Senior Security Engineer- FedRAMP

About Ceribell

Ceribell is a medical technology company focused on transforming the diagnosis and management of patients with serious neurological conditions. The Ceribell System is a novel, point-of-care electroencephalography (“EEG”) platform specifically designed to address the unmet needs of patients in the acute care setting, and is being used in hundreds of community hospitals, large academic facilities and major IDN’s across the country. Our entire team is driven by a shared commitment to transforming the landscape of critical care through our rapid seizure detection technology, come join the movement!

Position Description:

Ceribell, Inc. is looking for a Security Engineer. You will help to design, implement, and maintain security controls within an organization's IT systems to ensure compliance with the Federal Risk and Authorization Management Program (FedRAMP) standards. The Security Engineer serves as a critical resource within the Research and Development (R&D) Org regarding information security technical control implementation, vulnerability and threat management. The Security Engineer assists in the continuous monitoring across cloud and on-premise environments; requiring a deep understanding of security best practices, technical expertise in network and system security, and the ability to interpret and apply FedRAMP regulations effectively.

Responsibilities:

• Security Assessments: 
• Conduct regular security assessments including vulnerability scans and manual control test to ensure compliance with FedRAMP standards
• Identify, define and document system security requirements and recommend solutions.
• Review audit findings with leadership and develop corrective action plans to address any non-compliance issues.
• Control Implementation: 
• Design and implement secure system architectures aligned with NIST SP 800-53, including but not limited to, network segmentation, access controls, data encryption, and system hardening.
• Ensure that security controls are adequately documented, tested, and maintained throughout the cloud service lifecycle.
• Risk Management: 
• Monitor, evaluate and analyze Splunk logs and create security alerts and dashboards to assist with daily operation efforts.
• Monitor and analyze security risks, prioritize vulnerabilities, and develop mitigation strategies to address potential threats.
• Collaboration:
• Collaborate with Engineering and other security team members to manage FedRamp Program continuous monitoring efforts and other FedRAMP projects.
• Incident Response:
• Participate in incident response planning and execution, including identifying and responding to security incidents.
• Continuous Monitoring:
• Aid in the efforts of maintaining and enhancing current documentation, such as the POA&M and Deviation requests, as well aid in the development of strategies to ensure ongoing compliance. 
• Project Management:
• Experience in managing complex technical projects from requirements definition through deployment, identifying schedules, scopes, and implementation plans, including risk mitigation

Requirements/Qualifications

• Bachelor of Science in Computer Science or a related field
• Five or more years’ work experience as a System Security Engineer or related position
• Proven experience in security engineering, risk management, or compliance, preferably with FedRAMP or similar frameworks.
• Proficient in security tools and technologies (i.e. Splunk, IDS, Anti-virus, VMs, etc), cloud computing environments (preferable AWS), and federal security standards.
• Strong analytical and problem-solving skills, with attention to detail.
• Excellent verbal and technical writing skills, with the ability to effectively convey security concepts to technical and non-technical stakeholders.
• Extensive knowledge of operating system and database security
• In-depth knowledge of security protocols and principles

A candidate’s final salary offer will be based on their skills, education, work location and experience, and thus it may differ from the posted range. Compensation may also include bonuses consistent with Ceribell’s corporate compensation plan. Note, the above description is not all-encompassing and Ceribell reserves the right to change or modify job duties and assignments at any time.

Ceribell is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth and related medical conditions), sexual orientation, gender identity or expression, national origin, age, marital status, disability, veteran status or any other characteristic protected by law. Any applicant with a disability who requires an accommodation during the application process should contact talent@ceribell.com to request reasonable accommodation.