- Strong troubleshooting, documentation, and coordination skills
- Ability to work effectively across network and security teams
- Provide embedded cybersecurity support within network and communications environments, ensuring alignment with enterprise security and compliance requirements.
- Execute directed cyber actions including network access restrictions, firewall and policy updates, allow/block list management, and configuration changes.
- Support vulnerability management and ISVM compliance activities for network and communications systems, including remediation tracking and reporting of findings.
- Perform POA&M analysis and assist with remediation coordination for network-related security issues.
- Monitor and operate network security tools, supporting alert triage, threat detection, and initial response actions across network and communications infrastructure.
- Assist in spill response and containment activities impacting network systems, including execution of predefined remediation actions and evidence collection.
- Contribute to preparation of monthly scorecard data and reporting metrics related to network security posture and compliance.
- Maintain documentation, incident logs, and runbooks to support auditability, traceability, and knowledge transfer.
- Support testing and validation activities following network changes, patching, upgrades, and security configuration up...