Senior FedRAMP Consultant

Stelle nicht auf LinkedIn

🕒 vor 14 Tagen

🇺🇸 Vereinigte Staaten – Remote

💵 $86.000 - $148.000 / Jahr

⏰ Vollzeit

🟠 Senior

💼 Berater

🦅 H1B-Visum-Sponsor

Dieses Unternehmen hat in der Vergangenheit H1B-Visa gesponsert.

Jetzt Bewerben

Ähnliche Remote-Jobs finden

E-Mails für Remote-Jobs erhalten

📊 Überprüfen Sie Ihre Lebenslauf-Bewertung für diese Stelle

Verbessern Sie Ihre Chancen auf ein Vorstellungsgespräch, indem Sie Ihre Lebenslauf-Bewertung vor der Bewerbung überprüfen.

Lebenslauf hochladen

Coalfire

WebsiteLinkedInAlle Stellen

1001 - 5000 Mitarbeiter

Gegründet 2001

🔒 Cybersecurity

📋 Compliance

🏢 Unternehmen

Cybersecurity • Compliance • Enterprise

Coalfire ist ein Anbieter von Cybersecurity-Dienstleistungen, der Unternehmen dabei hilft, ihre Sicherheitsresilienz zu verbessern und die Einhaltung von Vorschriften effizienter zu gestalten. Das Unternehmen bietet durch Experten geführte Dienstleistungen an, darunter bedrohungsorientierte Cybersecurity-Programme, Automatisierung der Compliance, Risikomanagement und Sicherheitsberatung in verschiedenen Branchen wie Finanzdienstleistungen, Gesundheitswesen, Einzelhandel und Technologie. Coalfire ist bekannt für seine Expertise sowohl auf der Hacker- als auch auf der Verteidigerseite, und seine Plattformen sind darauf ausgelegt, die Cyber-Resilienz der Kunden zu stärken, Angriffsflächen zu reduzieren und die Erreichung von Compliance-Zielen wie FedRAMP und HITRUST zu beschleunigen.

Beschreibung

• Provides advice to customers on issues affecting the scope of work in a manner that provides additional value • Leads audits/assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews. • Maintains strong depth of knowledge in one or more cybersecurity frameworks. • Prepare, review and approve assessment reports. • Manage priorities, tasks and hours on projects in conjunction with the project manager to achieve delivery utilization targets. • Ensures quality products and services are delivered on time. • Escalates client and project issues to management in a timely manner to inform and engage the necessary resources to address the issue • Provide mentorship to team members in areas of audit, assessment, technical review and writing. • Interfaces with clients through entire engagement, interacting with all levels of client organizations • Establish and maintain positive collaborative relationships with clients and stakeholders • Continuous professional development in maintaining industry specific certifications. Maintains strong depth of knowledge in the practice area. • Collaborates with project managers, quality management, sales and other delivery team members to drive customer satisfaction and meet project deliverables. • Establishes account relationships and identifies upsell and cross sell opportunities and escalates to sales. • Draft audit programs that sufficiently address both the required objectives of the regulatory body and the complexity of the client environment • Leads interview and inquiry walkthroughs with clients to determine the conformity of environments against stated requirements • Assess security vulnerabilities against the appropriate security frameworks • Pursues and corroborates conclusions derived from inquiry procedures with client while ensuring diligent interview notes are captured • Offline and remote evidence inspection of client provided documentation; appropriately mark artifacts requiring follow-up or additional clarification • Educate and interpret compliance activities for clients • Understands how to apply quality standards and adheres to a minimum benchmark for quality assurance throughout the documentation of each work product or deliverable

🎯 Anforderungen

• Bachelor's degree (four-year college or university) in IT or business, or equivalent combination of education and work experience • Five to ten (5-10) years of experience as a consultant within professional IT services • Must hold one of the following certifications: CISSP, CISA, CISM, CCSP, CFR, CCISO, GCED, GCIH, GSLC • Deep experience with government compliance, including FISMA, FedRAMP, and DoD RMF • Strong knowledge of NIST Special Publications 800-30, 800-37, 800-53, 800-171 • Experience with every step within the delivery of Certification and Accreditation (C&A) / Assessment and Authorization (A&A) packages that have obtained and maintained full authorization to operate (ATO) • Experience with virtualization or cloud technologies • Familiarity with statutes and regulations across multiple industries relevant to IT (e.g. SOX 404, HIPAA, FedRAMP, GLB, Patriot Act) • Familiarity with the Canadian Centre for Cyber Security Protected B framework is a plus • Familiarity with the DOD CMMC process is a plus • Demonstrated knowledge of AWS, Asure and GCP cloud offerings is required • Knowledge of information security related solutions, tools, and utilities • Excellent verbal and written skills • Willing to travel up to 20%

🏖️ Vorteile

• paid parental leave • flexible time off • certification and training reimbursement • digital mental health and wellbeing support membership • comprehensive insurance options