FedRAMP Information System Security Officer / GRC Manager

About The Position

Requirements

• 6+ years in ISSO, GRC, cybersecurity.
• Expertise with FedRAMP, NIST SP 800-53, CMMC.
• Experience with SSPs and security documentation.
• Familiarity with AWS and Azure Gov Cloud.
• U.S. Citizenship.
• Strong documentation and technical writing skills
• Ability to obtain and maintain security clearance

Nice To Haves

• DoD IL4/IL5 or DIB experience.
• Certifications (CISSP, CISM, CISA, CAP, CCSP).
• Experience with vulnerability scanning tools (Nessus, Qualys, ZAP, etc.)
• Background in SaaS or cloud service provider environments

Responsibilities

• Support ongoing FedRAMP authorization including SSP, POA&M, evidence, and 3PAO coordination.
• Manage and oversee NIST SP 800-53 compliance.
• Oversee continuous monitoring, vulnerabilities, incidents.
• Collaborate cross-functionally across various IFS teams.
• Lead future FedRAMP system readiness.
• Serve as a primary liaison with 3PAO during annual assessments.
• Track and remediate findings within FedRAMP SLAs (30/90/180 days).
• Develop and maintain security policies and procedures.
• Support customer security questionnaires and audits.

Benefits

• Flexible paid time off, including sick and holiday
• Medical, dental, & vision insurance
• 401K with Company contribution
• Flexible spending accounts
• Life insurance and disability benefits
• Tuition assistance
• Community involvement and volunteering events