Security Engineer

DataStaff, Inc is seeking a Security Engineer for a direct-hire opportunity located in Charlotte, NC. *The position is located in Charlotte, NC or Woburn, MA (Hybrid) or Remote Job Description Seeking a Security Engineer with strong technical depth in cloud security, automation, and FedRAMP compliance. Reporting to the VP of Compliance and working closely with the GRC Manager, this role bridges the gap between governance requirements and hands‑on security engineering. The ideal candidate thrives at the intersection of compliance and technology — translating FedRAMP and NIST frameworks into tangible, automated security controls. You will be responsible for implementing, maintaining, and continuously improving the security posture of systems through a blend of engineering, analysis, and collaboration. Key Responsibilities Security Control Engineering Design, implement, and maintain FedRAMP Moderate/High security controls across the cloud infrastructure (AWS preferred). Translate NIST 800‑53 control requirements into actionable, measurable technical safeguards. Develop and enforce secure configuration baselines, system hardening standards, and identity/access control policies. Automate evidence collection and continuous monitoring activities through scripts, IaC, or compliance platforms. Vulnerability & Application Security Management Lead technical implementation of DAST/SAST tools to support code and application security scanning. Evaluate vulnerabilities, determine risk ownership and remediation strategies, and partner with engineering teams to drive timely resolution. Establish vulnerability management workflows integrated with CI/CD pipelines and ticketing systems (e.g., Jira). Analyze and report vulnerability trends, root causes, and metrics to drive continuous improvement. FedRAMP and Continuous Monitoring Support Serve as a technical SME supporting FedRAMP authorization and ongoing compliance activities. Maintain and update technical portions of System Security Plans (SSP), ConMon packages, and POA&Ms. Partner with the GRC Manager to ensure all implemented controls are accurately documented, tested, and evidenced. Participate in audits, 3PAO assessments, and security reviews, providing detailed technical context and remediation plans. Security Operations & Incident Response Support continuous security monitoring through SIEM, vulnerability scanning, and intrusion detection platforms. Contribute to incident response efforts, performing root cause analysis and ensuring corrective actions meet FedRAMP standards. Develop and maintain technical runbooks and procedures for security incident handling. Work closely with the GRC Manager to align technical control implementation with compliance frameworks. Partner with DevOps and Infrastructure teams to embed security automation into cloud operations and CI/CD workflows. Provide technical input during risk assessments, policy updates, and control testing activities. Required Qualifications 4+ years of experience in security engineering, DevSecOps, or cloud infrastructure security. Proven experience implementing or maintaining environments under FedRAMP, FISMA, or equivalent frameworks. Strong working knowledge of NIST 800‑53. Hands‑on experience with AWS, Terraform, and security automation tools. Proficiency with application and vulnerability scanning tools (e.g., Burp Suite, Snyk, Tenable, Qualys). Strong scripting or automation experience (Python, Bash, or PowerShell). Excellent technical writing and documentation skills to support audit and compliance evidence. Preferred Qualifications Certifications such as CISSP, CCSP, AWS Security Specialty, or FedRAMP Practitioner. Experience in integrating security tools with CI/CD systems (GitHub Actions, GitLab, or Jenkins). Familiarity with compliance automation platforms (Drata, Tugboat Logic, or Vanta). Experience with SIEM, SOAR, or CSPM solutions (Splunk, Panther, Prisma Cloud). This opportunity is available as a W2 position. Employment Details Seniority level: Mid‑Senior level Employment type: Contract Job function: Information Technology Industries: Staffing and Recruiting Benefits: Medical insurance, Vision insurance, 401(k) #J-18808-Ljbffr