Senior IT Auditor – FISMA/FedRAMP in United States at Jobgether

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior IT Auditor – FISMA/FedRAMP in United States.

This role is a senior-level opportunity for an experienced cybersecurity compliance professional to lead high-impact federal and cloud security assessment engagements. You will work at the intersection of information security, regulatory compliance, and cloud architecture, guiding clients through complex FISMA and FedRAMP audit processes. The position involves leading end-to-end assessments, ensuring adherence to NIST frameworks, and delivering high-quality authorization packages that enable secure cloud adoption. You will also mentor junior consultants, contribute to methodology improvements, and act as a trusted advisor across multiple client engagements. This is a highly collaborative yet independent role requiring strong leadership, technical depth, and the ability to translate complex security requirements into clear, actionable outcomes. You will play a key role in ensuring organizations meet strict federal compliance standards while improving overall security maturity.

• Lead full lifecycle FISMA and FedRAMP assessments from initiation through final report delivery, including planning, walkthroughs, findings discussions, and closure activities.
• Execute security evaluations aligned with NIST frameworks such as SP 800-53, 800-37, and 800-171, ensuring compliance with federal cybersecurity requirements.
• Develop and review Security Authorization Packages, ensuring completeness, accuracy, and alignment with FedRAMP and related standards.
• Manage client engagement activities, including status updates, working sessions, and alignment of expectations and project timelines.
• Provide mentorship and guidance to junior consultants, reviewing deliverables and supporting skill development across the team.
• Contribute to engagement planning, assessment methodologies, and technical strategies as a subject matter expert in federal compliance.
• Support multiple concurrent audits while maintaining quality, accuracy, and adherence to deadlines in a fast-paced environment.

• Bachelor’s degree in Information Security, Computer Science, MIS, or a related field, or equivalent combination of education and experience.
• At least 3 years of experience in information security with strong exposure to NIST frameworks, FedRAMP, FISMA, and RMF environments.
• Hands-on experience with NIST publications and control frameworks including SP 800-53, 800-37, 800-30, and related guidance.
• Proven experience leading multiple FedRAMP or FISMA assessments from kickoff through final reporting.
• Strong understanding of cloud environments and architectures, including AWS, Azure, or Google Cloud platforms.
• One or more advanced cybersecurity certifications such as CISSP, CISA, CISM, CCSP, CRISC, or CAP; additional certifications are a plus.
• Strong communication skills with the ability to translate technical security concepts for non-technical stakeholders.
• Ability to manage multiple priorities, meet deadlines, and operate effectively in a fast-paced consulting environment.
• Solid technical foundation across networks, identity and access management, cryptography, and system security principles.

• Competitive compensation package with performance-based bonus structure.
• Comprehensive healthcare coverage including medical, dental, and vision insurance.
• Employer-paid life insurance and disability coverage.
• 401(k) retirement plan with employer matching contributions.
• Generous paid time off, including vacation, holidays, and seasonal office closures.
• Home office reimbursement and certification reimbursement programs.
• Employee assistance program and additional wellbeing support resources.
• Pet insurance and additional lifestyle benefits.
• Career development support including personalized coaching and training opportunities.