FedRAMP Senior Assessor
About The Position
Baker Tilly Cybersecurity Consulting is a leader in providing IT security and compliance services to middle market companies and organizations. Our team is made up of cybersecurity specialists who come from business, IT, and consulting backgrounds to assist our clients with a diverse set of needs, including network and web application penetration testing, data security regulation compliance, disaster recovery planning, and strategic technology planning. We’re looking for FedRAMP and GovRAMP Advisors and Assessors to join our team to consult and assess cloud service providers for FedRAMP, FedRAMP 20X, GovRAMP, FISMA, NIST, CMMC, or other related projects. Come join us and be part of a dynamic and growing team
Requirements
- Bachelor's degree or equivalent experience required; major in cybersecurity, information technology, or information systems preferred
- Minimum of three years of experience in information security auditing, demonstrating a steady growth of skills & responsibility required
- Working knowledge of NIST 800-53 controls, FedRAMP requirements, and NIST risk management and security standards
- Working experience of information security as it relates to audit and compliance
- CISA, CISM, CISSP, GCED, GSLC, CCSP, CompTIA Cloud+, CASP+ certification or comparable IT security accreditation required
- Excellent verbal and written communication skills
- Proven commitment to providing exceptional client service (internal and external)
- Ability to collaborate and work effectively across functions/departments/teams while building trusted relationships and positively influencing others
- Strong attention to detail and accuracy.
- Strong analytical and creative problem-solving skills
- Effective time management and organizational skills, proven ability to prioritize while simultaneously managing numerous projects/processes often under tight deadlines
- Ability to travel as needed, approximately 25%
Responsibilities
- Be client-centric
- Lead advisory and assessment engagements
- Conduct gap analyses
- Write system security plans, policies, procedures, and other required documents
- Evaluate and assess evidentiary artifacts and conclude whether or not they are sufficient to meet control
- Document control test results based on FedRAMP-defined test case procedures
- Assist in completing the Security Assessment Plan, Security Assessment Report, and Risk Exposure Table
- Conduct stakeholder interviews, security boundary discussions, control walkthroughs with clients to verify control implementation status
- Possess strong knowledge of FedRAMP, GovRAMP, and NIST
- Critical thinking, analytical, writing, and basic editing skills with the ability to write to FedRAMP’s level of detail
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
5,001-10,000 employees
