Security/Compliance Engineer

Excentium, Inc. is a Service-Disabled Veteran owned small business that provides Cyber Security Engineering and IT services to government and commercial organizations. They are seeking a Security/Compliance Engineer to lead security compliance and ATO activities for a major government healthcare organization's ServiceNow implementation, ensuring compliance with federal security standards.

Responsibilities:

• Lead Authority to Operate (ATO) package development and submission
• Coordinate FedRAMP compliance activities with ServiceNow as the CSP
• Implement and document customer responsibility matrix controls
• Conduct security assessments and vulnerability remediation
• Ensure compliance with federal security policies and NIST 800-53 controls
• Monitor and respond to security events and incidents
• Develop and maintain security documentation including SSP, POA&M, and contingency plans
• Coordinate with government ISSO and Security Operations Center

Requirements:

• 7+ years of information security experience, with 3+ years in federal environments
• FedRAMP and federal ATO experience required
• Experience with cloud security (AWS, Azure) and SaaS security models
• Knowledge of NIST 800-53, FISMA, and federal security requirements
• Bachelor's degree in computer science or related field
• CISSP, CISM, CISA or equivalent certification required