OneMain Financial Jobs

Job Description

Insight Global is seeking a Cyber Security Systems Engineer I to support a DoD environment in the Hampton Roads area. This role focuses on continuous vulnerability assessment and secure configuration of enterprise systems in a clustered, cloud‑like environment. The ideal candidate has an active Secret clearance, a completed degree, and hands‑on exposure to vulnerability scanning and STIG hardening. This is not an RMF or ATO ownership role, but rather a steady‑state security engineering position supporting recurring approvals and ongoing system security.

Responsibilities include, but are not limited to:

-Supporting continuous vulnerability scanning of software and systems

-Reviewing scan results and triaging findings, including identifying false positives

-Performing STIG hardening using manual processes and limited automation

-Working in STIG Viewer to validate controls and document evidence and comments

-Assisting with remediation of security findings and validating fixes through re‑scans

-Supporting secure configuration baselines across Windows and/or Linux systems

-Contributing to security engineering efforts across the system lifecycle

-Helping maintain security posture in a clustered, cloud‑like -environment (Kubernetes‑type concepts)

-Documenting security controls, technical standards, and configuration decisions

Compensation:

$35/hr to $38hr.

Exact compensation may vary based on several factors, including skills, experience, and education.

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Skills and Requirements

-Active Secret security clearance

-Bachelor’s degree in a relevant field

-Ability to work locally in the Hampton Roads / Suffolk area

-Experience or hands‑on exposure to continuous vulnerability scanning

-Familiarity with STIGs and secure configuration baselines

-Ability to work in STIG Viewer (or equivalent) to:

-Review controls

-Validate findings

-Document evidence and comments

-Experience triaging vulnerability findings, including identifying false positives

-Understanding of manual STIG hardening (automation is limited)

-Familiarity with security frameworks at a conceptual level (e.g., NIST)

-Ability to clearly communicate security findings and remediation steps

-Comfortable working in an ongoing, repeatable security assessment cycle

-Security+ certification -Prior DoD or government contracting experience

-Experience in clustered or cloud‑like environments (VM clusters, containers, Kubernetes‑type platforms)

-Windows or Linux operating system certification

-Hands‑on OS‑level hardening experience (Windows and/or Linux)

-Experience securing applications running in shared or clustered environments

-Familiarity with vulnerability remediation tracking and validation workflows

-Security certifications that supersede Security-Exposure to limited hardening automation tools or scripts

-Experience working alongside engineering or operations teams on remediation efforts