ThousandEyes is hiring a
Information Security Engineer

Summary

Join our dynamic team as an Information Security Engineer and play a pivotal role in ensuring compliance with FedRAMP requirements, maintaining high security standards, and driving projects from inception to successful completion.

Requirements

• Education: Bachelor's degree in Computer Science, Information Security, or a related field
• Experience: Minimum of 5-7 years of experience in information security, with a specific focus on FedRAMP compliance
• Proven experience in assessing and mitigating security risks in cloud and on-premises environments
• Specific experience working with cloud technologies such as AWS GovCloud, Google Cloud for Government and/or Azure Government
• Mastery of FedRAMP standards and requirements
• Extensive knowledge of implementing security controls, including encryption, authentication, and access controls
• Familiarity with security assessment and monitoring tools and technologies
• Experience with Kubernetes and Terraform for infrastructure management
• Proficiency in scripting languages (e.g., Python, Bash) for automation

Responsibilities

• Conduct comprehensive security assessments of cloud environments leveraging NIST SP 800 series publications
• Identify vulnerabilities and risks related to FedRAMP compliance
• Provide detailed recommendations to mitigate risks leveraging the RMF and any other resources approved by the Federal Government/Agencies and best practices
• Ensure all systems and services comply with FedRAMP requirements
• Respond to technical inquiries and provide expert advice on FedRAMP compliance
• Collaborate with external auditors during FedRAMP reviews and audits, providing precise and detailed responses
• Implement and oversee technical and administrative security controls based on FedRAMP standards
• Manage data encryption, authentication, authorization, access controls, and data protection leveraging FIPS 199, 140-2, and 140-3
• Configure and maintain security tools and monitoring technologies to ensure continuous FedRAMP compliance
• Provide technical advice to development and operations teams on security best practices and FedRAMP compliance
• Assist in troubleshooting technical issues related to security and compliance
• Stay updated on the latest security threats, compliance trends, and changes in FedRAMP requirements
• Utilize tools like Kubernetes and Terraform to automate and manage security controls
• Develop and maintain scripts to automate security processes and compliance checks
• Ensure that infrastructure is secure by design and adheres to FedRAMP requirements

Benefits

• Quality medical, dental and vision insurance
• 401(k) plan with a Cisco matching contribution
• Short and long-term disability coverage
• Basic life insurance
• Numerous wellbeing offerings
• Up to twelve paid holidays per calendar year, which includes one floating holiday, plus a day off for their birthday
• Up to 20 days of Paid Time Off (PTO) each year
• Paid time away to deal with critical or emergency issues without tapping into their PTO
• Additional paid time to volunteer and give back to the community