FedRAMP Security Analyst

Role: Security Analyst

Location: 100% Remote

Type Contract (9-12 Months)

The Role

Reporting to the Director of Privacy & Information Security, you will provide hands-on operational support for FedRAMP continuous monitoring (ConMon) and day-to-day security operations within the FedRAMP boundary. This is an execution-focused role — not program management or strategy.

What You'll Do

• FedRAMP ConMon & Vulnerability Management: Track and manage POA&Ms, monitor vulnerabilities (daily reporting provided by the client's FedRAMP partner), coordinate remediation with Engineering, and ensure SLA adherence.
• Security Operations: Triage and investigate alerts in Microsoft Sentinel and Defender, support incident investigation and documentation, and escalate high-risk findings.
• Cross-Team Coordination: Partner with the client's India-based security analysts and DevOps team to maintain consistent monitoring coverage.

Required Qualifications

• Hands-on experience supporting FedRAMP or NIST 800-53 environments
• Strong vulnerability management and security operations background
• Familiarity with ConMon processes and POA&M tracking

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

• Azure / Microsoft cloud experience; Sentinel and Defender preferred
• ServiceNow familiarity a plus
• Ability to work independently and coordinate across global teams

Schedule & Logistics

• ~80 hours/month with flexible scheduling
• Required standing meetings Monday and Wednesday mornings ET (earliest 5:30 AM PT / 8:30 AM ET); occasional flexibility for overlap with India-based teammates