Security Engineer

• Lead the FedRAMP Moderate/High authorization and compliance program for our SaaS platform, from preparation through Authority to Operate (ATO) and continuous monitoring.
• Define and document the system security boundary, architecture, and control implementation strategy for FedRAMP and government cloud environments.
• Prepare, maintain, and update all security documentation including the System Security Plan (SSP), policies, procedures, Plan of Actions and Milestones (POA&M), and continuous monitoring evidence.
• Coordinate and manage all interactions with 3PAOs, government sponsors, and FedRAMP PMO.
• Ensure timely remediation of findings, execution of continuous monitoring activities, and reporting according to federal requirements.
• Build and maintain the company’s CMMC Level 2+ compliance program, ensuring company-wide adherence to NIST SP 800-171 controls and related frameworks.
• Develop and enforce security policies and best practices across information security, DevSecOps, vulnerability management, incident response, and access control.
• Partner with Product, Engineering, and Operations to embed security into SDLC and cloud deployment processes.
• Provide regular risk and compliance briefings to company leadership and external stakeholders.
• Lead security training, awareness, and role-based education initiatives for internal teams.
• Represent Procurement Sciences in customer security assessments, compliance reviews, and during agency or partner audits.

Director of Security & Compliance (FedRAMP/CMMC)

Associate Analyst, Securities and Derivatives

Security Consultant

Security Engineer

Security Architect – Advanced

Security Engineer