Key Facts

Remote From:

New York (USA)

Full time

Expert & Leadership (>10 years)

English

Hard Skills

Other Skills

•
Success Driven
•
Communication
•
Teamwork
•
Personal Integrity
•
Detail Oriented
•
Problem Solving

Roles & Responsibilities

2+ years of Splunk administration experience, including managing data models and CIM mapping.
Hands-on experience with Trend Micro Deep Security or Cloud One Workload Security in auto-scaling cloud environments.
Strong proficiency with AWS security services (GuardDuty, CloudTrail, Config) and automation skills using Python, Bash, or PowerShell.
Experience with IDP (Entra ID) for managing user access and SAML/SSO federation; U.S. Citizenship required for GovCloud environments.

Requirements:

Own and operate the Splunk and Trend Micro security monitoring environments within a FedRAMP-authorized environment.
Maintain standards across daily SecOps operations and JIRA ticketing.
Architect high-fidelity logging by managing Splunk data models and CIM mapping to enable deep root-cause analysis.
Automate routine tasks using scripting (Python, Bash, PowerShell) to reduce manual toil and accelerate audits and investigations.

Claroty

Cybersecurity

About Claroty

Claroty empowers organizations to secure cyber-physical systems across industrial (OT), healthcare (IoMT), and enterprise (IoT) environments: the Extended Internet of Things (XIoT). The company’s unified platform integrates with customers’ existing infrastructure to provide a full range of controls for visibility, risk and vulnerability management, threat detection, and secure remote access. Backed by the world’s largest investment firms and industrial automation vendors, Claroty is deployed by hundreds of organizations at thousands of sites globally. The company is headquartered in New York City and has a presence in Europe, Asia-Pacific, and Latin America.

Company type: Scaleup

Industry: Cybersecurity

Founded: 2018

Company size: 201 - 500

Website LinkedIn See all jobs →

Job description

Description

Security Operations Engineer (FedRAMP) / Remote, US

We’re growing and looking to hire a Security Operations Engineer (FedRAMP) who embodies our core values: People First, Customer Obsession, Strive for Excellence, and Integrity.

Claroty’s Public Sector practice is rapidly expanding to secure the mission-critical systems that our society’s safety and stability depend on. We are looking for mission-driven professionals who want to join a high-growth team dedicated to protecting critical infrastructure and ensuring essential services remain resilient and uninterrupted.

About the Role:

We are seeking a detail-oriented FedRAMP Security Operations Engineer to support our organization's adherence to the Federal Risk and Authorization Management Program (FedRAMP) requirements. In this role, you will be the primary engineer and operator of our security monitoring stack within a FedRAMP-authorized environment. Ideal candidates will be located in or around the DC area. We will also consider candidates on the east coast of the US.

Responsibilities

As a Security Operations Engineer, your impact will be:

Ownership of our Splunk and Trend Micro environments.
Maintain standards across all daily SecOps and JIRA ticketing.
Assist with Entra ID related tasks (user access, SSO integrations, etc).
Architect high-fidelity logging by managing Splunk data models and CIM mapping to ensure deep root-cause analysis.
Leverage scripting to automate routine tasks, allowing the team to pivot quickly from audits to active investigations.
Bridge the gap between technical complexity and business needs by explaining critical issues to non-technical stakeholders.
Support the expansion of our Public Sector practice by securing mission-critical systems and protecting national infrastructure.

Requirements

What you need to succeed in this role:

Minimum of 2+ years of Spunk Administration experience: comfortable managing data models and CIM mapping.
Hands-on experience with Trend Micro Deep Security or Cloud One Workload Security, specifically in auto-scaling cloud environments.
Strong proficiency in AWS (GuardDuty, CloudTrail, Config).
Ability to automate tasks using Python, Bash, or PowerShell to reduce"manual toil" in the SOC recommended.
Hands on experience with IDP (Entra ID) and managing user access and group policies. SAML/SSO federation and implementation experience.
U.S. Citizenship (required for working in GovCloud environments)

Preferred:

Experience in a FedRAMP Moderate or High environment
Splunk Power User or Admin certification

About Claroty

Claroty has redefined cyber-physical systems (CPS) protection with an unrivaled industry-centric platform built to secure mission-critical infrastructure. The Claroty Platform provides the deepest asset visibility and the broadest, built-for-CPS solution set in the market comprising exposure management, network protection, secure access, and threat detection – on-premise with Claroty Continuous Threat Detection (CTD) or in the cloud with Claroty xDome. Backed by award-winning threat research and a breadth of technology alliances, The Claroty Platform enables organizations to effectively reduce CPS risk, with the fastest time-to-value and lower total cost of ownership. Claroty is deployed by hundreds of organizations at thousands of sites globally. The company is headquartered in New York City with U.S. Federal headquarters in Northern Virginia. To learn more, visit clarotygov.us.

A Great Place to Work® certified company, Claroty is headquartered in New York City with employees across the world. The company is widely recognized as the industry leader in CPS protection, with backing from the world’s largest investment firms and industrial automation vendors, named a Leader in The Forrester Wave™: IoT Security Solutions, Q3 2025, recognized by KLAS Research as Best in KLAS for Healthcare IoT Security five years in a row, and ranking on the Forbes Cloud 100 and Deloitte Technology Fast 500 for multiple consecutive years.

Expected compensation for the role is between $160,000 - $190,000. This is a good faith estimate but does not include equity, bonus, or other forms of payment. Pay will be determined by experience level, but those outside the salary band are welcome to apply.

Claroty is an equal-opportunity employer committed to fostering a diverse and inclusive work environment for all. We encourage applications from candidates of ALL diverse backgrounds, and special accommodations are available upon request in all selection phases.

#LI-Remote

Ready to apply?

APPLY

Share ·