Cloud Security Architect (NIST/SOC/GovRAMP)

Proven experience leading or significantly contributing to GovRAMP, FedRAMP, and TX-RAMP compliance efforts. Expertise in NIST 800-53, FIPS 199/200, and continuous monitoring frameworks. Hands-on experience with AWS security services (IAM, GuardDuty, CloudTrail, Security Hub, etc.). Strong understanding of SOC2, GovRAMP, DevSecOps practices, and cloud infrastructure. Experience with audit responses Exceptional written and spoken English skills. Bachelor's degree in Cybersecurity, Computer Science, or a related field Relevant certifications (e.g., CISSP, CCSP, AWS Security Specialty) are a strong plus. Bonus: SIEM tools or zero trust architecture.

Lead the end-to-end process of GovRAMP readiness, gap remediation, and authorization. Provide guidance and oversight for FedRAMP Moderate and TX-RAMP certification efforts. Manage communication with third-party assessment organizations (3PAOs) and security consultants. Maintain the System Security Plan (SSP), POA&M, and related documentation. Design and maintain secure cloud infrastructure (primarily AWS), aligned with NIST 800-53 controls. Implement technical safeguards for identity & access management, vulnerability management, and incident response. Support DevOps teams in security automation and secure CI/CD pipelines. Conduct risk assessments and penetration test planning and review. Collaborate with executive leadership on security strategy. Develop training materials to raise internal security awareness. Ensure alignment between security policies and engineering practices.