Security Compliance Engineer

Blu Omega is seeking a Security Compliance Engineer for a critical federal analytics program on a remote basis. To be considered for this role, you must hold an Active DoD Secret Clearance (or higher), and the ability to work remotely in a collaborative Agile Scrum environment. #CJ

Role Description:

• In this role, you will be supporting our client's AWS-based analytics environment. You will be responsible for Vulnerability Management and Assessment, as well as Compliance, Coordination and Documentation.

Your responsibilities include:

• Vulnerability Management & Assessment:
• Continuously monitor the analytics environment for vulnerabilities using approved scanning and assessment tools.
• Coordinate with the central security team to prioritize findings, track remediation efforts, and ensure timely resolution in compliance with organizational policies.
• Coordinate with product teams to provide vulnerability remediation and guidance. Research and present mitigation strategies.

• Compliance Coordination & Documentation:
• Maintain, update, and track the status of POA&Ms for all identified vulnerabilities within the analytics landscape.
• Ensure timely and accurate reporting of compliance posture for internal and external audits.
• Drive the implementation and continuous assessment of FedRAMP and NIST 800-53 controls across the analytics environment.
• Prepare evidence and documentation for audit, and support all phases of the compliance lifecycle
  Required Skills/Background:
  • Active DoD Secret Clearance
  • Ability to work remotely in a collaborative, Agile Scrum environment
  • Proficiency in Databricks configuring Private Link, Databricks cluster logging and Serverless egress controls
  • Experience with using Customer Managed Keys AWS Guardrails with Bedrock, GuardDuty, Inspector, Config, Security Hub, Inspector, CloudTrail, and CloudWatch.
  • Strong awareness of IL4 compliance, risk management, and cloud-native security best practices.