Note: The job is a remote job and is open to candidates in USA. Iceberg is partnering with one of the world's fastest-growing AI companies to hire a Security Compliance Engineer to help build and scale security compliance. The role focuses on automating compliance processes and integrating security into engineering workflows, particularly in relation to FedRAMP 20x audits.
Responsibilities
- Build and automate compliance processes across engineering teams
- Drive FedRAMP and GovRAMP compliance initiatives with a strong focus on FedRAMP 20x
- Build compliance-as-code capabilities that reduce manual audit effort
- Integrate security controls into CI/CD pipelines and engineering workflows
- Automate evidence collection, monitoring and reporting using APIs, scripting and modern security tooling
- Partner with Engineering, Product, Legal and Customer Success to support regulated enterprise customers
- Support customer security reviews, security questionnaires and audit activities
- Improve security posture through scalable engineering rather than manual governance
Skills
- Proven hands-on experience delivering or supporting FedRAMP 20x audits
- Experience working within a SaaS or cloud-native software company
- Strong security engineering background with experience embedding compliance into engineering workflows
- Experience building compliance automation and reducing manual audit overhead
- Experience integrating security controls into CI/CD pipelines
- Strong understanding of cloud security and modern engineering practices
- Comfortable writing scripts or building tooling (Python or similar preferred)
- Experience partnering directly with software engineering teams
- GovRAMP
- NIST 800-53
- CMMC
- OPA/Rego or Policy-as-Code
- AWS, Azure or GCP security
- AI or ML platform security
- Customer trust, enterprise security questionnaires and regulated customer environments
Company Overview