<p>YOUR MISSION</p> <p>Software is the central nervous system for True Anomaly's engineering and product thesis. Software bridges the gap between military objectives, theoretical astrodynamics and the human and autonomous control of spacecraft and ground systems in time and space. True Anomaly is seeking a highly experienced Continuous Monitoring Engineer with cloud certification compliance experience, to contribute to the continuing evolution of our complex spacecraft modeling and simulation software.</p> <p>You do not need to have experience building space ground systems or experience in aerospace. You'll have ownership of challenging, greenfield problems and a chance to fundamentally impact the outcome of future conflict (and the future of the company), all while enjoying world-class benefits including platinum healthcare, flexible work hours/location, highly competitive compensation and a generous stock options package.</p> <p>RESPONSIBILITIES</p> <ul> <li>Develop, implement, and maintain continuous monitoring strategies for FedRAMP-compliant systems. </li><li>Conduct continuous control testing and verification in accordance with FedRAMP requirements. </li><li>Conduct regular security assessments, vulnerability scans, and risk assessments to identify and mitigate potential threats. </li><li>Monitor security controls to ensure compliance with FedRAMP, SOC 2, ISO 27001, and NIST standards. </li><li>Collaborate with cross-functional teams to ensure security measures are integrated into the system development lifecycle. </li><li>Support the maintenance the FedRAMP System Security Plan (SSP) and ensure all necessary documentation is up to date. </li><li>Monitor and analyze security logs from various sources (e.g., SIEMs, IDS/IPS) to identify suspicious activities and respond to security incidents. </li><li>Prepare and present reports on the security status and compliance posture to management and external auditors. </li><li>Assist in the development and maintenance of security policies, procedures, and guidelines. </li><li>Stay updated with the latest security trends, threats, and technology solutions. </li><li>Provide guidance and training to internal stakeholders on compliance and security best practices. </li></ul> <p>QUALIFICATIONS</p> <ul> <li>Bachelor's degree in Computer Science, Information Security, or equivalent professional experience. </li><li>Minimum of 5 years of experience in information security, with a focus on continuous monitoring and compliance. </li><li>Proficiency with security tools and technologies such as SIEM, IDS/IPS, vulnerability scanners, and endpoint protection. </li><li>In-depth knowledge and hands-on experience with FedRAMP, SOC 2, ISO 27001, and NIST frameworks. </li><li>Strong understanding of cloud security principles and best practices. </li><li>Excellent analytical, problem-solving, and communication skills. </li><li>Ability to work independently and collaboratively in a fast-paced environment. </li><li>Relevant certifications such as CISSP, CISM, CISA, or equivalents are highly desirable. </li></ul> <p>PREFERRED SKILLS AND EXPERIENCE</p> <ul> <li>Experience with cloud platforms such as Azure, AWS, or Google Cloud. </li><li>Familiarity with developer security and security operations practices and tools. </li><li>Experience working with a FedRAMP-accredited 3PAO and civilian agencies. </li><li>Previous work with the Department of Defense Impact Levels </li></ul> <p>COMPENSATION</p> <ul> <li>Colorado Base Salary: $110,000-$150,000 </li><li>California Base Salary: $115,000-$160,000 </li><li>Washington D.C. Base Salary: $115,000-$160,000 </li><li>Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave </li></ul> <p>Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, location, and experience.</p> <p>ADDITIONAL REQUIREMENTS</p> <ul> <li>Work Location-Successful candidates will be located near Denver, Colorado Springs, Long Beach, or Washington D.C. While we observe a hybrid work environment, some work must be done on site. </li><li>Work environment-the work environment; temperature, noise level, inside or outside, or other factors that will affect the person's working conditions while performing the job. </li><li>Physical demands-the physical demands of the job, including bending, sitting, lifting and driving. </li></ul> <p>This position will be open until it is successfully filled. To submit your application, please follow the directions below. #LI-Hybrid</p>