Consultant, FedRAMP Assessment

4 weeks ago
Full-time
Junior
Operations
Coalfire

Coalfire

Coalfire is a cybersecurity advisor that helps organizations avert threats, reduce risk, and turn security into a competitive advantage, fueling their success.

Internet Software & Services
251-1K
Founded 2001
$9M raised

Description

  • Work with a team of assessors to support federal compliance assessments such as FedRAMP, NIST 800-171, and FISMA.
  • Plan assessments and draft audit observations that address regulatory objectives and client environment complexity.
  • Lead client interviews and walkthroughs to evaluate conformity with stated security requirements.
  • Assess security vulnerabilities and review client environments against applicable security frameworks.
  • Review and corroborate evidence, artifacts, and client documentation during offline and remote inspections.
  • Prepare, review, and refine assessment planning materials and final reports.
  • Interpret compliance activities for clients and provide guidance on security posture improvements.
  • Manage priorities and deliverables to meet utilization targets, timelines, and Coalfire quality standards.
  • Collaborate with project managers, quality management, and delivery team members to support customer satisfaction.
  • Identify potential upsell and cross-sell opportunities and escalate them to leadership when appropriate.

Requirements

  • 2-3 years of experience in the IT industry with strong familiarity with NIST Special Publications 800-37 Rev. 2, 800-53 Rev. 5, and 800-53A Rev. 5.
  • Bachelor’s degree in IT, business, or a related field, or an equivalent combination of education and work experience.
  • Technical understanding of NIST 800-53 Rev. 5 control families, including AT, CA, CM, CP, IR, MA, MP, PE, PL, PS, RA, SA, and SI.
  • Ability to lead testing sessions for assigned controls and develop logical testing approaches to validate control implementations.
  • Ability to independently research technical topics and support evidence/artifact collection for assessments.
  • Ability to read and interpret control families, firewall rulesets, and network/boundary/data flow diagrams.
  • Strong written and verbal communication skills, including the ability to explain technical matters to non-technical audiences.
  • Strong consulting skills, high attention to detail, and the ability to manage time, meet deadlines, and facilitate meetings.
  • Must hold one of the listed certifications, such as CISA, CISSP or Associate, CySA+, GCIH, GSNA, GCIA, CSSLP, or CASP+.
  • Ability to travel up to 20% and work in a remote environment.
  • Preferred: Experience with security frameworks and regulatory requirements such as SOC 2, ISO, COBIT, HIPAA/HITECH, HITRUST, or PCI.
  • Preferred: Experience with cloud environments such as AWS, Microsoft Azure, or Google Cloud Platform.
  • Preferred: Experience reviewing Nessus output and familiarity with networking components and UNIX/Microsoft operating systems.

Benefits

  • $64,000 - $112,000 annual salary range.
  • Eligibility for annual incentive, commission, and/or recognition programs.
  • Flexible work model with remote and office options.
  • Paid parental leave.
  • Flexible time off.
  • Certification and training reimbursement.
  • Digital mental health and wellbeing support membership.
  • Comprehensive insurance options.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

ERP SAP Consultants FI/CO-Netherlands

Infosys 100K+ Internet Software & Services

Infosys Consulting is hiring an SAP Consultant FI/CO to lead S/4HANA finance and controlling implementations for large organizations within its ERP & Platforms practice.

SAP
16 hours, 41 minutes ago

Public Health Consultant

BME Strategies 1-10 Professional Services

BME Strategies is hiring a remote Public Health Consultant to coordinate and support multi-project public health consulting work across program design, grants, coalition efforts, and client-facing deliverables.

17 hours, 26 minutes ago

SAP MM Consultant

Weekday 11-50 Construction & Engineering

Weekday is hiring a remote SAP MM Consultant in India to design, configure, and implement SAP Materials Management solutions that improve procurement and inventory processes for business stakeholders.

SAP ABAP
17 hours, 26 minutes ago

Environmental Field Subconsultant (Phase I ESA / PCA) (TN, AL, LA)

Blew & Associates, P.A. 51-250 Professional Services

A national commercial real estate due diligence firm is seeking subcontractor Field Professionals to conduct Phase I Environmental Site Assessments and Property Condition Assessments on a project basis across the United States.

1 day, 16 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers