Platform Security & RMF Lead

Red Cell Partners LLC

Job Overview

Location

Remote, USA

Job Type

Full-time

Full Job Description

📋 Description

• Define and execute the ATO pathway for DEFCON AI’s government-facing systems, including responsibility allocation between government and contractor teams.
• Author and maintain RMF documentation (SSP, SAP, SCTM, ConMon) in strict compliance with DoDI 8510.01 and NIST 800-53 controls.
• Coordinate directly with eMASS and Authorizing Officials to facilitate system assessment, authorization, and reauthorization activities.
• Lead continuous monitoring and reauthorization efforts across the full system lifecycle to ensure ongoing compliance and operational authorization.
• Define security requirements for cross-domain data flows operating at IL-5 and IL-6 classification levels and tactical edge environments.
• Evaluate and recommend DoD-approved cross-domain solutions to enable secure data exchange between classified and unclassified networks.
• Ensure classification-aware data segmentation is enforceable, auditable, and aligned with policy requirements including NOFORN, REL_TO, and ORCON.
• Review system architecture to validate compliant handling of classified data flows and prevent unauthorized information leakage.
• Support secure platform operations across NIPR, SIPR, and higher classification enclaves with consistent security posture.
• Define authorization approaches (inheritance vs. standalone ATOs) across multiple enclaves to optimize compliance efficiency without architectural rework.
• Maintain alignment with evolving joint and service-level security requirements from DoD components and service branches.
• Serve as the authoritative internal resource for all DoD security and RMF-related questions across engineering and government stakeholder teams.
• Advise on container security, RBAC, service mesh security, PKI/CAC integration, and secrets management practices for government systems.
• Define security expectations for vulnerability management, container hardening, and automated scanning without owning the implementation pipeline.
• Evaluate new technical capabilities for security and authorization impacts prior to production deployment to prevent compliance risks.
• Ensure RMF artifacts and compliance evidence are embedded into the delivery process rather than created as post-facto artifacts.
• Enable engineering teams to proactively engage security early in design decisions to build compliance into the product lifecycle.
• Maintain a credible, well-managed, and audit-ready security posture that instills confidence in government stakeholders.
• Operate in a fully remote, results-based environment with flexibility to manage your workday.
• Travel up to 25% as required for business needs, including government site visits and authorization meetings.

🎯 Requirements

• 10+ years of information assurance or security engineering experience with increasing seniority
• 5+ years of hands-on ownership of RMF / ATO packages for DoD production systems, including one full authorization cycle (categorization → controls → implementation → assessment → authorization → ConMon)
• Deep familiarity with DoD security frameworks, RMF processes, and NIST 800-53 controls
• Proven ability to operate in complex, multi-enclave or classified environments
• US Citizenship Required
• Active Secret Clearance
• Willing to travel up to 25% for business needs

🏖️ Benefits

• Competitive salary, bonus, and equity package ($175,000–$215,000)
• 100% employer-paid comprehensive health insurance (medical, dental, vision) for employee and family
• Unlimited PTO with manager approval
• 14 weeks of fully-paid parental leave
• Optional 401K, FSA, and equity incentives
• Mental health benefits through Tara Mind
• Cost-effective GLP-1 solutions available through Crux

Skills & Technologies

TypeScript

Senior

Remote

$175k-215k

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

Red Cell Partners LLC

Visit Website

About Red Cell Partners LLC

Washington, D.C.-based venture foundry that conceives, capitalizes and scales early-stage companies in healthcare and defense technology. Founded in 2021 by veterans and former government leaders, the firm combines capital investment with in-house operational expertise, recruiting, regulatory guidance and strategic partnerships to accelerate product-market fit. Its portfolio spans AI diagnostics, cybersecurity, medical devices and national security software, aiming to close capability gaps for both commercial and government customers.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.