Apply
Security Engineer
Fully Remote
Apply
Description

RSI is looking for a Security Engineer to join our Product Development organization.  Security Engineers apply the theories, principles, standards, and information security methods based on NIST 800-53/IRS Pub1075 and their working knowledge of the related security disciplines to evaluate security requirements, recommend plans of action, evaluate risks and coordinate successful mitigations. Further, engineers recommend new approaches, look for emerging threats and provide useful risk-based feedback to help leadership make prudent decisions. 


Job Responsibilities/Duties:

  • Conducting security requirements gathering and analysis across application, infrastructure, and cloud components to identify threats, vulnerabilities, and control gaps aligned to NIST 800-53 and IRS Pub 1075
  • Performing vulnerability scanning and triage using tools such as Tenable/Nessus, Veracode, and Microsoft Defender, validating findings, prioritizing remediation, and tracking issues through closure
  • Partnering with product, engineering, and operations teams to embed security into the SDLC, evaluate emerging threats, and provide risk-based feedback that informs design and release decisions
Requirements
  • 3-5 years relevant software development/security experience & 2 years working experience with security vulnerability scanning tools 
  • Excellent communications skills 
  • Knowledge of cloud concepts 
  • Familiarity with one or more programming languages 
  • Strong understanding of software weaknesses (OWASP) and other frameworks 
  • Strong analytical problem-solving skills 
  • Experience in scanning .NET CORE applications 
  • Knowledge of Microsoft Azure  
  • Knowledge of Microsoft Defender and alert triage 
  • Understanding of risk concepts 
  • Security+ or greater certification 
  • 2+ years team-oriented security experience 
  • Familiarity with security vulnerability scanning tools 
  • Experience in Veracode or similar tool 
  • Experience in Tenable/Nessus or similar tool 
  • Proven ability to design and recommend mitigations to resolve security weaknesses and vulnerabilities 
  • Experience triaging customer provided application security scans or audit reports 

 

Physical Requirements:  

  • Prolonged periods sitting at a desk and working on a computer.  
  • Must be able to lift up to 15 pounds at times.  



EEO Statement: RSI is committed to providing equal opportunity in employment to all employees and applicants for employment. Discrimination of employees or applicants on the basis of race, religion, color, sex, age, national origin, veteran status, disability, sexual orientation and gender identity, marital status, genetic information, or any other protected category, is strictly prohibited.


* Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.


RSI determines pay range based upon numerous compensation factors, including experience, skill set, and geographic location. A current and reasonable estimated range for this position is $95,000 - $105,000.


About Us: Revenue Solutions, Inc. (RSI) empowers entities through solutions that improve citizen services, increase operational efficiency, collect additional revenue and maximize compliance. Our solutions provide highly efficient and customizable systems that meet the essential needs of government.


For nearly three decades, RSI has delivered transformative solutions across hundreds of client projects throughout the U.S. and Canada


Mission: RSI creates people-first technology solutions that empower governments to improve the experience, engagement, and trust for communities and their citizens.


Security Responsibilities (NIST PS-9):

  • Follow all RSI security policies and procedures.
  • Protect sensitive, confidential, and regulated data (including FTI, PII, and client data).
  • Report suspected security incidents immediately.
  • Complete required security awareness training annually.

Position Risk Designation (NIST PS-2):
This position is designated as High Risk based on the level of system access, handling of regulated data, and potential impact to organizational operations.


This job description was last revised May 27, 2026

Apply
View All Jobs