FedRamp Product Security Engineer

Join to apply for the FedRamp Product Security Engineer role at Red Hat

The Red Hat Product Security Compliance team seeks a knowledgeable and proactive Product Security Engineer to achieve our security and compliance objectives. This team is growing, especially as it relates to complex standards like FedRAMP and digital sovereignty laws worldwide. The ideal candidate will have an excellent ability to solve problems using in-depth technical understanding of information systems and computing solutions, and will work well within a team.

Red Hat embraces a remote working culture, promoting work flexibility. You can work from home, and many team members are remote.

1. Manage security and compliance of systems related to Digital Sovereign Commercial and FedRAMP environments.
2. Lead technical discussions across multi-functional engineering teams and third-party auditors.
3. Support continuous improvement through automation and process maturation.
4. Collaborate on the downstream integration of open-source projects and develop Red Hat-specific capabilities.
5. Research and analyze new tools, technologies, and services for containerized environments.
6. Promote security and compliance internally and externally, including with partners and the open-source community.

1. Experience supporting systems through FedRAMP or RMF authorization processes.
2. Must be a US Citizen for FedRAMP compliance.
3. Knowledge of cloud security practices and technologies.
4. Experience securing and supporting compliance in hybrid-cloud environments.
5. Experience with Kubernetes, OpenShift, or similar technologies.
6. Proficiency in programming, scripting, and markup languages such as Go, Python, XML, and automation tools.
7. Proven ability to work effectively remotely and independently.
8. Ability to analyze security controls, assess risks, and design control measures aligned with FedRAMP standards.
9. Strong communication skills for technical and non-technical audiences.
10. Familiarity with cloud environments like AWS and Azure, and security tools such as vulnerability management.
11. Relevant certifications like CISSP, CISM, CCSP, or CISA are advantageous.
12. Experience with open-source software and an interest in AI are pluses.

The salary range for this position is $105,860.00 - $169,340.00, based on qualifications. The offer may include bonuses, commissions, or equity, depending on location and experience.