Security Engineer

Description

Job Title : Security Engineer

Department : Technology Operations

Location : BILT - Global Brand Support Center, Grapevine, Texas 76051

Overview

BILT Incorporated is a fast-growing software-as-a-service company revolutionizing instructions and training for consumers and professional technicians alike. BILT creates official 3D Intelligent Instructions® for thousands of products from hundreds of innovative brands and hosts them on a free mobile app. Users can manipulate interactive animations on a touchscreen, providing a superior training differentiator for products that require assembly, installation, maintenance, programming, or repair. BILT's mission is to create an experience so enabling and empowering it turns users into promoters of the brands we serve. Our Global Brand Support Center is located in the Dallas-Ft. Worth metroplex between DFW airport and the Southlake Town Square.

About the Job

We're seeking a Security Engineer to strengthen our security and compliance program as we align with rigorous security frameworks. This role goes beyond technical execution-you'll enhance our project's security posture, influencing engineering and operations, and ensuring we remain secure while implementing quickly.

You'll collaborate with consultants, our internal security team, and external auditors while partnering closely with engineering and DevOps to embed secure-by-design practices, support risk-based decisions, maintain clear, audit-ready documentation, and support regular reporting on security metrics and vulnerability reports.

This high-expertise role is ideal for an experienced problem-solver who delivers measurable security outcomes with clarity and requires little guidance in technical implementation. Due to our government contract requirements, this position is open to U.S. citizens only who have the ability to obtain a government security clearance.

Qualifications

• Implement cybersecurity controls for cloud, application, and operational security within the program, leveraging strong expertise in AWS tools (IAM, KMS, CloudTrail, GuardDuty).
• Support compliance with CMMC / NIST 800-171 and FedRAMP / NIST 800-53 by executing technical controls with high proficiency, collaborating with external consultants and the cybersecurity team.
• Translate CMMC / NIST 800-171 and FedRAMP / NIST 800-53 requirements into practical, low-friction technical controls that integrate with engineering workflows.
• Maintain risk registers, access reviews, incident response plans, and security policies, ensuring alignment with program objectives.
• Prepare audit-ready documentation, including System Security Plans (SSPs), security diagrams, and evidence reports, with accuracy and efficiency.
• Support regular reporting on security metrics and vulnerability reports, providing clear insights to ensure transparency and compliance.
• Contribute technical expertise to security-related discussions with engineering, DevOps, product, and leadership teams, fostering effective collaboration.
• Enable secure development practices, including static analysis and CI / CD controls, using tools like Terraform or Snyk with strong proficiency.
• Identify and address gaps in logging, alerting, encryption, and endpoint security within the program, applying expert judgment in collaboration with the cybersecurity team.
• 5+ years of experience in security engineering, DevSecOps, or security program roles, with a strong track record of technical implementation.
• Strong expertise in AWS security best practices and tools, requiring minimal guidance.
• Experience implementing security requirements similar to CMMC / NIST 800-171 or FedRAMP / NIST 800-53 (e.g., ISO 27001, NIST 800-53, SOC 2 Type II).
• Direct experience with CMMC / NIST 800-171 or FedRAMP / NIST 800-53 implementation is a plus but not required.
• Proven experience in audit preparation, including control implementation and documentation.
• Pragmatic, risk-based decision-maker with the ability to prioritize impactful technical solutions.
• Strong documentation and communication skills, capable of explaining technical controls to auditors and engineers with clarity.
• Experience with FedRAMP ATO or working in regulated environments.
• Proficiency in secure CI / CD workflows and tools like Terraform, Snyk, or Datadog.
• Ability to collaborate effectively across technical and non-technical teams, supporting program security objectives.
• Equivalent experience or non-traditional backgrounds that demonstrate the required expertise are welcome.
• U.S. citizenship and the ability to obtain a government security clearance, as required by our federal contract.

Work Environment

Other Duties

Please note this job description is not designed to cover or contain a comprehensive list of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

About BILT

BILT provides 3D Intelligent Instructions, creating and delivering interactive content for iOS, Android, and now turnkey guided work instructions for visionOS. The award-winning platform revolutionizes DIY experience as well as professional training and operational enablement. BILT is accessible, sustainable, and efficient.

At BILT, you will collaborate with a dynamic team of designers, developers, and product managers to deliver secure, innovative 3D interactive instructions for federal and commercial clients. Your expertise will enhance user experience, ensure compliance with federal security standards, and support mission-critical federal contracts, advancing BILT's mission to revolutionize instructions and training. Join us in a collaborative, innovative environment where your skills drive global impact.

For more information go to : www.biltapp.com / careers and submit a profile resume in our applicant tracking system.

BILT is a veteran friendly company, and an Equal Opportunity Employer committed to diversity in the workplace. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, protected veteran status, or any other basis protected by applicable law, and will not be discriminated against on the basis of disability.

We do not accept unsolicited agency resumes. We will not pay fees to any third-party agency, outside recruiter or firm without a mutually agreed-upon contract and will not be responsible for any agency fees associated with unsolicited resumes. Unsolicited resumes will be considered our property and will be processed accordingly.