Security Authorization Specialist

🔥 1 hour ago

⛰️ Colorado, District of Columbia, +4 more states – Remote

⛰️ Colorado – Remote 🏛️ District of Columbia – Remote 🌲 North Carolina – Remote 🦀 Maryland – Remote 🤠 Texas – Remote ⚔️ Virginia – Remote

💵 $119k - $160k / year

⏰ Full Time

🟠 Senior

🔴 Lead

👮‍♂️ Cybersecurity / Security Engineer

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Second Front Systems

WebsiteLinkedInAll Job Openings

51 - 200 employees

☁️ SaaS

🏛️ Government

SaaS • Defense • Government

Second Front Systems is a public-benefit, venture-backed company that provides mission-critical software solutions primarily to democracies around the world. Their product suite, which includes the 2F Suite, 2F Workshop, 2F Game Warden, and 2F Frontier, simplifies and accelerates the software development and delivery process. The company is trusted by leading software providers and government agencies for its secure DevSecOps solutions, enabling secure software deployment on classified and unclassified networks. Their offerings include tools for secure development, software accreditation, government cloud hosting, and edge deployment, particularly focused on supporting government and defense sectors. Second Front Systems collaborates with partners to make emerging technologies more accessible, accelerating the accreditation and compliance processes and offering solutions that can operate in remote or disconnected environments, such as drones and vehicles.

📋 Description

• Lead Authorization Work streams: Independently drive the end-to-end authorization lifecycle for Game Warden across FedRAMP and US agency ATO packages • Artifact Ownership: Author, refine, and maintain high-quality System Security Plans (SSPs), control implementation narratives, Plans of Action & Milestones (POA&Ms), and supporting authorization artifacts • Proactive Continuous Monitoring: Manage day-to-day continuous monitoring activities, including monthly POA&M updates, vulnerability and patch reporting, significant change reviews, and annual control assessments • Technical Point of Contact: Serve as the primary front-line technical point of contact for 3PAOs, agency reviewers, and sponsor authorization officials during assessments, readiness reviews, and audits • Engineering Partnership: Partner closely with Product, Engineering, Security Operations, and Cybersecurity Assessment teams to map complex cloud-native controls to FedRAMP and NIST 800-53 requirements • Translate Policy to Tech: Act as a bridge between compliance and engineering • Leverage GRC Automation: Utilize and help optimize GRC and evidence automation tooling to streamline control mapping and evidence collection • Process Evolution: Contribute to the continuous improvement of 2F’s authorization processes.

🎯 Requirements

• 7+ years of experience in security compliance, cybersecurity authorization, or GRC work • Strong, practical working knowledge of NIST 800-53 (Rev 4/5), NIST 800-37 (RMF), and FedRAMP-specific guidance and templates • Solid understanding of modern cloud environments and how cloud-native patterns (AWS services, containers, Kubernetes, CI/CD pipelines) map to technical controls • Proven success supporting 3PAO assessments, annual reviews, or agency ATO efforts from the vendor or integrator side • Exceptional written communication skills; a proven ability to produce assessor-ready technical documentation and clear control narratives • Active U.S. Top Secret (TS) security clearance required; eligibility for access to Sensitive Compartmented Information (SCI) required • Active professional security certification such as CISSP, CISM, or Security+.

🏖️ Benefits

• Competitive Salary • 100% Healthcare, vision and dental coverage • 401(k) + 3% company contribution • Equity incentive plan • Tech + office supplies stipend • Annual professional development stipend • Flexible paid time off + federal holidays off • Parental leave • Work from anywhere • Referral Bonus