RESPONSIBILITIES

• Maintain security controls, documentation, policies, and system accreditation requirements
  
  
• Lead risk assessments, vulnerability reviews, and control evaluations across systems
  
  
• Coordinate compliance activities, audits, and remediation efforts
  
  
• Monitor security events, access patterns, and system configurations for deviations
  
  
• Partner with Engineering and DevOps to ensure secure architecture and deployment practices
  
  
• Support incident response, root cause analysis, and corrective actions
  
  
• Ensure identity, access, and privilege controls remain accurate and well governed
  
  
• Maintain system security plans, diagrams, inventories, and operational security materials
  
  
• Drive continuous improvement of security processes, readiness, and compliance hygiene
  
  

QUALIFICATIONS

• 4 plus years of experience in information security, compliance, or system governance
  
  
• Familiarity with security frameworks such as NIST, FedRAMP, SOC 2, or similar standards
  
  
• Experience conducting system assessments, audits, or security control evaluations
  
  
• Understanding of cloud infrastructure security, access management, and logging practices
  
  
• Ability to manage documentation, evidence collection, and structured compliance processes
  
  
• Strong communication skills working with technical and operational teams
  
  
• Bonus experience with government programs, defense environments, or regulated industries
  
  
• Bonus certifications such as Security Plus, CISSP, CISA, or similar
  
  

WHO YOU ARE

• A detail oriented security expert with a disciplined, process driven mindset
  
  
• Comfortable balancing strong governance with enabling fast moving engineering teams
  
  
• Proactive, thorough, and committed to maintaining a secure operating environment

‍