Program Manager – Advisory and Compliance

We are seeking a skilled personnel in Federal compliance and advisory who can lead comprehensive assessments and audits to ensure adherence to FedRAMP High and other relevant cybersecurity standards, developing strategic compliance processes, and managing high-stakes projects. The goal is to maintain and elevate our solio’s status as a compliant, secure, and trusted cybersecurity leader

Responsibilities

• Lead and refine the process of rapid assessments to proactively identify, evaluate, and address risks, gaps, and remediation strategies within information systems.
• Expertly identify and manage FedRAMP Boundary components across multiple customer deployments, ensuring strict adherence to federal compliance requirements.
• Direct and enhance coordination with engineering and other internal teams to demonstrate robust implementation of security compliance controls across technical, management, and operational spectrums.
• Perform detailed audits of security controls to verify and ensure continuous compliance with cloud requirements and governance models.
• Lead the development and continuous improvement of technical materials, operational processes, security policies, and other core documents, ensuring they align with current security standards and practices.
• Manage and analyze compliance metrics to report on performance and recommend enhancements.

• Author comprehensive proposals and manage high-level contract language, demonstrating a deep understanding of compliance and regulatory requirements.
• Direct the development, execution, and follow-up of Plans of Action and Milestones (POA&Ms) to address and mitigate risks effectively.
• Coordinate and lead onsite assessments with external stakeholders, presenting findings and recommendations to both clients and internal executives.
• Conduct interviews with subject matter experts to leverage their knowledge in the development, editing, and revision of critical documentation, including standard operating procedures, system security plans, and policies.
• Utilize advanced technical drawing tools like MS Visio to produce and refine system and security diagrams.
• Document and deliver detailed client reports that outline comprehensive frameworks of policies and procedures, encompassing all legal, physical, and technical controls involved in the organization’s comprehensive risk management strategies.