Security Analyst

About Oddball: Oddball is a premier, mission-driven digital services innovator and technology consultancy dedicated to completely transforming how the United States federal sector deploys, manages, and scales enterprise software infrastructure. Built on the firm belief that the most impactful digital products emerge when organizations profoundly understand and value the end-user requirements, Oddball targets complex government operations to streamline everyday public systems. Actively modernizing high-visibility federal frameworks, Oddball combines agile software craftsmanship with systemic engineering standards to deliver resilient, accessible, and highly secure web applications that support millions of citizens and military veterans nationwide.

Position Overview

We are seeking a highly analytical, systems-minded Security Analyst to join our dedicated VA.gov Platform engineering team in a full-time remote capacity within the United States. In this operationally critical security engineering seat, you will serve as a principal domain expert, taking technical responsibility for designing, developing, and improving the Identity and Access Management (IAM) solutions that keep veteran-facing digital platforms securely isolated. Moving beyond traditional administrative tracking, you will partner alongside senior software developers and security subject matter experts to evaluate access trends, configure distributed logging networks, and write rigorous test specifications for validation cycles. This role demands a development-oriented analyst who thrives within cloud-native environments and comfortably translates regulatory compliance targets into durable, automated infrastructure rules.

Key Responsibilities

• IAM Architecture & Engineering: Partner with backend engineers to design, build, and deploy automated Identity and Access Management (IAM) components, governing identity lifecycles, complex role structures, and user access parameters.
• Separation of Duties (SOD) Enforcement: Develop, document, and structuralize clear logical requirements for access authorization paths, establishing automated workflows that strictly isolate sensitive backend access tokens.
• Observability Pipeline Configuration: Build, customize, and maintain high-volume data logging and infrastructure monitoring solutions natively across Splunk, Loki, and AWS CloudWatch.
• SIT/UAT Validation Processing: Create structured use cases, formulate comprehensive test cases, and execute System Integration Testing (SIT) and User Acceptance Testing (UAT) tracks to verify cloud hardening boundaries.
• Security Collaboration Cycle Governance: Lead developer review cycles, providing clear functional and technical guidance to ensure product development squads build platform features in complete alignment with security standards.
• Metric Analysis & Infrastructure Auditing: Evaluate security analytics tables, trace credential trends, and audit system permission configurations to proactively update long-term platform protection frameworks.

Required Skills & Qualifications

• 4+ years of verified professional history running cybersecurity engineering, cloud access control management, or platform security operations pipelines.
• Deep, authoritative functional understanding of core Identity and Access Management (IAM) systems, role-based controls, privilege escalations, and permission lifecycles.
• Hands-on operational experience building, routing, and troubleshooting log ingestion platforms using Splunk, Loki, or AWS CloudWatch tools.
• Proven capacity to analyze complex technical workflows and generate explicit, structured technical specifications for backend engineering squads.
• Outstanding verbal and written communication mechanics, with a demonstrated ability to present risk data smoothly to cross-functional technology stakeholders.
• Location Context: Full-time remote-first operational parameters open exclusively to qualified security professionals permanently residing anywhere within the United States.
• Federal Security Compliance: Lawful authorization to operate inside the United States. Due to rigid federal contract parameters, candidates must hold US Citizenship and possess the capacity to secure and maintain a federal background clearance.

Preferred Strategic Indicators (Nice to Have)

• Prior professional experience operating within a formal software development or backend systems engineering background.
• Practical familiarity navigating federal security frameworks, government authorization parameters, or NIST compliance guidelines.
• Conceptual understanding of continuous integration pipelines or automated infrastructure deployment tools.

What We Offer

• Competitive Compensation Matrix: A highly structured, experience-calibrated annual base salary range of $90,000 – $125,000 USD, tailored to your specialized engineering track and location node.
• The exceptional professional canvas to directly direct, code, and secure the digital platforms supporting millions of military veterans and public stakeholders.
• Profound work-from-home remote parameters offering total geographical independence and an open-door, agile developer workspace.
• A matching 401(k) retirement savings infrastructure paired with flexible paid time off (PTO) allocations and paid public holidays.
• A comprehensive corporate employee benefits package, including elite medical insurance networks, dental protection plans, and structured annual stipends for continuous skill development.