Remote Program Manager

closed
Logo of Torq

Torq

πŸ“Remote - United States

Job highlights

Summary

Join a dynamic team at Torq as an experienced FedRamp Program Manager to lead and manage the full lifecycle of the FedRAMP authorization process, develop and maintain a comprehensive project plan, coordinate with external and internal teams, and ensure compliance efforts align with current standards.

Requirements

  • Experience / knowledge of NIST (esp. 800-53)
  • Established relationships with the PMO and with DISA
  • Familiarity with DoD and DISA requirements
  • Previously completed FedRAMP cycle
  • Well-versed in government RMF (Risk Management Framework)
  • Excellent project management and leadership skills
  • Strong leadership skills
  • Team Player

Responsibilities

  • Lead and manage the full lifecycle of the FedRAMP authorization process following NIST 800-53 Rev 5, from initial readiness assessments through continuous monitoring
  • Develop and maintain a comprehensive FedRAMP project plan, outlining tasks, timelines, resources, and dependencies
  • Coordinate with external and internal teams (engineering, security, operations, and legal) to ensure all FedRAMP requirements are understood, documented, and met
  • Liaise with Third Party Assessment Organizations (3PAOs) and federal agencies to facilitate assessments, reviews, and authorizations
  • Conduct gap analyses and readiness assessments to identify and mitigate risks related to FedRAMP compliance
  • Maintain up-to-date knowledge of FedRAMP requirements, guidelines, and changes to ensure compliance efforts align with current standards
  • Prepare and present status reports, risk assessments, and compliance documentation to senior management and stakeholders
  • Oversee the implementation of security controls and policies required for FedRAMP authorization and continuous monitoring
  • Ensure timely delivery of all required documentation, artifacts, and evidence to support the FedRAMP authorization process
  • Lead and facilitate meetings, workshops, and training sessions to promote a culture of compliance and security across the organization
This job is filled or no longer available