ServiceNowRemote
Staff Security and Compliance Engineer, Federal - Moveworks
United States of America
Full Time
3 weeks ago
No H1B
Key skills
PythonAIClaudeAWSTerraformKubernetesEKSServiceNowCI/CDRisk Management
About this role
Moveworks, now part of ServiceNow, is a leading AI Assistant platform empowering the workforce. The Staff Security and Compliance Engineer will focus on building automation for FedRAMP Continuous Monitoring and develop cloud-based solutions to enhance compliance and security across various tools.
Responsibilities:
- Build and maintain automation for FedRAMP Continuous Monitoring (ConMon) and reporting
- Develop cloud-based solutions using AWS, Terraform, and Python to collect and track Key Security Indicators (KSIs) across tools like Tenable, Wiz, and AWS Security Hub
- Work with DevOps and Engineering to embed compliance into the CI/CD pipeline, automating checks before deployment
- Leverage AI and scripting to reduce manual effort in recurring security tasks such as user access reviews, audit preparation, evidence collection and ConMon reporting
- Contribute to data-driven compliance innovations, including automated POAM/OSCAL/eMass generation and KSI feeds
- Participate in FedRAMP working groups and community initiatives
Requirements:
- U.S. Citizenship
- Secret Clearance (or eligibility to obtain)
- 5+ years of experience in software development or scripting, with a focus on automation of Governance, Risk Management and Compliance (GRC)
- Proficiency in Python, AWS services, Kubernetes (EKS), Linux, and Terraform
- Experience with vibe-coding with Claude Code
- Experience with one or more common compliance programs, Federal compliance program experience preferred
- A Bachelor's degree in Computer Science or a related field — or equivalent experience/certifications
- A collaborative mindset with the ability to thrive in a fast-paced, growth-focused environment
- Federal compliance program experience preferred