REQUIREMENTS:
The candidate shall also demonstrate the below knowledge and experience:
- Bachelor’s degree or higher in information security, or a related field or equivalent experience
- At least one advanced cybersecurity certification such as: CISSP, CCSP, CRISC, or other relevant security certifications; multiple are preferred
- At least seven (7) years of information security experience, including cloud security and continuous monitoring activities
- Extensive NIST experience: NIST SP 800-30 rev 1, 800-37 rev 1 or 2, 800-53 rev 5, 800-60 Vol 1 rev 1 & 2 rev 1, and 800-171 rev 3
- Experience with implementing systems in a FedRAMP, FISMA, and SOX compliant environment
- Proven ability to forge consensus and work collaboratively, without positional authority, to influence stakeholder groups in different hierarchical structures
- Demonstrate strong project execution and project management capabilities
- Experience with FedRAMP reporting requirements, including but not limited to, risk assessments, Plan of Action and Milestones (POA&M), and remediation plans
Preferred Knowledge and Experience:
- Experience with government compliance, including OMB requirements, FISMA, FedRAMP, RMF, and CSF
- Experience with cloud environments, architectures, technologies, and services FedRAMP experience and certification
- Advanced knowledge and experience with project management methodology, information security compliance, and implementation of security architectures and related standards
- Knowledge of the laws and regulations governing information security and compliance
- Excellent communication skills (verbal and written), and able to adjust to changing priorities and customer needs
- Strong interpersonal and organizational agility skills. Must be able to deal effectively with all levels of management and staff
- Detail-oriented and committed to excellent customer service