1 to 25 of 44 Permanent FedRAMP Jobs

senior military and government civilian leadership Experienced with writing policies, guides, procedures Experience in hands on with eMASS, Xacta and/or other GRC tools Experience with federal and fedRamp A&A processes Experienced and comfortable advising at the SES level of customers More ❯

tools (e.g., Docker, Kubernetes). • Proficiency in automation tools to meet DHS S&T requirements. • Hands-on experience with federal cloud platforms such as AWS GovCloud, Azure Government, or FedRAMP solutions. • Understanding of cloud-specific security measures (e.g., cloud encryption, IAM, FedRAMP controls). • Knowledge of government-specific security requirements and frameworks (e.g., Continuous Diagnostics and Mitigation (CDM), NIST More ❯

senior military and government civilian leadership Experienced with writing policies, guides, procedures Experience in hands on with eMASS, Xacta and/or other GRC tools Experience with federal and fedRamp A&A processes Experienced and comfortable advising at the SES level of customers Must have an active TS/SCI clearance Preferred Have a strong background in information security, risk More ❯

I certification (e.g., Security+, CAP, GSLC, CISM, CISSP). Preferred Qualifications: • Top Secret or TS/SCI clearance. • Experience with cloud-based systems (e.g., AWS GovCloud, Azure Government) and FedRAMP requirements. • Familiarity with JSIG, CNSSI 1253, and classified system requirements. • Knowledge of network architectures and system hardening techniques. • Experience with Xacta, Splunk, ACAS, Nessus, and Host-Based Security System (HBSS More ❯

and security. Proficient in scripting and automation (e.g., PowerShell, Azure CLI, ARM/Bicep/Terraform). Strong understanding of cloud security best practices and regulatory compliance frameworks (e.g., FedRAMP, NIST, HIPAA). Experience with monitoring and logging tools such as Azure Monitor, Log Analytics, and Sentinel. Preferred Qualifications: Microsoft Certified: Azure Solutions Architect Expert or equivalent certification. Experience in More ❯

and security. Proficient in scripting and automation (e.g., PowerShell, Azure CLI, ARM/Bicep/Terraform). Strong understanding of cloud security best practices and regulatory compliance frameworks (e.g., FedRAMP, NIST, HIPAA). Experience with monitoring and logging tools such as Azure Monitor, Log Analytics, and Sentinel. Preferred Qualifications: Microsoft Certified: Azure Solutions Architect Expert or equivalent certification. Experience in More ❯

in log collection and analysis using tools like Splunk to identify security anomalies. Strong knowledge of government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, FISMA, FedRAMP). Proven experience implementing security controls for cloud, container, and DevSecOps services across IL5 to IL6+ on NIPR, SIPR, and JWICS. In-depth understanding of network protocols, operating systems, and More ❯

validation routines, and backup solutions. Preferred Qualifications: Hands-on experience with cloud database services (AWS, Azure, or GCP). Familiarity with federal data privacy and security compliance (e.g., FISMA, FedRAMP, NIST). Relevant certifications (e.g., Oracle Certified Professional, AWS Certified Database Specialty). Experience developing reports and dashboards with tools like Tableau or Power BI. Additional Information: Strong interpersonal skills More ❯

continuous deployment (CI/CD) tools, and leveraging automation platforms such as Ansible or Azure Functions Understanding of Federal Government application, server, and network security requirements such as NIST, FedRAMP, and FISMA Ability to work effectively within a distributed technical team, aided by strong written and verbal communication skills Familiarity with the Atlassian suite, including Jira and Confluence Current IAT More ❯

Linux Administration Software engineering disciplines Proficiency developing for serverless frameworks such as Azure Functions or AWS Lambda Experience with compliance frameworks such as SOC 2 Type 2, ISO-27001, FedRAMP, or IRAP and privacy regulations suchas GDPR and PIPEDA Roadmap for Success 90 Days: Onboarding and role-training is complete You're building foundational knowledge of the SRE-run product More ❯

model data, and recommend corrections as necessary. SECURITY AND PRIVACY DUTIES AND RESPONSIBILITIES Individuals working for DSS will be subject to security and privacy requirements as explained in HIPAA, FedRAMP, and NIST 800-53. Additionally, they are required to undergo specific FedRAMP training to ensure compliance with all associated controls and responsibilities in the day-to-day performance of More ❯

to identify security-relevant anomalies or risks Strong experience in implementing security controls from government regulatory frameworks and security standards (e.g., NIST SP 800-53, RMF, ICD 503, FISMA, FedRAMP). Experience with implementing controls for cloud, container, and DevSecOps services and solutions within IL5 to IL6+ environments. Strong understanding of network protocols, operating systems, and infrastructure components. Proficiency in More ❯

with Security Authorization and Assessment (A&A) process and Risk Management Framework (RMF). • Familiarity with the ATO process, NIST 800-53, 800-171, 800-190 as well as FedRamp, CMMC, PCI and HIPAA. • Knowledge of existing, new, and emerging technologies and being able to practically incorporate them into new business designs and business models. • Must be able to develop More ❯

continuous deployment (CI/CD) tools, and leveraging automation platforms such as Ansible or Azure Functions Understanding of Federal Government application, server, and network security requirements such as NIST, FedRAMP, and FISMA Ability to work effectively within a distributed technical team, aided by strong written and verbal communication skills Familiarity with the Atlassian suite, including Jira and Confluence Current IAT More ❯

