Implement, maintain and enhance integrated GRC frameworks for FedRAMP and DoD authorizations, with a focus on continuous monitoring activities
Play a key role in the execution of ongoing significant change and annual assessment activities
Collaborate and communicate GRC requirements to a wide range of internal and external stakeholders
Own and maintain the Plan of Action and Milestone deliverable, keeping relevant stakeholders informed on risks to the system
Monitor relevant laws, regulations, and industry standards to understand impacts on authorized services and adjust processes or technical controls as needed

Requirements

5+ years of experience supporting FedRAMP and DoD compliance programs
U.S. citizenship is required; an active U.S. Secret or Top Secret security clearance is preferred
Experience with processes and tools required for automating continuous monitoring activities
Expertise in assessing SaaS, PaaS, and IaaS cloud offerings with a clear understanding of shared control responsibilities
Experience assessing containerized applications in Kubernetes and understanding security best practices for AI/ML technologies.

Benefits

Various health plans
Time off plans for vacation and sick time
Parental leave options
Retirement options
Education reimbursement
In-office perks, and more!

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

GRC frameworksFedRAMP complianceDoD compliancecontinuous monitoringSaaSPaaSIaaSKubernetesAI/ML security best practicesautomating monitoring activities

Soft Skills

collaborationcommunicationstakeholder managementrisk management

Certifications

U.S. Secret security clearanceU.S. Top Secret security clearance