Sr FedRAMP Consultant – $120- $150k

Key Responsibilities

• Leadership and Vision Alignment: Provide leadership within the FedRAMP team, aligning team efforts with company vision and driving service execution to meet client and RISCPoint objectives.
• Client Interface and Accountability: Regularly interface with FedRAMP Managers, providing updates and ensuring accountability for client deliverables.
• Security and Compliance Advisory: Advise clients on information security and compliance programs in line with industry standards such as FedRAMP, FISMA, NIST 800 Series, and CMMC.
• Cybersecurity Enhancement: Collaborate with client IT leadership to enhance cybersecurity posture, meeting both organizational and regulatory compliance goals.
• Workshops and Implementation: Conduct client workshops to develop and implement cloud governance models, ensuring favorable evaluations by external parties.
• Risk and Compliance Management: Assist clients with risk and compliance needs, articulating continuous monitoring plans and managing Plans of Action and Milestones (POA&Ms).
• Decision Impact Assessment: Evaluate risks and rewards associated with clients’ cybersecurity decisions.
• Partner Coordination: Collaborate with audit firms, managed service providers, regulators, and other third parties to achieve business outcomes for clients.
• Staff Development: Manage and develop staff consultants, overseeing a portfolio of engagements.
• Resource Optimization: Work with the Public Sector Leadership Team to define skill requirements and optimize staffing within the Public Sector practice.
• Coaching and Feedback: Provide coaching, feedback, and developmental opportunities to staff consultants.

Qualifications
Education:

• Bachelor’s or Master’s degree in Information Security, Computer Science, or a related field, or an equivalent combination of education and work experience.

Experience:

• At least 3 years of experience in security and privacy risk assessment, consulting, or related fields.
• Proven ability to lead and manage projects, maintaining timelines and delivery schedules.
• In-depth knowledge or experience as a 3PAO to achieve FedRAMP Ready or FedRAMP Authorized status for platforms, systems, and applications.
• Expertise in creating and validating FedRAMP documentation.
• Strong familiarity with security frameworks, particularly NIST (FedRAMP, RMF, NIST SP 800-53, FISMA, NIST SP 800-171).
• Proficient understanding of NIST publications, including NIST SP 800-30, 800-37, 800-53, 800-53A, 800-60 Vol 1 & 2, and 800-171.
• Excellent communication skills, capable of explaining technical concepts to diverse audiences, including client executives.
• Awareness of new and emerging IT and cybersecurity technologies, with a solid understanding of security fundamentals, including the CIA triad.
• Familiarity with Authorization Boundary Diagrams (ABDs).
• Technical experience with AWS and/or Azure is advantageous.

Certifications:

• One or more advanced cybersecurity certifications such as CISSP (preferred), CISM, CISA, CCSP, or other relevant certifications.
• Advanced cloud technology certifications are a plus (AWS, Azure, Google Cloud, Cisco Cloud, VMWare, etc.).
• PMP and/or Baltimore Cyber Range Certification is a plus.

After you apply for this position, we will need you to complete a short series of questions to help us expedite your application. Please look out for an email from Jarvis@hirewithjarvis.com and we recommend you add this to your safe sender list, please check your Spam or Junk folders if you don’t receive the email shortly.
 
We may also send reminders via email and SMS to you if you have not completed the questions. Your application may not be processed without your screening response.
 
By applying for this job you consent to Hire with Jarvis to hold personal data and we may use this to contact you, either through SMS or email. You can read our privacy policy at https://hirewithjarvis.com/privacy-policy