This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

We are seeking a detail-oriented FedRAMP Security Operations Engineer to support our organization's adherence to the Federal Risk and Authorization Management Program (FedRAMP) requirements. In this role, you will be the primary engineer and operator of our security monitoring stack within a FedRAMP-authorized environment.

• Ownership of our Splunk and Trend Micro environments.
• Maintain standards across all daily SecOps and JIRA ticketing.
• Assist with Entra ID related tasks (user access, SSO integrations, etc).
• Architect high-fidelity logging by managing Splunk data models and CIM mapping to ensure deep root-cause analysis.
• Leverage scripting to automate routine tasks, allowing the team to pivot quickly from audits to active investigations.
• Bridge the gap between technical complexity and business needs by explaining critical issues to non-technical stakeholders.
• Support the expansion of our Public Sector practice by securing mission-critical systems and protecting national infrastructure.

Qualifications

• Minimum of 2+ years of Splunk Administration experience: comfortable managing data models and CIM mapping.
• Hands-on experience with Trend Micro Deep Security or Cloud One Workload Security, specifically in auto-scaling cloud environments.
• Strong proficiency in AWS (GuardDuty, CloudTrail, Config).
• Ability to automate tasks using Python, Bash, or PowerShell to reduce "manual toil" in the SOC recommended.
• Hands-on experience with IDP (Entra ID) and managing user access and group policies. SAML/SSO federation and implementation experience.
• U.S. Citizenship (required for working in GovCloud environments).

Requirements

• Experience in a FedRAMP Moderate or High environment preferred.
• Splunk Power User or Admin certification preferred.

Benefits

• Expected compensation for the role is between $160,000 - $190,000.
• This is a good faith estimate but does not include equity, bonus, or other forms of payment.
• Pay will be determined by experience level, but those outside the salary band are welcome to apply.

Company Description

Claroty has redefined cyber-physical systems (CPS) protection with an unrivaled industry-centric platform built to secure mission-critical infrastructure. The Claroty Platform provides the deepest asset visibility and the broadest, built-for-CPS solution set in the market comprising exposure management, network protection, secure access, and threat detection – on-premise with Claroty Continuous Threat Detection (CTD) or in the cloud with Claroty xDome.

• Backed by award-winning threat research and a breadth of technology alliances.
• Claroty is deployed by hundreds of organizations at thousands of sites globally.
• Headquartered in New York City with U.S. Federal headquarters in Northern Virginia.
• A Great Place to Work® certified company.
• Recognized as the industry leader in CPS protection.
• Ranked on the Forbes Cloud 100 and Deloitte Technology Fast 500 for multiple consecutive years.