Fedramp Assessor

About SecureIT: SecureIT provides full-spectrum cybersecurity and IT risk services to commercial organizations, government contractors, and the Federal Government. We perform independent assessments and audits, design and implement security solutions, and provide ongoing support to help our clients protect their information systems from cybersecurity threats.

Why you'll like it here:

• Work with diverse and technically challenging IT environments

• Thrive in a people-focused company culture

• Collaborate closely with SecureIT executives in managing relationships with clients and growing the security practice

• Bring positive energy to the company and make a meaningful impact on our success

Our organization is a culture of committed, smart, fun individuals, and we're always looking for more to join the team. We're a small organization, but we do big things that successfully impact the portfolio of commercial and federal clients that we serve. The experiences and skills that you currently possess, and the new ones that you will acquire as part of our team, will be invaluable as we continue to grow our business through a diverse array of projects. We are firmly committed to our employees, and we offer an excellent benefits package to ensure that you are well taken care of at SecureIT.

What you'll be doing:

• Working with clients in the role of Independent Assessor

• Executing test procedures in accordance with FedRAMP and NIST 800-53A R4

• Interviewing key technical personnel, and reviewing system and process documentation

• Ensuring that required controls are effectively implemented, and operating as intended

• Developing Security Assessment Plans (SAP) and Security Assessment Reports (SAR)

• Authoring corrective actions on how to remediate noted deficiencies

• Serving as SecureIT's primary POC and relationship manager for FedRAMP 3PAO clients

What you'll bring to the table:

• Experience with advising Cloud Service Providers, preferably working for a 3PAO

• 2+ years of Assessor experience at a professional services firm

• Experience with Federal compliance initiatives, to include FedRAMP and FISMA

• Experience with NIST 800-37, NIST 800-53 and NIST 800-53a

• Ability to work independently and lead less complex control assessments

• Knowledge of virtualization and cloud technologies

• Industry certifications such as CISA, CISSP and CSIRC

• Ability to clearly document assessment results

• A client-first attitude, and an ability to communicate effectively