FedRAMP Compliance Analyst

4 days ago

Apply Now

Receive Emails with Similar Jobs

PTC

WebsiteLinkedInAll Job Openings

Product Development Solutions • PLM - Product Lifecycle Management • CAD- Computer Aided Design • Internet of Things • Application Lifecycle Management

5001 - 10000

Description

• Independently lead walkthroughs and manage projects, ensuring adherence to timelines and budgets. • Maintain documentation and perform continuous monitoring (Identify vulnerabilities and risks) of compliance with FedRAMP standards. • Assist with authorization packages, System Security Plans, and preparing for FedRAMP P-ATO assessments. • Collaborate on continuous monitoring (ConMon) program, including internal and external reporting on vulnerabilities. • Engage with stakeholders to manage Plans of Actions and Milestones (POA&Ms) and document deviation requests. • Provide recommendations to mitigate risks leveraging approved methods and best practices. • Coordinate with engineering teams to document security compliance control implementations. • Collaborate with engineering teams on FedRAMP compliant cloud architecture. • Collaborate with external auditors during FedRAMP reviews and audits, providing responses. • Configure and maintain security tools and monitoring technologies for continuous FedRAMP compliance. • Stay updated on security threats, compliance trends, and changes in FedRAMP requirements.

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field. • Minimum of 4-5 years of experience in information security, focusing on FedRAMP compliance. • Strong governance, risk and compliance experience with cloud data security (NIST SP 800 Series, FedRAMP and DISA) • Experience with technical documentation related to FIPS 199, NIST SP 800-53 REV 5, continuous monitoring, and POA&M management. • Experience with Wiz, Tenable Nessus, or similar CNAPP solutions. • Experience with logging and alerting solutions such as SumoLogic. • Specific experience working with cloud technologies such as AWS GovCloud, or Salesforce gov cloud or Azure Government. • Knowledge in AWS core services and Kubernetes. • Experience with scripting language such as Python.

Benefits

• Medical, dental and vision insurance • Paid time off and sick leave policies • Tuition reimbursement • 401(k) contributions and employer match • Flexible spending accounts • Life insurance • Disability coverage • Generous commuter subsidy