Federal Security Engineer (Remote - US)

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Federal Security Engineer in the United States.

This role ensures that federal cloud environments operate securely, efficiently, and resiliently, with a focus on infrastructure and security operations engineering. You will own and optimize technical workflows related to CI/CD pipelines, access management, patching, change reviews, and incident response. Working closely with cross-functional teams, you will drive automation, enforce security best practices, and maintain compliance with federal regulations at scale. This position combines hands-on cloud security expertise with operational discipline, offering the opportunity to shape secure and efficient processes across complex environments.

Accountabilities

• Maintain and enhance CI/CD pipelines to support secure deployments and infrastructure workflows.
• Review Infrastructure-as-Code (IaC) changes and oversee Change Control Board processes to ensure secure and approved releases.
• Conduct security impact analyses (SIAs) for system and application changes and provide actionable recommendations.
• Manage OS and infrastructure patch cycles, hardened images, and compliance with FedRAMP standards.
• Govern access management including account provisioning, RBAC maintenance, and periodic audits.
• Monitor and tune SIEM pipelines for accurate logging, alerting, and incident detection.
• Lead Tier 1 and Tier 2 incident response, including investigation, containment, recovery, and reporting.
• Maintain and improve runbooks, SOPs, and documentation to ensure operational consistency and audit readiness.
• Collaborate with DevOps, FedOps, Product, and Compliance teams to integrate security practices into operations.

• 5+ years of experience in security engineering or infrastructure operations within federal or regulated cloud environments.
• Strong familiarity with NIST 800-53 controls and continuous monitoring practices.
• Proven expertise delivering AWS/SaaS security best practices.
• Hands-on experience with CI/CD pipelines, infrastructure automation, and IaC security practices.
• Knowledge in patch management, hardened baselines, and secure image pipelines.
• Expertise in identity and access management (IAM) design and enforcement in large-scale environments.
• Experience managing SIEM pipelines and leading Tier 1/Tier 2 incident response.
• Strong skills in technical documentation, collaboration, and incident/project management.
• Excellent communication skills and ability to work across technical and operational teams.

Nice-to-Haves:

• Experience integrating security automation into CI/CD and SecOps workflows.
• Prior experience supporting federal audits or 3PAO engagements.
• Knowledge of SaaS security operations, monitoring at scale, and DevSecOps pipelines.
• Experience with Terraform, container security, or compliance evidence automation.

• Competitive base salary: $170,000 – $200,000 USD.
• Eligibility for bonuses, restricted stock units (RSUs), and other performance-based incentives.
• Comprehensive benefits package including medical, dental, and vision coverage.
• Flexible and supportive work environment with remote work options.
• Opportunities for career growth, professional development, and cross-team collaboration.

Jobgether is a Talent Matching Platform that partners with companies worldwide to efficiently connect top talent with the right opportunities through AI-driven job matching.

When you apply, your profile goes through our AI-powered screening process designed to identify top talent efficiently and fairly.
🔍 Our AI evaluates your CV and LinkedIn profile thoroughly, analyzing your skills, experience, and achievements.
📊 It compares your profile to the job’s core requirements and past success factors to determine your match score.
🎯 Based on this analysis, we automatically shortlist the 3 candidates with the highest match to the role.
🧠 When necessary, our human team may perform an additional manual review to ensure no strong profile is missed.

The process is transparent, skills-based, and free of bias — focusing solely on your fit for the role. Once the shortlist is completed, we share it directly with the company offering the position. The final decision and next steps (such as interviews or additional assessments) are handled by their internal hiring team.

Thank you for your interest!

#LI-CL1