Senior Security Engineer, FedRAMP

Job not on LinkedIn

🔥 13 hours ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Abnormal Security

Abnormal Security

501 - 1000 employees

Abnormal provides total protection against the widest range of attacks including phishing, malware, ransomware, social engineering, executive impersonation, supply chain compromise, internal account compromise, spam, and graymail.

📋 Description

• Maintain and improve CI/CD pipelines to support secure deployments and infrastructure workflows. • Manage infrastructure-as-code (IaC) PR and Change Control Board reviews, ensuring changes are tested, approved, and secure before release. • Perform security impact analyses (SIAs) for system/application changes and provide recommendations. • Run OS and infrastructure patch cycles; manage hardened images and patch workflows for FedRAMP environments. • Govern access management, including account provisioning, RBAC module maintenance, and periodic reviews. • Manage logging and monitoring pipelines; tune SIEM ingestion and alerting for coverage and accuracy. • Triage and respond to security incidents, from alert investigation through containment, recovery, and after-action reporting. • Maintain and refine runbooks, SOPs, and documentation to ensure consistent operations and audit readiness. • Collaborate with DevInfra, FedOps, Product, and Compliance teams to embed secure practices into operations and development.

🎯 Requirements

• 5 - 7 years in security engineering or infrastructure operations within federal or regulated cloud environments. • Strong familiarity with NIST 800-53 controls and continuous monitoring practices. • Proven delivery of AWS/SaaS security best practices. • Hands-on expertise with CI/CD, infrastructure automation, and IaC security practices. • Experience in patch management, hardened baselines, and secure image pipelines. • Strong knowledge of identity and access management (IAM) design and enforcement in large-scale environments. • Proven ability to manage SIEM pipelines and lead Tier 1/ Tier 2 incident response. • Strong technical documentation, collaboration, and incident/project management skills.

🏖️ Benefits

• Actual compensation will be determined based on several non-discriminatory factors including skills, experience, qualifications, and geographic location. • In addition to base salary, this role may be eligible for bonus or incentive compensation, equity, and a comprehensive benefits package.

Apply Now

Similar Jobs

🔥 14 hours ago

Red River

501 - 1000

🔒 Cybersecurity

🤖 Artificial Intelligence

Cybersecurity Subject Matter Expert managing cybersecurity solutions at Red River for clients. Collaborating with teams to enhance security practices and client satisfaction.

Cyber Security

Firewalls

🔥 15 hours ago

LMI

1001 - 5000

🤖 Artificial Intelligence

⚕️ Healthcare Insurance

🏛️ Government

Enterprise Platform Security Manager overseeing security strategy and governance for cloud-native platforms at LMI. Driving security across AI workloads and modern software delivery pipelines.

AWS

Azure

Cloud

Cyber Security

🔥 16 hours ago

OpenAI

201 - 500

🤖 Artificial Intelligence

☁️ SaaS

🏢 Enterprise

Technical Product Manager focusing on building Codex security controls and partner ecosystem at OpenAI. Collaborating with engineering and security teams to ensure secure integration and compliance.

Cloud

🔥 18 hours ago

Horizon Industries, Limited

201 - 500

🤝 B2B

☁️ SaaS

🔒 Cybersecurity

Cybersecurity Subject Matter Expert ensuring successful assessments and authorizations for IT systems in a fully remote setting. Collaborate with stakeholders to maintain robust cybersecurity protocols and practices.

Cloud

Cyber Security

🔥 19 hours ago

Galaxy

201 - 500

₿ Crypto

💸 Finance

Security Engineer at Galaxy managing SOC operations and ensuring cybersecurity across data centers. Collaborating with IT and DevOps to enhance security measures and incident response.

AWS

Azure

Cloud

Cyber Security

Firewalls

Linux

Python

Splunk

VMware