Intro and job overview: 

The Information Security and Compliance Analyst will be responsible for ensuring the security and compliance of our AWS and Azure cloud platforms. This role requires a deep understanding of government cloud security standards and the ability to design and develop solutions that protect our cloud-based resources.

Responsibilities and Duties: 

• Develop, prepare, maintain, document, and implement information security and compliance policies, protocols, and procedures focused on cloud applications.
• Work on FedRAMP and related compliance frameworks to ensure products, processes, and policies meet the requirements for ongoing certification.
• Ensure effectiveness of information security and privacy controls by monitoring and developing action plans for vulnerability assessments, penetration testing, process, and policy audits.
• Manage information security and privacy controls to protect systems from unauthorized access or control.
• Collaborate with CISO, Engineering, and other teams to integrate security practices into the development lifecycle.
• Respond to and assist with information security task and actions to maintain system security.
• Stay current with emerging security threats and government compliance requirements and provide training and education to teams on latest changes.

Requirements and Qualifications:

• Bachelor's degree in computer science, information security, or a related field.
• 2 to 5 years of experience in information security and compliance.
• Strong knowledge of AWS and Azure security tools and features.
• Familiarity with government cloud security standards, such as FedRAMP, DoD Cloud SRG, etc.
• Experience in designing and developing security solutions for cloud environments.
• Excellent analytical and problem-solving skills
• Strong communication and collaboration abilities.

#LI-REMOTE #LI-CA1