Facebook pixel

Staff Program Manager
Federal Programs
Posted on 10/31/2022
INACTIVE
Locations
San Jose, CA, USA • Remote in USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
AWS
Management
Microsoft Azure
Requirements
  • 6+ years of working experience on different compliance frameworks: FedRAMP, NIST, DoD Cloud Computing Security Requirements Guide (SRG)
  • Experience in program or project management, auditing, and/or control framework development and implementation
  • Strong understanding of Industry standard compliance frameworks and Cyber Security Best Practices
  • Experience in compliance management related activities including Policy, Procedures and Standards documentation
  • Knowledge in AWS & Azure environments
  • Professional certification such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) preferred
  • Bachelor or Masters in Information Technology or Relevant field Skills and Experience
Responsibilities
  • Assists with the overall execution of compliance programs aimed at achieving and maintaining industry accreditations and certifications such as FedRAMP, DoD IL5 and StateRamp
  • Demonstrates domain expertise in FedRAMP (Federal Risk Authorization Management Program), NIST SP 800-53 Rev 5, NIST SP 800-37, DoD CC SRG, NIST RMF (Risk Management Framework), supporting Systems Security Assessment and Authorization (SA&A) for Federal Agencies, NIST FIPS 199 & Data Classification
  • Provides support to the compliance audit and assessment efforts to include with external third-party auditors with evidence collection and upload, auditor interview support, and auditor walk-throughs of policies, procedures, and related compliance and security documentation through various intranet portals and sites
  • Assists with performing and managing security impact analyses (SIAs) and mapping technical implementation of changes to impacted NIST security controls
  • Performs cross-functional interviews with Operations and SecOps teams to determine if system security controls are implemented correctly, operating as intended, and producing the desired outcome
  • Demonstrates a strong working knowledge of FedRAMP management, operational and technical security control and supplemental guidance. Has a strong track record and experience writing security control implementation details in the System Security Plan package
  • Demonstrates the capability to coordinate with the Zscaler Third Party Assessment Organization (3PAO) in support of security control assessments
  • Also support Zscaler's Compliance programs in both Public and Private sectors aligned with FedRAMP, SOC 2, CSA STAR and ISMS aligned with ISO27001, ISO 27017, ISO27701 and ISO 27018 certifications
Zscaler

5,001-10,000 employees

Cloud-based information security company
Company Overview
Zscaler’s mission is to empower organizations to realize the full potential of the cloud and mobility by securely connecting users to applications from any device, anywhere. The company has pioneered a security cloud that has shifted architectural design and approach to network security. With their unique security cloud, the company has created a Zero Trust Exchange platform with their security cloud to enable businesses to reduce cost, risk, simplify IT, and increase business agility.
Benefits
  • Comprehensive health plans
  • Supportive parental & family leave
  • On-demand learning & development
  • Company-sponsored volunteering
  • Global tuition assistance program
  • Guilt-free paid time off
Company Core Values
  • Teamwork
  • Open Communication
  • Passion
  • Innovation
  • Customer Obsession