Federal Security Engineer

Job not on LinkedIn

October 29

Apply Now

Receive Emails with Similar Jobs

Abnormal Security

WebsiteLinkedInAll Job Openings

Abnormal provides total protection against the widest range of attacks including phishing, malware, ransomware, social engineering, executive impersonation, supply chain compromise, internal account compromise, spam, and graymail.

501 - 1000 employees

📋 Description

• Maintain and improve CI/CD pipelines to support secure deployments and infrastructure workflows. • Manage infrastructure-as-code (IaC) PR and Change Control Board reviews, ensuring changes are tested, approved, and secure before release. • Perform security impact analyses (SIAs) for system/application changes and provide recommendations. • Run OS and infrastructure patch cycles; manage hardened images and patch workflows for FedRAMP environments. • Govern access management, including account provisioning, RBAC module maintenance, and periodic reviews. • Manage logging and monitoring pipelines; tune SIEM ingestion and alerting for coverage and accuracy. • Triage and respond to security incidents, from alert investigation through containment, recovery, and after-action reporting. • Maintain and refine runbooks, SOPs, and documentation to ensure consistent operations and audit readiness. • Collaborate with DevInfra, FedOps, Product, and Compliance teams to embed secure practices into operations and development.

🎯 Requirements

• 5+ years in security engineering or infrastructure operations within federal or regulated cloud environments. • Strong familiarity with NIST 800-53 controls and continuous monitoring practices. • Proven delivery of AWS/SaaS security best practices. • Hands-on expertise with CI/CD, infrastructure automation, and IaC security practices. • Experience in patch management, hardened baselines, and secure image pipelines. • Strong knowledge of identity and access management (IAM) design and enforcement in large-scale environments. • Proven ability to manage SIEM pipelines and lead Tier 1/ Tier 2 incident response. • Strong technical documentation, collaboration, and incident/project management skills.

🏖️ Benefits

• bonuses • restricted stock units (RSUs)