Government Careers
  • Security Configuration Baseline Engineer- TX, NC, AZ

  • Apex Systems
  • Irving, Texas 75039 United States View Map

Security Configuration Baseline Engineer

Location: Las Colinas, TX; Charlotte, NC; Chandler, AZ (Hybrid Schedule)

Employment Type: Contract

Pay Rate - $70.00/hr to $75.00/hr.

Role Overview

We are seeking a Security Configuration Baseline Engineer to support large-scale, enterprise-level security initiatives. In this role, you will consult on complex information security challenges and engineer codified security baselines to strengthen the organization's cloud and platform security posture. This position is at the intersection of GRC, cloud security engineering, and automation, focusing on translating policies and standards into enforceable baseline-as-code. This is an engineering-focused role requiring technical expertise within a regulated environment.

Key Responsibilities

  • Consult on complex information security initiatives with broad organizational impact.
  • Engineer, implement, and operationalize security configuration baselines across cloud and enterprise platforms.
  • Convert standards, policies, and risk requirements into machine-enforceable baseline-as-code.
  • Support preventative controls, drift detection, exception handling, and governance automation.
  • Collaborate with cross-functional teams, including cloud engineering, GRC, audit, and architecture.
  • Produce clear, structured, and audit-ready documentation aligned with regulatory expectations.
  • Review and analyze multi-faceted security challenges requiring evaluation of numerous factors.

Required Qualifications

  • 5+ years of experience in Information Security Analysis, cloud security, platform security, or security engineering.
  • 5+ years of cloud technology experience.
  • 3+ years of risk and control experience.
  • 3 to 5 years of cloud security posture management experience.
  • 2 to 4 years of Python development experience for scripting and automation.
  • Hands-on experience with security configuration baselines or hardening standards.
  • Strong working knowledge of public cloud platforms (Azure and/or GCP preferred), policy-as-code frameworks, and Infrastructure as Code (e.g., Terraform).
  • Experience mapping security controls to industry standards (CIS, NIST, ISO).

Preferred Qualifications

  • Experience with a baseline-as-code program.
  • Familiarity with cloud organization-level controls (management groups, folders, org policies).
  • Experience integrating security controls into CI/CD pipelines.
  • Exposure to risk management, audit response, or regulatory examinations.
  • Background in automating governance processes such as exception workflows and control validation.
  • Experience in a regulated industry.
  • Knowledge of industry standards and authoritative sources such as NIST, CSA, and CIS Benchmarks.

The pay range for this position is $70.00/hr to $75.00/hr. Benefits are available to eligible employees.

Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law.

Security Configuration Baseline Engineer

Location: Las Colinas, TX; Charlotte, NC; Chandler, AZ (Hybrid Schedule)

Employment Type: Contract

Pay Rate - $70.00/hr to $75.00/hr.

Role Overview

We are seeking a Security Configuration Baseline Engineer to support large-scale, enterprise-level security initiatives. In this role, you will consult on complex information security challenges and engineer codified security baselines to strengthen the organization's cloud and platform security posture. This position is at the intersection of GRC, cloud security engineering, and automation, focusing on translating policies and standards into enforceable baseline-as-code. This is an engineering-focused role requiring technical expertise within a regulated environment.

Key Responsibilities

  • Consult on complex information security initiatives with broad organizational impact.
  • Engineer, implement, and operationalize security configuration baselines across cloud and enterprise platforms.
  • Convert standards, policies, and risk requirements into machine-enforceable baseline-as-code.
  • Support preventative controls, drift detection, exception handling, and governance automation.
  • Collaborate with cross-functional teams, including cloud engineering, GRC, audit, and architecture.
  • Produce clear, structured, and audit-ready documentation aligned with regulatory expectations.
  • Review and analyze multi-faceted security challenges requiring evaluation of numerous factors.

Required Qualifications

  • 5+ years of experience in Information Security Analysis, cloud security, platform security, or security engineering.
  • 5+ years of cloud technology experience.
  • 3+ years of risk and control experience.
  • 3 to 5 years of cloud security posture management experience.
  • 2 to 4 years of Python development experience for scripting and automation.
  • Hands-on experience with security configuration baselines or hardening standards.
  • Strong working knowledge of public cloud platforms (Azure and/or GCP preferred), policy-as-code frameworks, and Infrastructure as Code (e.g., Terraform).
  • Experience mapping security controls to industry standards (CIS, NIST, ISO).

Preferred Qualifications

  • Experience with a baseline-as-code program.
  • Familiarity with cloud organization-level controls (management groups, folders, org policies).
  • Experience integrating security controls into CI/CD pipelines.
  • Exposure to risk management, audit response, or regulatory examinations.
  • Background in automating governance processes such as exception workflows and control validation.
  • Experience in a regulated industry.
  • Knowledge of industry standards and authoritative sources such as NIST, CSA, and CIS Benchmarks.

The pay range for this position is $70.00/hr to $75.00/hr. Benefits are available to eligible employees.

Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law.

Government Careers

Government Careers

Government jobs offer stability, competitive benefits, and the chance to make a meaningful impact on your community and country.

Whether you’re starting your career or seeking new opportunities, these roles provide pathways for growth, security, and service.

Explore positions across a wide range of fields and take the first step toward a rewarding future in public service.

Show more

MORE JOBS