FedRAMP Security Consultant

🔥 1 minute ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

RSI Security

WebsiteLinkedInAll Job Openings

51 - 200 employees

🔒 Cybersecurity

📋 Compliance

🔐 Security

Cybersecurity • Compliance • Security

RSI Security is a leading cybersecurity and compliance provider based in the United States. The company specializes in helping organizations navigate complex compliance standards such as PCI DSS, HIPAA, GDPR, and more. They offer a wide range of services including cybersecurity risk assessments, virtual CISO consulting, penetration testing, cloud security, and incident response. RSI Security caters to various industries, including government, healthcare, finance, and technology, ensuring robust security frameworks and compliance management. As a trusted partner, RSI Security is dedicated to minimizing risk and safeguarding data for companies and institutions worldwide.

📋 Description

• Support cloud service providers in preparing for FedRAMP authorization through readiness assessments, gap analysis, and development of required security documentation • Evaluate cloud environments, interpret control requirements, and provide clear, actionable recommendations to support authorization readiness • Lead FedRAMP Readiness & Advisory Engagements with clients • Perform Gap Assessments & Control Analysis against FedRAMP requirements • Develop Core FedRAMP Artifacts such as System Security Plans (SSP), POA&Ms • Interpret NIST Controls within cloud environments (AWS, Azure, GCP) • Advise on security architecture and control design to align with FedRAMP expectations

🎯 Requirements

• 5+ years in cybersecurity, compliance, or risk assessment roles • At least 2–3 years working with NIST-based frameworks (e.g., NIST SP 800-53, RMF, FedRAMP, FISMA, or similar) • Hands-on experience supporting FedRAMP or NIST SP 800-53-based initiatives, including readiness assessments, gap analyses, or documentation development (SSP, POA&M, or similar) • Strong ability to interpret control intent and apply it to real-world cloud environments • Familiarity with AWS, Azure, or GCP environments, including identity and access management, logging/monitoring, network architecture, and secure configuration practices • Proven ability to lead discussions with technical and non-technical stakeholders, ask effective questions, and drive engagements forward

🏖️ Benefits

• Remote audit model; occasional onsite support if required