Назад
Company hidden
4 дня назад

Staff Product Security Engineer (FedRAMP)

Формат работы
onsite
Тип работы
fulltime
Грейд
senior/lead
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Staff Product Security Engineer (FedRAMP): Leading security strategy and compliance for federal and commercial AI platforms with an accent on FedRAMP High and DoD IL5 requirements. Focus on building security automation in Python/Go, managing container security, and serving as the technical lead for federal security audits and customer trust.

Location: Must be a United States Citizen residing in the United States (Boston, Seattle, or San Francisco).

Company

hirify.global delivers an AI platform that empowers organizations to develop, deliver, and govern AI at scale while minimizing business risk.

What you will do

  • Lead the acquisition and maintenance of Authority to Operate (ATO) at FedRAMP High and DoD IL5 levels.
  • Translate complex federal controls like NIST 800-53 into actionable engineering requirements.
  • Develop custom security automation for CI/CD pipelines using Python or Go.
  • Manage container security and implement secure-by-design processes.
  • Act as the primary technical lead for federal security audits and customer security inquiries.
  • Perform threat modeling for new features and educate development teams on secure coding practices.

Requirements

  • Must be a United States Citizen residing in the United States.
  • 8+ years of experience in Information Security, specifically in Product Security or AppSec.
  • Deep understanding of FedRAMP authorization, NIST 800-53, and DoD Cloud Computing SRG.
  • Fluent in Python or Go for security automation.
  • Strong knowledge of Linux container internals and security isolation.
  • Experience with security tools like Semgrep, Trivy, and Burp Suite.

Nice to have

  • Familiarity with Kubernetes orchestration.
  • Experience in high-stakes customer-facing security communication.

Culture & Benefits

  • Competitive pay and comprehensive benefits package.
  • Medical, Dental, and Vision insurance.
  • Flexible Time Off program and paid holidays.
  • Paid parental leave and global employee assistance program.
  • Commitment to diversity, equity, and inclusion with an emphasis on hiring from marginalized groups.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →