Associate Security Engineer, FedRAMP

Consensus Cloud Solutions-posted 2 months ago
$105,000 - $125,000/Yr
Full-time • Entry Level
501-1,000 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The Associate Security Engineer for FedRAMP plays a crucial role in maintaining the organization’s FedRAMP High compliance and overall cloud security posture. This position supports the mission of delivering secure, government-compliant services by working on Security Operations (SecOps) projects, managing technical operations, and ensuring compliance with NIST 800-53 Rev 5 standards as part of a team. Key responsibilities include supporting the Annual 3PAO Assessment, managing OS patching for up to 350 servers, managing antivirus and backup solutions, and conducting regular vulnerability scans using tools such as Nessus and Burp Suite. The engineer will be responsible for operating the endpoint security with FortiClient EMS, configuring and managing authentication using Okta for Government, and managing backups with N2WS. Under supervision, they will provide security operation center (SOC) and technical support coverage, monitor logs and intrusions using Splunk, and conduct security assessments of AWS GovCloud. Additional duties include performing Active Directory user access reviews and implementing access controls, supporting red team and penetration testing, assisting with POAM in coordination with the FedRAMP GRC team, and participating in incident response and disaster recovery exercises.

  • Perform SecOps services under supervision.
  • Support Annual FedRAMP 3PAO assessments and security control validation.
  • Conduct patch management for operating systems on up to 350 servers.
  • Configure and operate antivirus solutions and ensure endpoint security using FortiClient EMS.
  • Configure and operate AWS backup and disaster recovery using N2WS Backup.
  • Conduct monthly vulnerability scans (OS, database, web apps, STIG baseline) using Nessus and provide reporting and analysis.
  • Perform rescans to confirm remediation of vulnerabilities.
  • Generate monthly security reports and conduct user access reviews.
  • Manage and test functional Disaster Recovery and Incident Response plans per NIST 800-53 Rev 5.
  • Operate and maintain SIEM tools such as Splunk for threat detection and correlation.
  • Maintain technical support services with a 15-minute callback SLA.
  • Perform continuous log management and intrusion detection monitoring.
  • Conduct configuration consistency checks and quarterly authorized software reviews.
  • Manage AWS GovCloud security groups and access control list reviews.
  • Administer Active Directory account creation, password resets, and YubiKey setup.
  • Manage user access for production and pre-production systems and security tools.
  • Support and validate annual penetration testing and red team exercises.
  • Conduct continuous monitoring (ConMon) and FedRAMP validation scans.
  • Collaborate with the GRC team to manage and resolve POAMs.
  • Participate in Incident Response and Disaster Recovery testing activities.
  • Contribute to Annual Assessment preparation and Significant Change Management reviews.
  • Assist with evaluating security tools and conducting proof-of-concept testing for new technologies.
  • Support internal and external security audits beyond FedRAMP (e.g., SOC 2, HITRUST, PCI, etc.).
  • Provide input on security policies, procedures, and documentation updates.
  • Participate in cross-functional project teams for infrastructure or application changes.
  • Deliver internal security awareness or training sessions as needed.
  • Research emerging threats, vulnerabilities, and security trends to inform program improvements.
  • Assist in vendor risk assessments and third-party security reviews.
  • Create and maintain technical runbooks, knowledge base articles, and process documentation.
  • Support response efforts for privacy incidents or data breaches involving PII/PHI.
  • Participate in industry or government security forums, working groups, or communities of interest.
  • Provide backup support for other security team members during absences.
  • Perform other duties and responsibilities as required, assigned, or requested.
  • 3+ years of experience in security engineering or a similar technical security role.
  • 3+ years of hands-on experience in cybersecurity, with at least 2 years in a security engineering role.
  • 3+ years of experience with Vulnerability Management tools for identifying, tracking, and mitigating vulnerabilities across systems and applications.
  • 3+ years of experience using Endpoint Protection tools like FortiClient Enterprise Management Server (EMS), CrowdStrike, Carbon Black, or SentinelOne.
  • 3+ years of experience with Cloud Service Providers and their Security platforms.
  • 2+ years of experience with AWS security services such as IAM, CloudTrail, GuardDuty, and Security Hub.
  • 2+ years of experience implementing Security Technical Implementation Guides (STIGs) and baseline configuration management.
  • 2+ years of experience with AWS backup tools such as N2WS Backup for AWS backup and disaster recovery.
  • 2+ years of experience with One-time password systems for secure authentication, such as Okta.
  • 2+ years of experience with SIEM platforms, such as Splunk, Elastic, or Exabeam.
  • 2+ years of experience with Security Monitoring and Incident Response processes.
  • 2+ years of experience using Security Posture Management tools.
  • 1+ year of direct experience supporting FedRAMP, NIST 800-53, or similar government security compliance frameworks.
  • Hands-on experience with tools such as Nessus, Splunk, Burp Suite, FortiClient EMS, and AWS GovCloud is required.
  • Experience supporting FedRAMP High environments or other high-impact government-authorized systems.
  • Experience with Plan of Action and Milestones (POAM) management and working with GRC teams.
  • Exposure to penetration testing and red team operations in cloud and hybrid environments.
  • Experience automating security tasks using scripting languages such as Python, PowerShell, or Bash.
  • Knowledge of ticketing and workflow systems like ManageEngine ServiceDesk Plus (MESD).
  • Strong written communication skills for reporting, analysis, and compliance documentation.
  • Annual performance bonus
  • Employee Stock Purchase Plan (ESPP)
  • Enhanced time off packages
  • Health insurance
  • 401k
  • Flexible work arrangements
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service