Governance, Risk, and Compliance Lead

View full description

Requirements:

• US citizenship required.
• Located in the SF or DC metro area.
• Experience with FedRAMP.
• Experience with Risk Management Framework (RMF).
• Experience with CMMC / NIST 800-171.
• Experience with SOC 2.
• Experience with ISO 27001.
• General knowledge of cloud technologies and platforms (e.g., AWS, Azure).
• 3+ years of professional experience working in or with the US Department of Defense or related US Government organizations.

Responsibilities:

• Drive Primer’s compliance programs, including CMMC, FedRAMP, SOC 2, and ISO 27001.
• Assist in aligning Primer’s security and compliance strategy with business goals.
• Lead the rollout of changes required for compliance, including gathering IT requirements and budget.
• Create and maintain program-specific training for employees.
• Implement a metrics program to ensure the information security management system operates effectively.
• Report on compliance initiatives to senior management.
• Organize and lead security and compliance assessments, and communicate with external stakeholders.
• Comprehend RMF accreditation requirements for customer deployments and translate into actionable project plans.
• Ensure Primer’s GCC High environment meets federal requirements for processing sensitive data.