-
This role requires candidates to be US Citizens to meet IL4 Federal requirements for access to systems and data
-
5+ years of experience in Information Security engineering or architecture role(s)
-
Previous US Government compliance experience (FedRAMP, DoD, etc)
-
Prior experience with vulnerability scanning technology (Qualys, Rapid7, Tenable, etc)
-
Recent hands-on experience with GCP and AWS at a minimum, Azure and other clouds
-
Strong Experience in at least one language (Python preferred) and shell scripting
-
Previous experience with DB table management and query building (SQL, Big Query, etc)
-
Previous experience with cloud security analysis tools (Prisma, Redlock, Twistlock, etc)
-
Previous experience with SOAR Platforms (Demisto, Phantom, Swimlane, etc)
-
Some experience with Linux system administration or a DevOps, Site Reliability, or infrastructure engineering role
-
Information security certifications: (SANS, CompTIA, ISC2, etc)
-
Familiarity with CI/CD pipeline tools and processes
-
Excellent problem solving, critical thinking, communication, and teamwork skills
-
Excellent written and verbal communication, able to collaborate and rally support
-
Excellent interpersonal skills and the ability to work well in a team
-
Self-disciplined, self-managed, self-motivated and strong sense of ownership, urgency, and drive
-
Passionate to learn, understand, and dissect new technology stack quickly on own
Job Description
-
Infosec representative on cloud / server infrastructure and configuration security
-
Infosec representative on FedRAMP controls applicable to Vulnerability and Configuration Management
-
Design and implement security automation to reduce cloud based risk exposures in a FedRAMP compliance managed environment
-
Create, manage, and automate processes for remediation prioritization for identified vulnerabilities
-
Design and build required data report and integration processes utilizing our security tool APIs
-
Engage and collaborate with compliance and internal development teams in order to shift the implementation of security practices into the build and deployment processes within the compliance space (Shift Security Left)
-
Collaborate with Product teams to provide first customer feedback