AppSec Jobs
← Back to all jobs

SMX

Information System Security Engineer (ISSE)

Aiea, HIWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About SMX

SMX is a technology company that specializes in digital transformation, cloud solutions, cybersecurity, and mission-critical services for both government and commercial organizations. Founded in 1995 and based in Hollywood, Maryland, SMX has over 30 years of experience delivering innovative solutions across various sectors, including defense, healthcare, finance, and education. The company offers a wide range of services, including cloud computing and modernization, cybersecurity and compliance, data analytics, and digital transformation. Its flagship product, the SMX Elevate platform, provides automation and compliance solutions tailored for mission acceleration. SMX is recognized as a leader in the Gartner Magic Quadrant and holds Premier status with major cloud providers like AWS, Microsoft Azure, and Google Cloud. The company is committed to secure and compliant environments, serving clients such as the Department of Defense and various commercial enterprises.

Industry

information technology & services

Employees

2,100

220 engineers

Revenue

$1.0B

Website

Visit →

Security at SMX

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • SMX states a broad cybersecurity positioning focused on protecting data, applications, and people, emphasizing that securing these aspects is about more than just protecting critical assets.
  • They advertise 'world-class penetration (pen) testing' and advanced hunting capabilities.
  • SMX also offers security posture assessment and real-time monitoring.
  • Their solutions follow the NIST RMF framework for information security, and their Xshield™ product is listed on the FedRAMP Marketplace.
  • However, no explicit public mission statement for AppSec, verbatim quotes on their approach to developers (enablement vs. gatekeeping), or specific risk philosophy for AppSec were found.

Security Team

Information regarding the AppSec team's organizational structure, reporting lines, named public-facing leaders, and estimated team size is not publicly available.

Key Initiatives

SMX job postings reference DevSecOps and cloud security responsibilities, including roles like 'Azure DevSecOps Engineer' that involve building code pipelines, using automation tools such as Ansible, Jenkins, and Packer, and conducting security patching. However, no public evidence was found for a Security Champions program, specific shift-left implementations (like IDE plugins or pre-commit hooks), vulnerability management processes (SLAs, ticketing, MTTR targets), or a bug bounty program.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.