Full-time
Senior Analyst, FedRAMP / Federal Security and Risk Management - Code42 Software - Minneapolis, MN

As a leading provider of global information security solutions, Code42 secures the ideas of more than 50,000 organizations worldwide, including the most recognized brands in business and education. Because Code42 collects and indexes every version of every file, the company offers security, legal and IT teams total visibility and recovery of data wherever it lives and moves. Founded in 2001, the company is headquartered in Minneapolis, Minnesota, with offices in London, Munich, San Francisco, Denver and Washington, D.C. We are proud to be funded by Accel Partners, JMI Equity, NEA and Split Rock Partners. Code42 is committed to providing all employees with engaging and challenging work, opportunity for growth, an equal voice to drive innovation, and an environment that cultivates authenticity. In return, we look for people who are inquisitive, enjoy solving complex problems, collaborate effectively, think creatively and provide diverse insights to help us all think better and differently. Come join us and #BeCode42 WHAT YOU’LL BE DOING: Code42 is seeking a Senior Information Security Analyst to lead the execution of the FedRAMP authorization and ongoing continuous monitoring requirements related to the Code42 Next-Gen DLP Gov product and environment. You will be responsible for working with stakeholders and teams in Operations, Engineering and Product Management to ensure controls are integrated and operating effectively and efficiently to meet FedRAMP requirements for authorization and to enable continuous monitoring requirements. YOU’LL BE RESPONSIBLE FOR: Leading the execution of the FedRAMP Authorization initiative Working closely with Engineering and Product teams to deliver FedRAMP requirements, provide consultation and validate implementation Communicating FedRAMP requirements, deliverables and project status to stakeholders, leaders and external partners Driving cross-functional execution and validation of FedRAMP deliverables Building, executing and maintaining continuous monitoring functions and deliverables including POA&M Driving vulnerability remediation in accordance with FedRAMP requirements Providing analysis and implementation guidance of NIST 800 series, FedRAMP, FISMA and other related Federal requirements and regulations Writing, editing and managing a wide variety of information security documentation to meet Federal requirements SKILLS AND REQUIREMENTS: Bachelor’s Degree in relevant discipline 5+ years’ experience in: NIST SP 800 Series, FedRAMP, FIPS 199 and FISMA frameworks Working with subject matter experts and developing, editing, and revising documentation including standard operating procedures, system security plans (SSP), and policies and procedures. With continuous monitoring requirements and POA&M management and communication. Working with Third-party Assessment Organizations (3PAO) Strong understanding of vulnerability management, scanning tools and remediation Strong analytic and critical thinking abilities Excellent verbal and written communication skills Strong understanding of security controls, frameworks and practices Preferred: Experience in the SaaS products and the technology industry Experience with AWS and other major public cloud environments SecDevOps Experience Threat and vulnerability management experience Experience with security tools and penetration testing Coding and scripting experience

Apply for this job  or Save to My Jobs

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.eu, you agree to our use of cookies.