Zero Trust / Security Engineering SME

Altamira Technologies Corporation has a long and successful history providing innovative solutions throughout the U.S. National Security community. Headquartered in McLean, Virginia, Altamira serves the defense, intelligence and homeland security communities by focusing on creating innovative solutions leveraging common standards in architecture, data and security.Altamira believes that our people and the culture of our company differentiate us from other companies. We focus on recruiting talented, self-motivated employees that strive to find a way to get things done.Position OverviewAltamira is seeking a Zero Trust / Security Engineer to support the design, implementation, and operation of secure cloud and platform environments for mission-critical systems. This role focuses on identity and access management, secrets management, authentication and authorization frameworks, and Zero Trust architectures within classified environments.The ideal candidate brings strong experience in cloud security, DevSecOps practices, and enterprise identity systems, and is comfortable collaborating with platform, infrastructure, and application teams to embed security into all phases of system development and operations.Key ResponsibilitiesDesign and implement Zero Trust security architectures in cloud and hybrid environmentsConfigure and manage identity and access management systems, including Keycloak and OAuth2-based solutionsImplement and operate secrets management platforms such as HashiCorp VaultDevelop and enforce authentication, authorization, and access control policiesIntegrate security controls into CI/CD and DevSecOps pipelinesSupport system hardening, vulnerability management, and security compliance activitiesMonitor and respond to security events, incidents, and anomaliesConduct security assessments, reviews, and risk analysesCollaborate with engineering teams to implement secure-by-design solutionsSupport accreditation, authorization, and audit processesDevelop and maintain security documentation, standards, and runbooksRequired QualificationsAbility to obtain TS/SCI clearanceBachelor's degree in Cybersecurity, Computer Science, Engineering, or related field (or equivalent experience)Experience in cybersecurity, DevSecOps, or security engineering rolesExperience implementing IAM and authentication systemsHands-on experience with secrets management and secure credential handlingExperience supporting cloud-based and hybrid security architecturesStrong understanding of network, application, and identity security principlesExperience working in compliance-driven environments (e.g., RMF, NIST, STIGs)Strong troubleshooting and incident response skillsAbility to work effectively in secure, mission-focused environmentsPreferred QualificationsCertified Kubernetes Application Developer (CKAD) CertificationExperience with HashiCorp Vault and Keycloak in production environmentsExperience with Kubernetes security and container hardeningExperience implementing Zero Trust frameworks in DoD or IC environmentsFamiliarity with OpenTelemetry, SIEM, and security monitoring platformsExperience with infrastructure and configuration automation (Terraform, Ansible, etc.)Relevant certifications (CISSP, CCSP, Security+, AWS Security Specialty, etc.)Prior experience supporting DoD or Intelligence Community programs