Who We Are:

Veteran Benefits Guide (VBG) was founded by a former United States Marine with the goal of ensuring that Veterans receive accurate disability benefits in a timely manner. Since it was founded, VBG has guided more than 45,000 Veterans through the complicated Veterans Affairs (VA) disability claims process. As a company founded by a Veteran and staffed by many Veterans and families of Veterans, VBG is committed to advocating for policies that protect the rights and interests of former service members.

What we are looking for:

The Senior Security Engineer is responsible for designing, implementing, and optimizing technical security controls and tooling across the organization by applying least-privilege and zero-trust principles. This role partners closely with infrastructure, product, and security teams to secure systems and data, enhance detection and vulnerability management, and support incident response efforts.

This position is open to candidates located in the following states: Arizona (AZ), California (CA), Washington (WA), Nevada (NV), Utah (UT), Illinois (IL), Ohio (OH), New Jersey (NJ), Virginia (VA), North Carolina (NC), and Florida (FL).

Essential Functions:

Reasonable accommodation may be provided to enable individuals with disabilities to perform essential functions.

• Research, deploy, configure, optimize, and troubleshoot security tools and platforms across the environment by applying least-privilege and zero-trust principles
• Design, implement, and maintain technical security controls, including RBAC, firewall rules, VPN configurations, email security controls, and data access and movement protections
• Implement and optimize identity and access management controls, including RBAC, just-in-time access, and privileged access monitoring
• Own the lifecycle and maturity of security tooling by documenting product roadmaps, identifying capability gaps, and driving continuous improvement aligned with security best practices
• Develop and implement practical remediation solutions for identified security gaps, improving system hardening and configuration standards across infrastructure and applications
• Perform hands-on system and control assessments to validate control effectiveness, proactively identify weaknesses, and recommend technical improvements
• Partner with Infrastructure and Product teams to architect and implement secure solutions for cross-functional initiatives and new technology deployments
• Build, operate, and continuously enhance a SIEM platform, including log ingestion, normalization, correlation rules, and alerting aligned to the MITRE ATT&CK framework
• Deploy, operate, and maintain vulnerability scanning tools and agents while analyzing findings and working with stakeholders to tune vulnerability identification
• Support incident response investigations through log analysis, containment support, root cause analysis, and post-incident improvements to detection and prevention controls
• Hands-on experience implementing email, endpoint, and data protection controls, along with vulnerability management practices, including scanning, agent deployment, and remediation validation
• Adaptability and resiliency in an evolving environment
• Excellent analytical, written, and verbal communication skills with the ability to influence decision-making across technical and non-technical audiences

Qualifications or competencies:

• One or more industry-recognized certifications, such as CompTIA Security+, AWS/Azure Security, GIAC certifications or equivalent
• Hands-on experience with network and perimeter solutions like firewalls, VPNs, segmentation, and secure remote access
• Strong working knowledge of risk management frameworks (NIST, ISO, and CIS) and regulatory requirements for HIPAA compliance
• Proven experience designing, implementing, and operating SIEM and security detection capabilities
• In-depth knowledge of IAM architectures, authentication, authorization, and access governance

Education and previous work experience:

• 5+ years of experience in detection and response engineering, incident response, or security architecture
• Bachelor's degree or equivalent work experience in Information Technology, Cybersecurity, or a related discipline

EEO:

Veteran Benefits Guide (VBG) provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, national origin, ancestry, physical disability, mental disability, medical condition, marital status, sex (including pregnancy, childbirth, breastfeeding or related medical conditions), gender (including gender identity and gender expression) genetic characteristic, sexual orientation, registered domestic partner status, age, military or veteran status, hairstyle or hair texture, reproductive health decision making, or any other characteristic protected by federal, state, or local laws.