Skills you should HODL 7+ years in security engineering or technical external audit/advisory, including hands-on experience with industry frameworks (e.g. ISO 27001, SOC 2, PCI DSS, FedRAMP, NIST). Strong long-form and asynchronous writing skills for a fully remote, globally distributed team. Built and/or made substantial contributions to a common controls framework. Knowledge of More ❯

background in cybersecurity strategy, risk management, and compliance Experience with security assessment tools and practices (e.g., Nessus, Splunk, SCAP, STIGs) Knowledge of federal cybersecurity policies and standards (e.g., FISMA, FedRAMP, NIST SP 800-53) Excellent analytical, communication, and stakeholder engagement skills Experience supporting cybersecurity for intelligence or defense systems Familiarity with cloud security, Zero Trust architecture, and endpoint protection solutions More ❯

AWS Certified Solutions Architect, Azure Solutions Architect Expert, or Google Cloud Professional Architect Experience migrating mission-critical applications to the cloud Knowledge of federal security and compliance frameworks (e.g., FedRAMP, NIST) Background working with multi-disciplinary government or IC teams Join a mission-driven team advancing secure and modernized cloud infrastructure across federal systems. Apply today and become part of More ❯

Sentinel, Defender XDR, Purview, Entra ID, Azure Policy. - Hands-on experience integrating or piloting AI agents or LLMs in operational workflows. - Knowledge of compliance standards such as NIST, HIPAA, FedRAMP, PCI, SOC2, or HITRUST. - Security certifications such as SC-200, GCSA, or equivalent. Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to More ❯

current with industry trends, emerging technologies, and best practices; drive adoption of new technologies and methodologies where appropriate. Governance & Compliance: Ensure solutions meet regulatory, security, and compliance requirements (e.g., FedRAMP, HIPAA, ISO, SOC2). Cross-Functional Collaboration: Work across multiple teams and domains to drive consistency, reduce redundancy, and ensure cohesive architecture across the organization. Customer Advocacy: Represent the voice More ❯

CYBER SECURITY RISK ANALYST - MID LEVEL - GRC FOCUS ROCKVILLE, MD LONG TERM CONTRACT The Cyber Security Risk Analyst will support the County's Governance, Risk, and Compliance (GRC) efforts by performing detailed risk evaluations and compliance assessments. The analyst will More ❯

Job Title: Cybersecurity Engineer Location: McLean, VA Clearance: Secret The position is hybrid and will sit in office 3 days/week and 2 days remote. Salary: Open but range pending experience/certs $40-$50/hour Responsibilities: Conduct More ❯

and containerized systems Automate governance and compliance checks across environments Required Experience 5+ years in RMF, ATO, or federal cybersecurity engineering roles Deep familiarity with NIST 800-53 and FedRAMP/DoD compliance baselines Experience in secure cloud architectures (AWS preferred) Strong documentation and government interfacing capabilities Familiarity with AMI hardening, IaC security, and audit tools Required Certifications (DoD More ❯

features. • Work with DevOps teams to automate deployment and monitoring of Elastic solutions using tools such as Ansible, Terraform, or Kubernetes. • Ensure compliance with government security standards including FISMA, FedRAMP, and DISA STIGs. • Provide Tier 3 support and participate in on-call rotations as required. • Collaborate with data owners, analysts, and security teams to define and meet data analytics requirements. More ❯

documentation skills Must obtain and maintain Public Trust clearance prior to start PREFERRED QUALIFICATIONS Prior experience supporting FEMA or other DHS components Familiarity with federal IT compliance frameworks (FISMA, FedRAMP, NIST 800-53) Experience with DevSecOps or cloud-native automation tools Background in IT infrastructure optimization, disaster recovery planning, and risk assessments Join a mission-driven team advancing national emergency More ❯

performance metrics, compliance monitoring, and capacity planning. • Assist in the implementation of network segmentation and zero-trust architectures using LiveAction insights. • Support accreditation and compliance efforts including RMF, FISMA, FedRAMP, and DoD standards. • Train and mentor operations staff and develop documentation for standard operating procedures. • Provide Tier 2/3 support for incident response and troubleshooting. Required Qualifications: • Active Secret More ❯