Senior Security Engineer

Job description

About the Role

Abnormal AI is seeking a Senior Security Engineer to ensure Abnormal’s FedRAMP environment operates securely, resiliently, and efficiently. This role focuses on security operations engineering, with responsibilities spanning CI/CD pipelines, access management, patch management, change reviews, incident response, and security automation. The engineer will directly own and improve the technical workflows that keep Abnormal Gov systems compliant and resilient at scale. The ideal candidate combines deep cloud and infrastructure security expertise with operational discipline, and is AI-enabled to maximize efficiency and reduce overhead.

What you will do

• Maintain and improve CI/CD pipelines to support secure deployments and infrastructure workflows.
• Manage infrastructure-as-code (IaC) PR and Change Control Board reviews, ensuring changes are tested, approved, and secure before release.
• Perform security impact analyses (SIAs) for system/application changes and provide recommendations.
• Run OS and infrastructure patch cycles; manage hardened images and patch workflows for FedRAMP environments.
• Govern access management, including account provisioning, RBAC module maintenance, and periodic reviews.
• Manage logging and monitoring pipelines; tune SIEM ingestion and alerting for coverage and accuracy.
• Triage and respond to security incidents, from alert investigation through containment, recovery, and after-action reporting.
• Maintain and refine runbooks, SOPs, and documentation to ensure consistent operations and audit readiness.
This is an excerpt. Read the full job description on Abnormal Security careers →