Senior Security Compliance Analyst - Public Sector - Information Security

Elastic Elastic · Enterprise · United States · InfoSec

This role leads DoD Impact Level 5 (IL5) compliance and security accreditation initiatives, acting as the primary security and compliance lead for implementing, maintaining, and auditing security controls across cloud and hybrid environments supporting sensitive government workloads. It requires deep experience with DoD cloud security requirements, RMF, NIST 800-53, FedRAMP High baselines, and continuous monitoring practices, partnering with various internal teams to ensure regulatory and contractual security obligations are met.

What you'd actually do

  1. Leading US public sector audit and certification process (DoD IL 5) and owning continuous monitoring requirements to maintain compliance.
  2. Acting as a trusted advisor to internal teams, translating complex compliance requirements into clear, actionable guidance.
  3. Striving for a next-generation audit experience through intelligent data, automation, and continuous metrics.

Skills

Required

  • Experience leading public sector compliance audits and certification processes in a cloud native company, working with DoD IL5 and/or FedRAMP High.
  • A high degree of autonomy, combining the ability to prioritize and coordinate with a strong attention to detail.
  • Creative, relevant, and practical mindset driven by risk-based decision making.

Nice to have

  • compliance-as-code
  • experience with compliance-as-code or have done all the above at a growing SaaS company!

What the JD emphasized

  • DoD IL5
  • RMF
  • NIST 800-53
  • FedRAMP High
  • continuous monitoring