FEDRAMP ANALYST- Remote

Overview

Remote
$50 - $54
Contract - W2
Contract - 12 Month(s)

Skills

FEDRAMP
CAP
CISSP
CISA
CISM
NESSUS
QUALYS
SIEM

Job Details

Job Summary:
We are seeking a knowledgeable and detail-oriented FedRAMP Analyst to support our organization's efforts in achieving and maintaining compliance with the Federal Risk and Authorization Management Program (FedRAMP). The ideal candidate will have experience in cybersecurity risk management, regulatory compliance, and federal government security frameworks. This role involves close collaboration with internal stakeholders, cloud service providers, and third-party assessors to ensure continuous FedRAMP compliance and support security authorization processes.
Key Responsibilities:
Support the development, implementation, and maintenance of FedRAMP security packages (SSP, POA&M, SAP, SAR).
Coordinate with internal IT, legal, and compliance teams to gather required documentation and evidence for FedRAMP audits and assessments.
Liaise with 3PAOs (Third Party Assessment Organizations), federal agencies, and the FedRAMP PMO during the authorization process.
Monitor security controls and support the continuous monitoring (ConMon) activities required by FedRAMP.
Analyze security vulnerabilities and support remediation efforts to ensure timely updates to POA&Ms.
Track FedRAMP authorization status and updates, ensuring compliance with evolving requirements.
Conduct internal audits and gap assessments against FedRAMP Moderate/High baselines and NIST SP 800-53 controls.
Prepare and deliver compliance reports, audit findings, and risk analyses to stakeholders and leadership.
Provide guidance and training to technical teams on FedRAMP policies, procedures, and documentation.
Qualifications:
Required:
Bachelor s degree in Cybersecurity, Information Systems, Computer Science, or a related field.
3+ years of experience in a cybersecurity, compliance, or risk management role.
Solid understanding of FedRAMP, FISMA, NIST SP 800-53, and NIST RMF.
Experience preparing and maintaining security documentation (e.g., SSPs, POA&Ms).
Familiarity with cloud platforms (e.g., AWS, Azure, Google Cloud) and their FedRAMP offerings.
Excellent written and verbal communication skills.

Preferred:
FedRAMP or NIST-related certification (e.g., CAP, CISSP, CISA, CISM, or FedRAMP-specific training).
Experience working with 3PAOs or participating in FedRAMP audits.
Knowledge of vulnerability scanning tools (e.g., Nessus, Qualys) and SIEM solutions.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Vision Square