Senior Security Engineer, FedRAMP

Job not on LinkedIn

🔥 1 minute ago

🇺🇸 United States – Remote

💵 $153k - $220k / year

⏰ Full Time

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🦅 H1B Visa Sponsor

info
Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Abnormal Security

Abnormal Security

501 - 1000 employees

Abnormal provides total protection against the widest range of attacks including phishing, malware, ransomware, social engineering, executive impersonation, supply chain compromise, internal account compromise, spam, and graymail.

📋 Description

• Maintain and improve CI/CD pipelines to support secure deployments and infrastructure workflows. • Manage infrastructure-as-code (IaC) PR and Change Control Board reviews, ensuring changes are tested, approved, and secure before release. • Perform security impact analyses (SIAs) for system/application changes and provide recommendations. • Run OS and infrastructure patch cycles; manage hardened images and patch workflows for FedRAMP environments. • Govern access management, including account provisioning, RBAC module maintenance, and periodic reviews. • Manage logging and monitoring pipelines; tune SIEM ingestion and alerting for coverage and accuracy. • Triage and respond to security incidents, from alert investigation through containment, recovery, and after-action reporting. • Maintain and refine runbooks, SOPs, and documentation to ensure consistent operations and audit readiness. • Collaborate with DevInfra, FedOps, Product, and Compliance teams to embed secure practices into operations and development.

🎯 Requirements

• 5 - 7 years in security engineering or infrastructure operations within federal or regulated cloud environments. • Strong familiarity with NIST 800-53 controls and continuous monitoring practices. • Proven delivery of AWS/SaaS security best practices. • Hands-on expertise with CI/CD, infrastructure automation, and IaC security practices. • Experience in patch management, hardened baselines, and secure image pipelines. • Strong knowledge of identity and access management (IAM) design and enforcement in large-scale environments. • Proven ability to manage SIEM pipelines and lead Tier 1/ Tier 2 incident response. • Strong technical documentation, collaboration, and incident/project management skills.

🏖️ Benefits

• Actual compensation will be determined based on several non-discriminatory factors including skills, experience, qualifications, and geographic location. • In addition to base salary, this role may be eligible for bonus or incentive compensation, equity, and a comprehensive benefits package.

Apply Now

Similar Jobs

🔥 53 minutes ago

Red River

501 - 1000

🔒 Cybersecurity

🤖 Artificial Intelligence

Cybersecurity Subject Matter Expert managing cybersecurity solutions at Red River for clients. Collaborating with teams to enhance security practices and client satisfaction.

🔥 2 hours ago

LMI

1001 - 5000

🤖 Artificial Intelligence

⚕️ Healthcare Insurance

🏛️ Government

Enterprise Platform Security Manager overseeing security strategy and governance for cloud-native platforms at LMI. Driving security across AI workloads and modern software delivery pipelines.

🔥 2 hours ago

OpenAI

201 - 500

🤖 Artificial Intelligence

☁️ SaaS

🏢 Enterprise

Technical Product Manager focusing on building Codex security controls and partner ecosystem at OpenAI. Collaborating with engineering and security teams to ensure secure integration and compliance.

🔥 5 hours ago

Horizon Industries, Limited

201 - 500

🤝 B2B

☁️ SaaS

🔒 Cybersecurity

Cybersecurity Subject Matter Expert ensuring successful assessments and authorizations for IT systems in a fully remote setting. Collaborate with stakeholders to maintain robust cybersecurity protocols and practices.

🔥 6 hours ago

Galaxy

201 - 500

₿ Crypto

💸 Finance

Security Engineer at Galaxy managing SOC operations and ensuring cybersecurity across data centers. Collaborating with IT and DevOps to enhance security measures and incident response.