FedRamp Product Security Engineer

FedRamp Product Security Engineer page is loaded

At Red Hat, we connect an innovative community of customers, partners, and contributors to deliver an open source stack of trusted, high-performing solutions. We offer cloud, Linux, middleware, storage, and virtualization technologies, together with award-winning global customer support, consulting, and implementation services. Red Hat is a rapidly growing company supporting more than 90% of Fortune 500 companies.

The Red Hat Product Security Compliance team is seeking a knowledgeable and proactive Product Security Engineer to achieve our security and compliance objectives.The team is growing and we have a big vision particularly as it relates to increasingly complex compliance standards like FedRAMP and burgeoning digital sovereignty laws worldwide. In this role, you should have an excellent ability to solve problems using your in-depth technical understanding of information systems and computing solutions. Be a team player who works and coordinates well with the team.

Red Hat embraces a remote working culture and promotes work flexibility. This team, and many of the people you would work with, are remote and you would be welcome to work from home as well.

Responsibilities:

• Responsible for the security and compliance of systems related to our Digital Sovereign Commercial and FedRAMP environments.

• Comfortable leading technical discussions across multi-functional engineering teams and third party auditors.

• Support the continuous improvement of the Red Hat environments through automation and maturation of processes.

• Support the downstream integration of open-sourced projects; collaborate to develop and implement Red Hat specific capabilities from the upstream.

• Research and analyze new tools, technologies and services for technical suitability within a containerized environment.

• Serve as an evangelist of security and compliance both inside Red Hat and externally, with partners or within the open-source community.

Requirements:

• Experience supporting systems obtain Authorization through the FedRAMP or RMF process is essential.

• Must be a US Citizen for Fedramp

• Knowledge of cloud security practices and technologies is essential.

• Experience securing and supporting compliance efforts in hybrid-cloud environments.

• Experience working with Kubernetes, OpenShift, or similar technologies.

• Experience with programming, scripting and markup languages, such as Go, Python, and XML, as well as automation tools.

• Proven track record of being effective when working remotely and in a self-directed capacity.

• Ability to analyze security controls, assess risks, and design control measures in alignment with FedRAMP standards.

• Strong communication skills, capable of presenting technical compliance concepts to both technical and non-technical audiences.

• Familiarity with cloud service provider environments (e.g., AWS, Azure) and relevant security tools (e.g.,vulnerability management).

• Relevant certifications, such as CISSP, CISM, CCSP, or CISA, are a plus.

• Experience with open-source software is a plus.

• Interest in AI is also a plus.

• US-citizenship.

Pay Transparency

Red Hat determines compensation based on several factors including but not limited to job location, experience, applicable skills and training, external market value, and internal pay equity. Annual salary is one component of Red Hat’s compensation package. This position may also be eligible for bonus, commission, and/or equity. For positions with Remote-US locations, the actual salary range for the position may differ based on location but will be commensurate with job duties and relevant work experience.

About Red Hat

Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver high-performing Linux, cloud, container, and Kubernetes technologies. Spread across 40+ countries, our associates work flexibly across work environments, from in-office, to office-flex, to fully remote, depending on the requirements of their role. Red Hatters are encouraged to bring their best ideas, no matter their title or tenure. We're a leader in open source because of our open and inclusive environment. We hire creative, passionate people ready to contribute their ideas, help solve complex problems, and make an impact.

Benefits
● Comprehensive medical, dental, and vision coverage
● Flexible Spending Account - healthcare and dependent care
● Health Savings Account - high deductible medical plan
● Retirement 401(k) with employer match
● Paid time off and holidays
● Paid parental leave plans for all new parents
● Leave benefits including disability, paid family medical leave, and paid military leave
● Additional benefits including employee stock purchase plan, family planning reimbursement, tuition reimbursement, transportation expense account, employee assistance program, and more!

Note: These benefits are only applicable to full time, permanent associates at Red Hat located in the United States.

Inclusion at Red Hat
Red Hat’s culture is built on the open source principles of transparency, collaboration, and inclusion, where the best ideas can come from anywhere and anyone. When this is realized, it empowers people from different backgrounds, perspectives, and experiences to come together to share ideas, challenge the status quo, and drive innovation. Our aspiration is that everyone experiences this culture with equal opportunity and access, and that all voices are not only heard but also celebrated. We hope you will join our celebration, and we welcome and encourage applicants from all the beautiful dimensions that compose our global village.

Equal Opportunity Policy (EEO)
Red Hat is proud to be an equal opportunity workplace and an affirmative action employer. We review applications for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, ancestry, citizenship, age, veteran status, genetic information, physical or mental disability, medical condition, marital status, or any other basis prohibited by law.

We’re the world’s leading provider of enterprise open source solutions—including Linux, cloud, container, and Kubernetes. We deliver hardened solutions that make it easier for enterprises to work across platforms and environments, from the core datacenter to the network edge.

At Red Hat, our commitment to open source extends beyond technology into virtually everything we do. We collaborate and share ideas, create inclusive communities, and welcome diverse perspectives from all Red Hatters, no matter their role. It’s what makes us who we are.

Some of the most knowledgeable and passionate people in the technology industry work here. Whether we’re building software, championing our products, or training new associates, we’re collaborating openly to make a difference in the world of open source and beyond.