Jobs › Cybersecurity Infrastructure Engineer
Cybersecurity Infrastructure Engineer
Role at a glance
- Category
- GRC
- Work arrangement
- On-site
- Location
- Washington, District of Columbia
- Salary range
- $153,114 to $259,402
- Posted
- Jul 1, 2026
Securities and Exchange Commission is hiring a Cybersecurity Infrastructure Engineer in Washington, District of Columbia. This is a GRC role in the governance, risk, and compliance field, with a posted range of $153,114 to $259,402. Review the full details below and apply directly with Securities and Exchange Commission.
The Office of Information Technology is seeking applications for their IT Specialist (INFOSEC) (Cybersecurity Infrastructure Engineer) position. You will engineer, operate, and sustain the enterprise defensive network infrastructure-next-generation firewalls, SASE/ZTNA, and SD-WAN that protects SEC systems and data. As a senior technical authority and escalation point, you will lead capability projects, guide supporting contractors, and strengthen the SEC's defenses against cyber threats. Qualifications: Applicants are responsible for confirming all required materials are submitted by the closing date of the announcement. Please check the How You Will Be Evaluated and Required Documents sections carefully, as missing documents will render the application incomplete and ineligible for review. Qualifying experience may be obtained in the private or public sector. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional, philanthropic, religious, spiritual, community, student, social). Volunteer work helps build critical competencies, knowledge, and skills and can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. All qualification requirements must be met by the closing date of this announcement. BASIC REQUIREMENT: For all positions individuals must have IT-related experience demonstrating each of the four competencies listed below: Attention to Detail - Is thorough when performing work and conscientious about attending to detail. Customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services. Oral Communication - Expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to
Full responsibilities and requirements are on Securities and Exchange Commission's application page.
Apply for this role →Location and market context
This role is based in Washington, District of Columbia on-site. Local candidates benefit from being close to Securities and Exchange Commission's teams and regional hiring market. Confirm the exact in-office expectation and any relocation support with the employer.
About cybersecurity governance roles
Cybersecurity governance connects security control frameworks to business and regulatory risk, covering policy, risk assessment, and control assurance rather than hands-on operations. Roles like this one are typically evaluated against frameworks such as NIST CSF, ISO/IEC 27001, SOC 2, and security risk and control-assurance practices.
How to position yourself for this cybersecurity governance role
Strong candidates emphasize security control frameworks, risk assessment, policy and standards, and translating technical security posture into governance and board-level reporting. In your resume and outreach, tie your experience to how Securities and Exchange Commission would apply NIST CSF, ISO/IEC 27001, SOC 2, and security risk and control-assurance practices, and lead with concrete outcomes rather than duties.
Similar GRC roles
More GRC jobs: All GRC roles · Browse by category & location