RemoteLeaf Logo
Log in Sign up

Senior FedRAMP Consultant

3 weeks ago
United States
Full-time
Senior
Penetration Tester
Cybersecurity
AWS Azure GCP HIPAA
Apply Now
Coalfire

Coalfire

Coalfire is a cybersecurity advisor that helps organizations avert threats, reduce risk, and turn security into a competitive advantage, fueling their success.

Internet Software & Services
251-1K
Founded 2001
$9M raised
View All Jobs 12

Description

  • Provide advice to clients on issues affecting the scope of work and add value throughout engagements.
  • Lead audits and assessments, including audit plan preparation, documentation and evidence review, procedure evaluation, and client interviews.
  • Prepare, review, and approve assessment reports and other work products.
  • Manage project priorities, tasks, and hours with the project manager to meet delivery and utilization targets.
  • Escalate client and project issues promptly to management and coordinate needed resources.
  • Mentor team members in audit, assessment, technical review, and writing.
  • Interface with clients throughout the full engagement and build positive relationships with clients and stakeholders.
  • Collaborate with project managers, quality management, sales, and delivery teams to meet deliverables and drive customer satisfaction.
  • Draft audit programs that address regulatory objectives and the complexity of the client environment.
  • Lead walkthroughs, evaluate security vulnerabilities against relevant frameworks, and document findings from inquiry and evidence inspection.

Requirements

  • Bachelor’s degree in IT, business, or an equivalent combination of education and work experience.
  • 5–10 years of experience as a consultant in professional IT services.
  • Must hold one of the following certifications: CISSP, CISA, CISM, CCSP, CFR, CCISO, GCED, GCIH, or GSLC.
  • Deep experience with government compliance, including FISMA, FedRAMP, and DoD RMF.
  • Strong knowledge of NIST Special Publications 800-30, 800-37, 800-53, and 800-171.
  • Experience delivering Certification and Accreditation (C&A) / Assessment and Authorization (A&A) packages through full authorization to operate (ATO).
  • Experience with virtualization or cloud technologies.
  • Familiarity with statutes and regulations across multiple industries relevant to IT, such as SOX 404, HIPAA, FedRAMP, GLB, and the Patriot Act.
  • Knowledge of AWS, Azure, and GCP cloud offerings is required.
  • Excellent verbal and written communication skills.
  • Willingness to travel up to 20%.
  • Familiarity with the Canadian Centre for Cyber Security Protected B framework is a plus.
  • Familiarity with the DOD CMMC process is a plus.
  • Cloud security-focused certifications such as AWS, Azure, or CCSK are a plus.

Benefits

  • Salary range of $86,000–$148,000 per year.
  • Eligibility for annual incentive, commission, and/or recognition programs.
  • Flexible work model with remote and office options.
  • Paid parental leave.
  • Flexible time off.
  • Certification and training reimbursement.
  • Digital mental health and wellbeing support membership.
  • Comprehensive insurance options.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

DYOPATH

Director of Cybersecurity

DYOPATH 251-1K Internet Software & Services

DYOPATH is hiring a Director, Cybersecurity to lead enterprise security strategy, advise clients and executives, and build scalable cybersecurity services that support both risk management and business growth.

Mexico Full-time Executive Head of Sales Penetration Tester
Cybersecurity HIPAA
4 hours, 12 minutes ago
Accenture

CMMC Assessment Lead

Accenture 100K+ Professional Services

Accenture Federal Services is hiring a CMMC Assessment Lead to guide cybersecurity maturity assessments for federal clients and help them achieve and maintain CMMC 2.0 certification readiness in support of DoD mission requirements.

United States Full-time Senior Penetration Tester Program Manager
$126k-$243k
4 hours, 27 minutes ago
DYOPATH

vCISO

DYOPATH 251-1K Internet Software & Services

DYOPATH is seeking a remote Security Consultant (vCISO) to serve as a trusted advisor to client executives, lead security strategy and governance, and help build resilient cybersecurity programs.

Anywhere Full-time Lead Penetration Tester Program Manager
$120k-$140k
Cybersecurity
4 hours, 27 minutes ago
GuidePoint Security

Principal Threat Intelligence Consultant

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a Principal GRIT Consultant to help deliver threat intelligence and related research services to clients while contributing technical leadership to its Research & Intelligence Team.

United States Full-time Senior Penetration Tester
AWS Azure Bash Cybersecurity Go PowerShell Python SIEM
2 days, 4 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers