FedRAMP Compliance and Cloud Security Manager

Job Title: FedRAMP Compliance and Cloud Security Manager

Position Overview:

We are seeking an experienced and highly skilled FedRAMP Compliance and Cloud Security Manager to lead and manage our organization's FedRAMP compliance efforts while overseeing cloud security operations. In this role, you will provide expert guidance on achieving and maintaining compliance with FedRAMP standards, manage the implementation of security controls, and drive continuous monitoring and threat detection across our cloud environments. You will play a key role in ensuring our organization's cybersecurity posture remains robust, resilient, and compliant with federal and industry regulations.

Key Responsibilities:

FedRAMP Compliance Oversight

• Lead the organization s FedRAMP compliance initiatives, ensuring ongoing adherence to all FedRAMP standards and regulatory requirements.
• Provide expert guidance to internal teams on compliance best practices, working closely with third-party assessors and federal agencies.
• Serve as the subject matter expert (SME) for all FedRAMP-related activities, including audits, assessments, and compliance documentation.
• Coordinate FedRAMP audits, assessments, and remediation processes, ensuring timely resolution of compliance gaps and vulnerabilities.

Policy Gap Closure and Enhancement

• Conduct comprehensive reviews of existing IT and security policies to identify and address gaps in compliance with FedRAMP and other relevant regulations.
• Advise on the development and improvement of security policies, ensuring alignment with FedRAMP standards, regulatory requirements, and industry best practices.
• Develop and maintain a framework for policy enforcement and continuous improvement across the organization.

Implementation and Monitoring of Security Controls

• Lead the design, implementation, and monitoring of security controls required for FedRAMP compliance.
• Oversee continuous monitoring of the effectiveness of security controls, making adjustments as necessary to meet evolving security and compliance needs.

• Ensure regular reporting on security control performance and compliance status to senior leadership and stakeholders.
• Maintain up-to-date documentation on security control implementation, effectiveness, and ongoing adjustments.

Threat Intelligence and Cloud Security

• Strengthen the organization's cloud security posture by implementing advanced threat detection and continuous monitoring systems.
• Set up and maintain security monitoring systems across cloud environments to detect potential risks, vulnerabilities, and security events.
• Ensure cloud configurations are aligned with security best practices and compliance standards.
• Continuously improve detection and response mechanisms to protect sensitive data and mitigate emerging security threats.

Key Deliverables:

• Comprehensive Gap Analysis and Remediation Roadmap: Conduct thorough analysis of compliance gaps, security vulnerabilities, and develop actionable remediation steps tied to a Plan of Action and Milestones (POA&M).
• Audit and Assessment Support Documentation: Maintain complete documentation and evidence for FedRAMP audits and external assessments, including status updates on security controls and compliance efforts.
• Updated Policy Framework: Draft and update IT/security policies in alignment with FedRAMP and regulatory requirements, including enforcement and improvement frameworks.
• Security Controls Implementation Plan and Reports: Deliver detailed plans and status updates for security control implementation and effectiveness.
• Threat Intelligence and Monitoring Reports: Provide regular documentation on threat intelligence activities, continuous monitoring systems, and cloud security posture.

Minimum Qualifications

• Bachelor s degree in Information Security, Cybersecurity, IT, or related field (Master s degree preferred).
• Minimum of 5+ years of experience in cybersecurity, with a focus on FedRAMP compliance, cloud security, and regulatory standards.
• Strong experience in implementing and monitoring security controls in cloud environments.

• Deep understanding of cloud security architectures, threat intelligence, and continuous monitoring systems.
• Experience developing, enhancing, and enforcing IT/security policies and knowledge of cybersecurity frameworks (e.g., NIST, FISMA, CIS).
• Excellent communication and collaboration skills, with the ability to work across departments and liaise with external assessors and federal agencies.

Preferred Qualifications

• Proven expertise in managing FedRAMP audits, assessments, and compliance processes
• Relevant certifications such as CISSP, CISA, CISM, or CEH

Benefits

• Competitive base salary
• Comprehensive health insurance
• Dental insurance
• 401(k) with employer match
• Additional perks and benefits

About LSPedia

Welcome to LSPedia, a global software (SaaS) leader at the forefront of traceability, compliance, and supply chain solutions, dedicated to empowering the pharmaceutical, healthcare, and food industries. As a distinguished Top 50 Michigan Company and recognized on INC's list of the fastest-growing companies in America, LSPedia stands as a beacon of innovation and excellence.

Our cutting-edge software solutions have earned the trust of major players in the pharmaceutical and healthcare sectors, including esteemed organizations such as the U.S. Department of Veterans Affairs, Cencora, Cardinal Health, Walmart, Rite Aid, and thousands more. We take pride in our commitment to delivering unparalleled traceability and compliance solutions that redefine industry standards.

At LSPedia, we are fueled by a passion for innovation and a commitment to excellence. Join our rockstar team as we continue to expand and shape the future of traceability and supply chain solutions. We are actively seeking individuals who share our vision and enthusiasm to contribute to the ongoing success of our dynamic and growing company. Together, we are driving the evolution of industries and shaping a more connected, compliant, and efficient future