FedRAMP Senior Consultant
Remote - Nationwide
Applications have closed
ABOUT THE ROLE
As a Senior Consultant, you will be responsible for supporting and leading client engagements, assigning work, reviewing team contributions, and assuring quality reports are provided. You will lead engagements through the management of standard project execution, client service activities, and staff consultants. In addition to mentoring junior level staff, you will have the opportunity to provide input on methodology development, technical assessment strategy, and engagement planning for A-LIGN’s service offerings as a technical SME.
Senior Consultants are leaders in FISMA/FedRAMP who bring deep knowledge of client engagement and practice management. Using your strong experience with FISMA and FedRAMP and familiarity with the NIST Risk Management Framework (RMF) you will support and lead teams to perform assessments for cloud computing technologies in meeting federal compliance. We have eliminated time reporting, chargeability goals, and sales pressure!
This position is open nationwide - candidates living anywhere in the United States can apply.
REPORTS TO: FISMA/FedRAMP Manager
PAY CLASSIFICATION: Full-Time, Exempt
RESPONSIBILITIES
- Lead assessments from initiation to project closure
- Monitor the progress of engagements and key project activity dates
- Drive working sessions with clients to ensure expectations and direction are aligned and timelines are being met
- Execute security assessments in accordance with NIST SP 800-53, 800-37, 800-171, and other authoritative IT security guidance
- Develop Security Authorization Packages and ensure completeness and compliance with FedRAMP requirements and other authoritative IT security guidance
MINIMUM QUALIFICATIONS
EDUCATION
- Bachelor’s degree in management information systems, information security, computer science, or relevant discipline; or combination of relevant education and work experience
- Master’s degree is a plus
EXPERIENCE
- Minimum 3 years of experience in information security, with strong NIST experience (in order of preference): NIST SP 800-53, FedRAMP, RMF, FISMA, NIST SP 800-171
- Demonstrated knowledge of NIST publications, such as: NIST SP 800-30 rev 1, 800-37 rev 1 or 2, 800-53 rev 4, 800-53A rev 4, 800-60 Vol 1 & 2 rev 1, and 800-171 rev 1
- Experience with government compliance, including FISMA, FedRAMP, RMF, and CSF
- Experience with commercial cloud environments; architectures, technologies, and services
CERTIFICATIONS
- At least one advanced cybersecurity certification such as: CISSP, CISM, CISA, CCSP, CRISC, CAP, CASP, or other relevant security certifications, multiple are preferred
- At least one vendor-specific cloud-related technology certifications such as: AWS, MS Azure, Google Cloud, Cisco Cloud, VMWare, etc. is preferred
- PMP is a plus
SKILLS
- Ability to meet deadlines with a high degree of motivation working in a fast-paced environment
- Ability to lead multiple assessment engagements and train junior staff
- Excellent communication skills to include the ability to explain technical matters to a non-technical audience
- Broad IT background with technical understanding of networks, protocols, security configurations, cryptography, identity and access management, and the systems development life cycle
BENEFITS
- Employer Paid Health, Vision, Dental
- 401 (K) Plan with Employer Matching
- Competitive Bonus Structure
- Employer Paid Life Insurance and Disability Insurance
- Generous Paid Time Off Plan
- Virtual Employment
- Technology Allowance
- Vacation Bonus
- Paid Office Closure December 24-January 1
- Paid Holidays Schedule
- Certification Reimbursement
- Flu Shot Reimbursement
- TSA PreCheck Reimbursement
- AAA Reimbursement
ABOUT A-LIGN
A-LIGN is a technology-enabled security and compliance partner trusted by more than 2,400 global organizations to confidently mitigate cybersecurity risks. We work with small businesses to global enterprises with services spanning across SOC, Penetration Testing, PCI DSS, HITRUST, ISO and privacy compliance. Our proprietary compliance management platform is transforming the compliance experience by enabling an anytime, anywhere approach to audits. For more information, visit www.A-LIGN.com.
Tags: Audits AWS Azure CASP+ CCSP CISA CISM CISSP Cloud Compliance Computer Science CRISC Cryptography FedRAMP FISMA GCP HITRUST IAM NIST PCI DSS Pentesting Privacy Risk management SDLC Security assessment SOC Strategy VMware
Perks/benefits: Competitive pay Flex vacation Health care Insurance Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs