Senior Security Engineer (AWS, Salesforce)

TL;DR

Senior Security Engineer (AWS, Salesforce): Designing and maintaining security controls for the Salesforce-based MESH platform and AWS cloud environment with an accent on FedRAMP, NIST, and DevSecOps integration. Focus on automating vulnerability management, authoring ATO artifacts, and implementing secure AI/ML design patterns.

Location: Must be US citizens or pass U.S. Federal Government public trust clearance (requires living in the US for 3 of the previous 5 years). Must operate within the Eastern Time Zone.

Company

A modern digital services company that partners with government agencies to create intuitive products and services for federal agencies.

What you will do

• Implement and maintain security controls across Salesforce-based MESH and AWS in accordance with CMS ARS 5.1, FedRAMP Moderate, and NIST SP 800-53.
• Integrate SAST, DAST, IAST, and SCA tools (Snyk, AppOmni, Tenable) into GitHub Actions and Copado CI/CD pipelines.
• Manage the end-to-end vulnerability lifecycle and author ATO artifacts (SSPs, POA&Ms, Privacy Impact Assessments) in CFACTS.
• Harden Salesforce GovCloud configurations through role-based access, Salesforce Shield, and OAuth/MFA.
• Configure and tune continuous monitoring tools including Splunk, AWS GuardDuty, and CloudTrail for incident response.
• Translate federal AI governance requirements into secure design patterns for AI/ML capabilities embedded in MESH.

Requirements

• U.S. Federal Government public trust clearance is mandatory.
• Bachelor’s degree in Computer Science, Engineering, or a related technical discipline.
• 8+ years of security engineering experience supporting cloud-hosted federal information systems.
• Strong knowledge of NIST RMF, NIST SP 800-53 Rev 5, and FedRAMP Moderate baselines.
• Hands-on experience with AWS security services and Salesforce security best practices.
• Proficiency in scripting and automation using Python, Bash, or PowerShell.

Nice to have

• Experience with CMS, HHS, or other federal government contracting.
• Industry certifications such as CISSP, CISM, CRISC, or CEH.
• Cloud security certifications (AWS Certified Security, CCSP, CCSK).
• Salesforce certifications (Administrator, Platform Developer, or Security & Privacy Architect).
• Experience securing AI/ML pipelines and applying federal AI governance.

Culture & Benefits

• Comprehensive medical, dental, and vision coverage.
• 401(k) retirement benefits.
• Paid time off, paid holidays, and life/disability insurance.
• Hybrid work environment supporting Eastern time zone alignment.
• Wellness and employee support programs.