Federal Security Compliance, Lead
United States
Fortra
At Fortra, we’re creating a simpler, stronger, and more straightforward future for cybersecurity by offering a portfolio of integrated and scalable security solutions. Don’t let the doom and gloom of cyberthreats get to you. We’re here to help.Problem Solvers. Proactive Protectors. Relentless Allies.
Ready to join us? Let's get started.
Fortra is seeking a highly motivated industry expert to join our Security Compliance Team. As part of the team, you will own and manage the strategic commitments of our new Federal Government Compliance Program. This role facilitates our ability to grow and scale our internal processes to meet the FedRAMP and CMMC regulatory expectations of Fortra products and services in the US Public Sector Market. You should be an experienced industry professional who has the ability to understand IT and compliance processes, evaluate opportunities, and oversee ongoing compliance audit commitments for diverse groups of internal and external stakeholders.
WHAT YOU'LL DO
- Become the main point of contact and subject matter expert for all Federal Government Compliance Program related activities.
- Meet with federal agencies and federally regulated businesses (customers) to determine FedRAMP or CMMC compliance requirements.
- Assist in formulating Fortra’s federal security compliance posture and advise customers and internal stakeholders.
- Work with product and brand management to build compliance roadmaps and prepare business cases.
- Initiate, oversee, and track all self-assessments, self-attestations, certification audits, and authorization/accreditation processes performed by the Security Compliance Team.
- Other duties as assigned
QUALIFICATIONS
- Previous FedRAMP background or work experience with one or more of the following entities: audit firm, consulting firm, government agency, DoD, or federally regulated cloud service provider (CSP).
- Domain expertise in FedRAMP (NIST SP 800-53 Rev 5) and a working domain knowledge in CMMC (NIST SP 800-171).
- SSP/SAP/POA&M development experience
- Can provide business insight into the self-attestation, self-assessment, certification, and authorization / accreditation processes.
- Can demonstrate a current understanding of reciprocity between FedRAMP and CMMC, and other non-federal government compliance certifications.
- This position may also perform work that the U.S. government has specified can only be performed by a U.S. citizen on U.S. soil.
- Minimum of a Bachelor's degree in IT, business, compliance, risk management or equivalent combination of education and work experience
- Preferred industry certifications, such as: CAP, CCSK, CISA, CISM, CISSP, CCSP, CRISC, CCISO, or Amazon Web Services (AWS)/Google Cloud Platform (GCP)/Microsoft Azure specific certifications
DESIRABLE EXPERIENCE
- Experience with security and compliance programs such as: SOC2, HITRUST, PCI, ISO27001-27771
- Experience security software or managed services industries
- Experience working with cloud-based technologies AWS (preferred), AZURE, or GCP)
About Us
This is Fortra, where we're making a difference by offering a best-in-class solutions portfolio, proactively adapting to the ever-evolving cybersecurity threat landscape, and putting people first. Fortra is a cybersecurity company like no other. We're known for our innovative software and services, world-class support, and the commitment and satisfaction of employees across the globe. Our approach is different, and we’re proud of that. For more information about what it's like to work for us, and learn about our culture, benefits, or perks, connect with us on LinkedIn.
We Are Fortra
Our people make us great. Our employees are a resilient and diverse group of global problem solvers, proactive protectors, and relentless allies, empowered to show up every day authentically, ready to fight the good fight with Fortra. Here at Fortra, we believe we're stronger when we're all stronger. That's why we're committed to supporting and empowering our employees through a host of offerings, including competitive benefits and salaries, personal and professional development opportunities, flexibility, and much more!
Visit our website to learn more about why employees choose to work for Fortra. Remember to check out our Glassdoor to learn what our employees are saying and connect with us on LinkedIn.
As an EEO/Affirmative Action Employer, all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, veteran or disability status.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits AWS Azure CCSP CISA CISM CISSP Cloud CMMC Compliance CRISC DoD FedRAMP GCP Government agency HITRUST ISO 27001 NIST NIST 800-53 POA&M Risk management SAP SOC 2 System Security Plan
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Operations Analyst jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open SaaS-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs