RiseMe
LoginSign Up
C2 Labs, Inc. logo
C2 Labs, Inc. Verified
Cybersecurity, Software Development, Compliance Automation

Security Engineer (Cloud Security Engineer) — FedRAMP Control Implementation & Automation Support

Washington, District of Columbia, United StatesRemoteContractPosted 2 months agoVisa sponsorship available

Is this role right for you?

Upload your resume and get a skill-by-skill breakdown — see exactly where you match, where you're close, and what to highlight. Not a mystery percentage.

Get a tailored resume highlighting what this role needs.

Role summary

C2 Labs seeks a Security Engineer with 5+ years of experience in cloud security implementation and operations to support FedRAMP authorization for defense-focused startups on Azure Government. The role involves implementing and tuning security controls, configuring tooling for evidence generation, supporting remediation efforts, and automating reporting. Key skills include hands-on experience with vulnerability management, secure configurations, cloud logging/monitoring, IAM, encryption, incident response, and scripting (PowerShell, Python, bash). Experience with FedRAMP assessments and Azure security tools is preferred. This is a remote, 1099 contract position.

C2 Labs is hiring a Security Engineer (Cloud Security Engineer) to support FedRAMP authorization acceleration and ongoing ConMon for defense-focused startups and companies deploying production workloads on Azure Government. You’ll implement security controls, build repeatable evidence pipelines, and help make ConMon feel like an operational routine—not a monthly fire drill.
What you’ll do

  • Implement and tune cloud security controls (IAM, logging, vulnerability management, configuration baselines, incident readiness).
  • Configure security tooling and integrations to produce repeatable evidence for authorization and ConMon.
  • Support remediation and hardening workstreams, including vulnerability scan remediation support.
  • Help automate evidence exports / reporting inputs where feasible and keep operations sustainable post-authorization.

What we’re looking for

  • 5+ years security engineering experience, including cloud security implementation and operations.
  • Hands-on experience with vulnerability management and secure configuration practices.
  • Working familiarity with cloud logging/monitoring, IAM guardrails, encryption/key management, and incident response readiness.
  • Comfort scripting/automation (PowerShell, Python, bash) and working with APIs/integrations.
  • Ability to communicate technical findings clearly to non-engineers and support audit/assessment discussions.

Nice to have

  • Bachelor’s degree in Computer Science, Engineering, IT, or related field
  • Azure security experience (Defender for Cloud, Sentinel/Log Analytics, Azure Policy, PIM) and/or Azure Government experience.
  • Experience supporting NIST 800-53 / FedRAMP assessments, remediation, or ConMon deliverables.
  • Security+ / AZ-500 / CISSP or similar certifications.
  • Experience integrating evidence into GRC platforms (RegScale preferred).

Engagement details

  • 1099 independent contractor (initial engagement); project-based with potential extension into ConMon operations.
  • Remote-first; occasional on-site support only when customer environment requires it (rare).
  • No clearance required; must be able to pass a standard background check and sign NDA/SOW.
  • Work is typically in Azure Government environments supporting FedRAMP 20X and/or legacy packages.
Ready to apply?
You'll be redirected to C2 Labs, Inc.'s application page.

Similar roles