Logo for Abnormal Security

Senior Security Engineer, FedRAMP

Role overview

Qualifications

  • 5 - 7 years in security engineering or infrastructure operations within federal or regulated cloud environments.
  • Strong familiarity with NIST 800-53 controls and continuous monitoring practices.
  • Proven delivery of AWS/SaaS security best practices.
  • Hands-on expertise with CI/CD, infrastructure automation, and IaC security practices.

Responsibilities

  • Maintain and improve CI/CD pipelines to support secure deployments and infrastructure workflows.
  • Manage infrastructure-as-code (IaC) PR and Change Control Board reviews, ensuring changes are tested, approved, and secure before release.
  • Perform security impact analyses (SIAs) for system/application changes and provide recommendations.
  • Triage and respond to security incidents, from alert investigation through containment, recovery, and after-action reporting.

About the company

Abnormal Security logo

Abnormal Security

Cybersecurity

Abnormal provides total protection against the widest range of attacks including phishing, malware, ransomware, social engineering, executive impersonation, supply chain compromise, internal account compromise, spam, and graymail.

Company details

Company typeScaleup
IndustryCybersecurity
Company size501 - 1000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

About the Role

Abnormal AI is seeking a Senior Security Engineer to ensure Abnormal’s FedRAMP environment operates securely, resiliently, and efficiently. This role focuses on security operations engineering, with responsibilities spanning CI/CD pipelines, access management, patch management, change reviews, incident response, and security automation. The engineer will directly own and improve the technical workflows that keep Abnormal Gov systems compliant and resilient at scale. The ideal candidate combines deep cloud and infrastructure security expertise with operational discipline, and is AI-enabled to maximize efficiency and reduce overhead.

What you will do

  • Maintain and improve CI/CD pipelines to support secure deployments and infrastructure workflows.
  • Manage infrastructure-as-code (IaC) PR and Change Control Board reviews, ensuring changes are tested, approved, and secure before release.
  • Perform security impact analyses (SIAs) for system/application changes and provide recommendations.
  • Run OS and infrastructure patch cycles; manage hardened images and patch workflows for FedRAMP environments.
  • Govern access management, including account provisioning, RBAC module maintenance, and periodic reviews.
  • Manage logging and monitoring pipelines; tune SIEM ingestion and alerting for coverage and accuracy.
  • Triage and respond to security incidents, from alert investigation through containment, recovery, and after-action reporting.
  • Maintain and refine runbooks, SOPs, and documentation to ensure consistent operations and audit readiness.
  • Collaborate with DevInfra, FedOps, Product, and Compliance teams to embed secure practices into operations and development.

Must Haves 

  • 5 - 7 years in security engineering or infrastructure operations within federal or regulated cloud environments. 
  • Strong familiarity with NIST 800-53 controls and continuous monitoring practices.
  • Proven delivery of AWS/SaaS security best practices.
  • Hands-on expertise with CI/CD, infrastructure automation, and IaC security practices.
  • Experience in patch management, hardened baselines, and secure image pipelines.
  • Strong knowledge of identity and access management (IAM) design and enforcement in large-scale environments.
  • Proven ability to manage SIEM pipelines and lead Tier 1/ Tier 2 incident response.
  • Strong technical documentation, collaboration, and incident/project management skills.

Nice to Have 

  • Experience integrating security automation into CI/CD pipelines and SecOps workflows.
  • Prior experience supporting federal audits or 3PAO engagements.
  • Knowledge of SaaS security operations and monitoring at scale.
  • Experience driving automation in security operations, compliance tracking, and evidence management.
  • Knowledge of SaaS security operations and modern cloud environments; exposure to DevSecOps pipelines or security reviews for Terraform/containers.


#LI-JT1

Actual compensation will be determined based on several non-discriminatory factors including skills, experience, qualifications, and geographic location.
In addition to base salary, this role may be eligible for bonus or incentive compensation, equity, and a comprehensive benefits package.

Base salary range:
$153,000β€”$220,000 USD

AI and our hiring process
Abnormal AI uses AI-assisted tools to help our recruiting team prepare for candidate interviews. These tools analyze resume content and role requirements to suggest interview questions and identify areas for the interviewer to explore. They do not make hiring decisions or screen candidates automatically. Every decision about a candidacy is made by a person.


Abnormal AI is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by law. For our EEO policy statement please click here. If you would like more information on your EEO rights under the law, please click here.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
Β·

Security Engineer Related jobs

Other jobs at Abnormal Security

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.