FedRAMP Consulting Manager- $140- $170k

Key Responsibilities

• Team Leadership and Vision Alignment: Guide the Public Sector team, aligning their efforts with the company vision, and lead service execution to support both client and RISCPoint goals.
• Executive Interface and Accountability: Regularly update the Executive Leadership Team and take accountability for the performance of the Public Sector delivery team.
• Compliance Program Management: Direct information security and broader compliance initiatives, adhering to standards such as FedRAMP, FISMA, NIST 800 Series, and CMMC.
• Cybersecurity Enhancement: Serve as a subject matter expert, working closely with client IT leadership to enhance their cybersecurity posture and meet regulatory compliance requirements.
• Workshops and Implementation: Conduct workshops and meetings with clients to develop and implement cloud governance models, ensuring favorable evaluations by external parties.
• Risk and Compliance Advisory: Provide advice on risk and compliance needs, articulate continuous monitoring plans, and manage Plans of Action and Milestones (POA&Ms) in line with cybersecurity standards.
• Risk Assessment: Evaluate the potential risks and rewards of clients’ cybersecurity decisions.
• Collaboration with Partners: Build consensus and drive business outcomes by collaborating with audit firms, managed service providers, regulators, and other third parties.
• Team Development: Manage and develop the delivery team, overseeing direct reports and a portfolio of engagements.
• Resource Optimization: Work with the RISCPoint Leadership Team to define necessary skills and staffing levels within the Public Sector practice, optimizing the resource mix.
• Mentorship and Development: Provide coaching, feedback, and developmental opportunities to direct and indirect reports within the team.

Qualifications
Education:

• Bachelor’s or Master’s degree in Information Security, Computer Science, or a related field, or an equivalent combination of education and experience.

Experience:

• Minimum of 8 years in security and privacy risk assessment, consulting, or related roles.
• Proven leadership and project management skills in leading and managing projects and campaigns.
• In-depth knowledge or experience as a 3PAO to achieve FedRAMP Ready or FedRAMP Authorized status for platforms, systems, and applications.
• Expertise in creating and validating FedRAMP documentation.
• Strong familiarity with security frameworks, particularly NIST (FedRAMP, RMF, NIST SP 800-53, FISMA, NIST SP 800-171).
• Proficient understanding of NIST publications, including NIST SP 800-30, 800-37, 800-53, 800-53A, 800-60 Vol 1 & 2, and 800-171.
• Excellent communication skills, adept at explaining technical concepts to diverse audiences, including client executives.
• Proven ability to provide security and privacy recommendations aligned with business objectives.
• Awareness of new and emerging IT and cybersecurity technologies, with a solid understanding of security fundamentals, including the CIA triad.
• Familiarity with Authorization Boundary Diagrams (ABDs).
• Technical experience with AWS and/or Azure is advantageous.

Certifications:

• At least one advanced cybersecurity certification such as CISSP (preferred), CISM, CISA, CCSP, or other relevant certifications; multiple certifications are preferred.
• Advanced cloud technology certifications are a plus (AWS, Azure, Google Cloud, Cisco Cloud, VMWare, etc.).
• PMP and/or Baltimore Cyber Range Certification is a plus.

After you apply for this position, we will need you to complete a short series of questions to help us expedite your application. Please look out for an email from Jarvis@hirewithjarvis.com and we recommend you add this to your safe sender list, please check your Spam or Junk folders if you don’t receive the email shortly.
 
We may also send reminders via email and SMS to you if you have not completed the questions. Your application may not be processed without your screening response.
 
By applying for this job you consent to Hire with Jarvis to hold personal data and we may use this to contact you, either through SMS or email. You can read our privacy policy at https://hirewithjarvis.com/privacy-policy