Security Compliance Continuous Monitoring Engineer

JAMIS Software Corporation • Remote (Fort Lauderdale, FL, US) • 3m ago

SECURITY COMPLIANCE CONTINUOUS MONITORING ENGINEER

JAMIS is a growing company that has been supporting government contractors for more than 30 years, specializing in Finance and Accounting software. Government contractors deserve technology solutions that improve how they serve their federal customers, not get in the way. At JAMIS Software, we understand the unique requirements of tracking and managing government contracts – from the RFI, to contract award, to staffing through project delivery, accounting, and reporting – while staying compliant with DCAA, FAR, NIST and other industry requirements. That’s why we built JAMIS Prime ERP, a modern and advanced Cloud ERP solution designed to support government contractors every step of the way. We have offices in San Diego, CA, Boulder, CO, Coral Springs, FL, and Reston, VA.

GENERAL SUMMARY:

JAMIS is currently seeking a dynamic and experienced Security Compliance Continuous Monitoring Engineer who is passionate about cybersecurity, cloud technologies, and problem-solving in SaaS environments. This role is for those who thrive in hands-on, challenging environments, solving complex IT problems daily.

This position is based in Ft. Lauderdale, Florida or remote with East Coast USA preferred. This position will report to the Chief Information Security Officer and assist in supporting the Compliance Department. This is an integral role in our forward-thinking team, working on cutting-edge cloud software, and contributing to meaningful projects. If you're looking for a role where you can make a significant impact, we'd love to have you on our team!

ESSENTIAL DUTIES & RESPONSIBILITIES:

Continuous Monitoring:

Assist in developing and maintaining a robust continuous monitoring strategy in accordance with FedRAMP requirements.
Implement, configure and operate monitoring tools and technologies to ensure comprehensive oversight of cloud environments.
Automate monitoring processes to streamline compliance and reporting efforts.

Security Assessments and Compliance:

Conduct regular security assessments and vulnerability scans to identify and mitigate risks.
Monitor and analyze security alerts and events to detect and respond to potential security incidents.
Ensure compliance with FedRAMP security controls and maintain up-to-date documentation.
Assist with 3PAO security assessments from initiation to closure.

Incident Response:

Assist in maintaining incident response plans and ensure readiness for potential security events.
Lead and coordinate incident response efforts for security breaches and other incidents.
Perform root cause analysis and implement corrective actions to prevent future incidents.

Reporting and Documentation:

Serve as the primary author for updating, maintaining, and submitting the monthly FedRAMP Continuous Monitoring Package: Plan of Actions and Milestones (POA&M), Deviation Request Forms, inventory workbook, and supporting evidence for POA&M closures.
Generate and deliver regular reports on security posture, vulnerabilities, and incidents.
Maintain accurate and comprehensive documentation of security processes, procedures, and compliance efforts.

Collaboration and Support:

Work closely with the Compliance and IT teams to ensure seamless integration of security monitoring and compliance measures.
Provide guidance and support to team members on security best practices and FedRAMP requirements.
Stay updated on the latest security trends, threats, and compliance regulations to ensure the organization remains proactive and compliant.

REQUIREMENTS & QUALIFICATIONS:

Bachelor’s degree in Computer Science, Information Security, or a related field. Equivalent work experience may be considered.
Minimum of 3-5 years of experience in Cybersecurity or Compliance, with a focus on cloud security.
Experience in FedRAMP compliance and continuous monitoring processes.
Hands-on experience with SaaS security tools and technologies such as SIEM, benchmark compliance scanners, vulnerability scanners, etc.
Strong understanding of cloud security principles and best practices.
Proficiency in using monitoring and automation tools.
Strong communication and interpersonal skills, with the ability to work effectively in a team environment.
Ability to manage multiple tasks and projects simultaneously, with a keen attention to detail.

OTHER DESIRED EXPERIENCES:

Relevant certifications such as CISSP, CISM, CEH, AWS Certified Security – Specialty, or similar are highly desirable.

WHAT WE OFFER:

We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying. We offer a culture that fosters career development and values working together as a team. We offer a comprehensive compensation and benefits package; 401(k) with generous employer match; and paid time off.

WHY WORK FOR JAMIS?

JAMIS is about more than just being a place to work with other growth-orientated technically exceptional experts. It’s also a fun place to work. Our family-friendly atmosphere encourages our employee-owners to imagine, create, explore, discover, and do great things together.

Apply