×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Senior Security Engineer

Job in Coos Bay, Coos County, Oregon, 97458, USA
Listing for: Oddball
Full Time position
Listed on 2026-01-16
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

Oddball believes that the best products are built when companies understand and value the things they are working on. We value learning and growth and the ability to make a big impact at a small company. We believe that we can make big changes happen and improve the daily lives of millions of people by bringing quality software to the federal space.

The My Healthe Vet (MHV) Senior Security Engineer leads and coordinates security, privacy, risk management, and compliance activities for the My Healthe Vet platform — a FISMA High federal system designated as a High Value Asset. This role partners closely with engineering, program leadership, and government stakeholders to ensure the platform maintains a strong, audit-ready security posture while supporting ongoing authorization and continuous monitoring activities.

This is a hands‑on, senior security role operating in a high‑impact healthcare environment where security, privacy, and mission delivery are tightly coupled.

What You’ll Be Doing:
Security Governance & Program Leadership
  • Serve as the system Security Manager / ISSO for My Healthe Vet and act as the primary security point of contact for internal leadership and VA stakeholders
  • Establish and maintain a comprehensive security program aligned with FISMA, NIST RMF, NIST SP 800‑53 Rev. 5 (High baseline), HVA guidance, and VA cybersecurity policy (VA 6500 series)
  • Lead ATO, reauthorization, and Continuous Monitoring (Con Mon) activities, including assessment planning, evidence management, and package quality control
  • Coordinate audits, assessments, and required security testing activities, including control assessments and penetration testing
Risk Management & Compliance
  • Drive a risk‑based security approach appropriate for a FISMA High / HVA system
  • Identify, document, prioritize, and track security and privacy risks through POA&Ms
    , ensuring remediation actions are measurable and tracked to closure
  • Perform and document system risk assessments, security impact analyses, and privacy‑related assessments
  • Ensure system security documentation remains current, accurate, and defensible for audits and oversight reviews
Vulnerability Management & Continuous Diagnostics
  • Oversee vulnerability management activities including triage, prioritization, remediation coordination, validation, and reporting
  • Integrate enterprise security initiatives (e.g., CDM‑related reporting where applicable) into system risk tracking and POA&Ms
  • Support secure configuration, hardening, and ongoing control effectiveness monitoring
Incident Response & Security Operations
  • Coordinate incident response activities, including investigation support, escalation, documentation, and communication with VA security operations and CISO teams
  • Ensure incident response playbooks, reporting thresholds, and escalation paths are documented and exercised
  • Support after‑action reviews and ensure lessons learned are translated into corrective actions
Identity, Credential, and Access Management (ICAM)
  • Oversee privileged and non‑privileged access governance, enforcing least privilege, role‑based access, and need‑to‑know principles
  • Ensure onboarding/offboarding controls, periodic access reviews, and MFA requirements are implemented and monitored
  • Support governance and monitoring of privileged access activity consistent with high‑impact system expectations
Documentation, Reporting & Stakeholder Communication
  • Prepare and maintain security and authorization artifacts, including SSPs, assessment evidence, POA&Ms, risk acceptance documentation, and Con Mon deliverables
  • Provide regular reporting to leadership on authorization status, risk posture, open findings, and remediation progress
  • Partner with Privacy, FOIA, and Records stakeholders to support breach documentation, consent and data‑handling documentation, and incident records
Training, Awareness & Continuous Improvement
  • Deliver or coordinate security and privacy awareness activities for engineers, staff, and contractors supporting My Healthe Vet
  • Brief leadership on emerging threats, HVA‑specific risks, and recommended mitigations, translating technical risk into mission impact
  • Track emerging threats relevant to healthcare and…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search