Senior Security Tools Engineer

Ashburn is seeking a Senior Security Tools Engineer to support a federal cybersecurity architecture opportunity. This Key Personnel role will administer, integrate, automate, and optimize enterprise-grade security tools supporting vulnerability management, endpoint security, SIEM, dashboarding, automation, API development, audit support, and CDM-aligned reporting for a proposal opportunity., * Administer, integrate, and automate enterprise cybersecurity tools.

• Support security tool operations, upgrades, patching, configuration, dashboards, and API integrations.
• Develop APIs, scripts, Python libraries, and automation workflows to improve tool interoperability.
• Design and manage vulnerability scanning strategies and enterprise security data workflows.
• Build dashboards and alerts for SOC, risk management, and CDM stakeholders.
• Aggregate security logs, vulnerability data, asset data, and system data into SIEM and reporting platforms.
• Support audit readiness, compliance reporting, and version-controlled audit artifacts.
• Use CI/CD, containers, and cloud-native automation to improve security engineering workflows.

Do you have experience in Vuls?, * Candidates must be U.S. citizens.

• Candidates must be willing and able to work as Ashburn W-2 employees. 1099 and corp-to-corp arrangements are not permitted for these roles.
• DHS EOD / suitability is required for clearance.
• 10+ years of experience managing and integrating enterprise-grade security tools.
• Hands-on experience with tools and platforms such as Splunk, Tenable Vulnerability Management, CrowdStrike, ForeScout, Zscaler, AWS, Jenkins, Sumo Logic, Ansible, Active Directory, VMware, and Cisco UCS.
• Proven ability to modernize security automation workflows using AWS Lambda, AWS Fargate, and HashiCorp Vault.
• Experience streamlining operations through automation and API creation.
• Programming and scripting proficiency in Python, PowerShell, Batch, SQL, Bash, and other relevant languages.
• Experience developing APIs and Python libraries for security tool integrations, including tools such as Jamf, DNA Center, Vault, and CrowdStrike.
• Experience using CI/CD pipelines and managing development stacks including Docker, GitHub Enterprise, AWS Lambda/Fargate, and Sonatype Nexus.
• Experience designing scan strategies for vulnerability management tools to improve enterprise visibility.
• Experience creating data models for SIEM querying.
• Experience automating audit file management with version control.
• Experience using ETL processes to aggregate security logs and system data for Splunk and asset management solutions.
• Experience developing advanced dashboards, optimizing queries, creating alerts, and building APIs to support SOC and risk management teams.
• Experience designing and implementing dashboards for the DHS Continuous Diagnostics and Mitigation (CDM) Program or comparable federal cyber reporting environments.

Preferred / Strongly Desired Qualifications

• Experience with Prisma Cloud, Corelight NDR, Cisco Secure Network Analytics, Cisco ISE, Zscaler ZTNA/SASE, Checkmarx One, Sonatype Nexus IQ, CrowdStrike Falcon, and Tenable.VM.
• Experience integrating tool data into Splunk or centralized dashboards.
• Experience with vulnerability management, endpoint detection and response, asset management, and compliance automation.
• Prior DHS, DOD / DOW, or federal CDM program support experience.
• Strong documentation, dashboarding, and stakeholder communication skills., Work is equally performed in the field as well as in a normal office environment. Lifting (up to 50lbs) may be required. Ladder climbing may be required. Driving is required. All duties performed with or without reasonable accommodations.

3.63.6 out of 5 stars Camp Springs, MD Hybrid work $185,000 - $205,000 a year - Full-time

Ashburn Consulting, LLC, based in the Washington, DC metropolitan area, specializes in providing network and network security solutions in complex environments to a select set of government and business clients. The company, an established leader in its field, is composed of an elite team of engineers and business consultants, each of whom is recognized, and highly regarded, within the network and security communities.