remote
Security/RMF Engineer - GigaTech
Software Engineer
Mid‑level Security/RMF Engineer responsible for implementing and maintaining the Risk Management Framework, ensuring compliance, and safeguarding healthcare IT systems through continuous monitoring, vulnerability assessment, and incident response.
About the role
Key Responsibilities
- Develop, implement, and maintain the organization’s Risk Management Framework (RMF) to ensure compliance with federal and industry standards.
- Conduct risk assessments, vulnerability scans, and security controls testing across cloud and on‑premises environments.
- Collaborate with cross‑functional teams to remediate findings, document mitigations, and produce security assessment reports.
- Lead incident response activities, including investigation, containment, and post‑incident analysis.
- Maintain up‑to‑date security policies, procedures, and documentation in alignment with regulatory requirements.
Requirements
- Bachelor’s degree in Computer Science, Information Security, or related field.
- 3–5 years of experience in security engineering, RMF implementation, or risk management.
- Strong knowledge of NIST SP 800‑53, NIST SP 800‑37, and related frameworks.
- Hands‑on experience with vulnerability management tools (e.g., Nessus, Qualys) and SIEM platforms.
- Excellent communication skills and ability to translate technical findings to non‑technical stakeholders.
Skills
awsdatadogservicenowsplunksiem