IT Security Engineer ensuring secure data exchange in the insurance industry. Collaborating on technical security tasks and developing security systems with a focus on efficient data management.
About the role
- Staff Product Security Engineer driving security innovation while ensuring compliance with federal standards at DataRobot. Leading security engineering, automation, and customer engagement for federal customers.
Responsibilities
- Lead Federal Security: Serve as a primary technical lead for the DataRobot Federal Group, driving the acquisition and maintenance of Authority to Operate (ATO) at FedRAMP High and DoD IL5 levels.
- Compliance Engineering: Translate complex federal controls (NIST 800-53) into actionable engineering requirements for commercial developers.
- Audit & Policy Management: Write and maintain security policies (SSPs) and procedures.
- Security Engineering & Automation: Automate Everything: Develop custom automation to manage security tooling and implement "Secure-by-Design" processes in the CI/CD pipeline using Python or Go.
- Container Security: Identify, design, and implement controls to safeguard our containerized production environments.
- Customer Engagement: Act as the external face of DataRobot Security. Work directly with customers' security teams to resolve concerns regarding CVE exposure and architecture.
Requirements
- Must be a United States Citizen residing in the United States.
- 8+ years of experience working in Information Security, with significant time spent in Product Security or AppSec roles.
- Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Systems, or a related field (or equivalent experience).
- Deep understanding of the FedRAMP authorization process, NIST 800-53, and DoD Cloud Computing Security Requirements Guide (SRG).
- Fluent in writing code using Python or Go to build security automation.
- Must have a deep understanding of Linux containers (internals, security isolation).
- Familiarity with Kubernetes orchestration is strongly preferred.
- Hands-on experience with common security tools such as Semgrep, Trivy, and Burp Suite.
Benefits
- Medical, Dental & Vision Insurance
- Flexible Time Off Program
- Paid Holidays
- Paid Parental Leave
- Global Employee Assistance Program (EAP) and more!
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cybersecurity Engineer involved in maintaining cybersecurity throughout product life cycles. Working with a skilled team to enhance security measures in critical environments.
Cybersecurity Engineer I at Travelers enhancing network security for cloud - based solutions and zero trust architectures. Collaborating on security controls and protocols across systems.
Network Security Engineer handling L2/L3 configurations, firewall management, and operational documentation. Supporting infrastructure - related projects at Arcatem by Artemys with a focus on team collaboration.
Safety & Security Specialist ensuring safety and security at Ohio’s Hospice facilities. Responding to emergencies, patrolling grounds, and communicating with law enforcement as needed.
Member of Technical Staff specializing in Cloud Security at Wind River. Implementing DevSecOps technologies and securing cloud - native environments.
Cybersecurity Consultant strengthening the Incident Response Team at Conscia. Responsibilities include onboarding, incident management, and reporting for critical security incidents.
Join Cloudflare as a Security Third Party Risk Management Specialist. Execute vendor reviews and improve Cloudflare’s Third Party Risk Program in a rapidly scaling security organization.
Cyber Security Advisor safeguarding client digital environments by addressing cyber risks at Centorrino Technologies in Melbourne and Perth. Ensuring compliance with regulations and effective incident response.
Manage revenue growth across the UK National Security community for AI solutions at Mind Foundry. Lead sales lifecycle from opportunity qualification through contract negotiation and account expansion.