Plus
Включить Plus
Назад
Company hidden
3 часа назад

Senior Product Compliance Analyst (FedRAMP)

Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US/Mexico/Canada +1 еще
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior Product Compliance Analyst (FedRAMP/ISSO): Leading the execution of security compliance programs and federal audit requirements for cloud products with an accent on FedRAMP, Common Criteria, and FIPS 140. Focus on developing security documentation (SSP, SAP, SAR), managing 3PAO assessments, and driving remediation of control deficiencies.

Location: Remote (Americas). Must be able to start without any immigration support for FedRAMP compliance.

Company

hirify.global is a global technology leader focused on automating the discovery, management, and security of IT assets to enable "Everywhere Work".

What you will do

  • Lead the execution of compliance functions including policy development, implementation, and monitoring.
  • Manage FedRAMP, Common Criteria, and FIPS 140 audit requirements and maintain federal certifications.
  • Develop and maintain critical security documentation such as System Security Plans (SSP), Security Assessment Plans (SAP), and Security Assessment Reports (SAR).
  • Coordinate onsite assessments with external stakeholders and 3PAO vendors.
  • Guide a team of auditors by assigning tasks, setting priorities, and enhancing audit methodologies.
  • Advise senior information security leads and authorizing officials on audit-related topics.

Requirements

  • 4+ years of professional experience in a similar role focused on Federal audits (FedRAMP, FIPS 140, IRAP).
  • Deep knowledge of security frameworks: NIST SP 800 Series, FISMA, and NIST RMF.
  • Professional experience in an Information Systems Security Officer (ISSO) capacity.
  • Ability to write technical documentation demonstrating knowledge of Cloud and Security concepts.
  • Experience in project management, leading teams to complete regulated deliverables within budget and timeframes.
  • Must be able to start without any immigration support for FedRAMP compliance.

Nice to have

  • Industry certifications such as CISSP, Security+, CISM, or Cloud Certifications.
  • Experience with POAM (Plan of Action and Milestones).

Culture & Benefits

  • "Everywhere Work" culture that embraces a healthy work-life blend.
  • Focus on professional development and career growth through the "Centered Around You" approach.
  • Inclusive and diverse work environment with global collaboration across 23 nations.
  • Collaborative culture centered on fighting cyber-attacks and championing customer outcomes.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →