This role requires candidates to be US Citizens to meet IL4 Federal requirements for access to systems and data
5+ years of experience in Information Security engineering or architecture role(s)
Previous US Government compliance experience (FedRAMP, DoD, etc)
Prior experience with vulnerability scanning technology (Qualys, Rapid7, Tenable, etc)
Recent hands-on experience with GCP and AWS at a minimum, Azure and other clouds
Strong Experience in at least one language (Python preferred) and shell scripting
Previous experience with DB table management and query building (SQL, Big Query, etc)
Previous experience with cloud security analysis tools (Prisma, Redlock, Twistlock, etc)
Previous experience with SOAR Platforms (Demisto, Phantom, Swimlane, etc)
Some experience with Linux system administration or a DevOps, Site Reliability, or infrastructure engineering role
Information security certifications: (SANS, CompTIA, ISC2, etc)
Familiarity with CI/CD pipeline tools and processes
Excellent problem solving, critical thinking, communication, and teamwork skills
Excellent written and verbal communication, able to collaborate and rally support
Excellent interpersonal skills and the ability to work well in a team
Self-disciplined, self-managed, self-motivated and strong sense of ownership, urgency, and drive
Passionate to learn, understand, and dissect new technology stack quickly on own
Job Description
Infosec representative on cloud / server infrastructure and configuration security
Infosec representative on FedRAMP controls applicable to Vulnerability and Configuration Management
Design and implement security automation to reduce cloud based risk exposures in a FedRAMP compliance managed environment
Create, manage, and automate processes for remediation prioritization for identified vulnerabilities
Design and build required data report and integration processes utilizing our security tool APIs
Engage and collaborate with compliance and internal development teams in order to shift the implementation of security practices into the build and deployment processes within the compliance space (Shift Security Left)
Collaborate with Product teams to provide first customer feedback