FedRAMP Cloud Security Project Manager

 December 8, 2020
 Washington, DC
Thycotic, a global leader in IT security, is the fastest growing provider of Privileged Access Management solutions that protect an organization’s most valuable assets from cyber-attacks and insider threats. Our mission is to make self-sufficient security champions, by making security tools people love to use that make privilege management achievable for everyone.
The results show:
 –We have over 10,000 customers worldwide ranging from mid-sized organizations to Fortune 100 companies and are adding hundreds of new customers every quarter.
 –We are growing at twice the rate of the overall PAM market (50% vs 25%).
— We are among Inc. 5000 Fastest Growing Companies six years in a row.
Position Summary
Our FedRAMP Cloud Security Project Manager will work with a highly technical dev team and across our environments to manage, provide Subject Matter Expertise in leading, designing, building, and documenting FedRAMP security controls for our SaaS solutions. This individual will be responsible for guiding us to achieve and maintain a FedRAMP Authority to Operate (ATO). The ideal FedRAMP Cloud Security Project Manager candidate will have at least 6 years’ experience developing FedRAMP System Security Plans for low and moderate impact IaaS, PaaS and SaaS solutions.
Ideally the candidate will be located in the DC metro area, however strong candidates in other US locations may be considered. This position will report to the Chief Information Security & Privacy Officer.

Key Responsibilities

  • The FedRAMP Cloud Project Manager will be required to stay current on US policy related to IA, acquisition, and computer network defense 
  • Will be required to create and publish technical documentation associated with FedRAMP assessment packages 
  • Have a solid understanding of Amazon Web Services (AWS) and possess Azure Cloud Security experience
  • Understand DevSecOps environments 
  • Have a strong knowledge of technology and security topics including network and application security, infrastructure hardening, security baselines, web server, and database security
  • Excellent decision-making, analytical and problem-solving skills
  • Results-Driven and have the courage and confidence to challenge the status quo
  • Organized researcher with strong organizational, presentation, and customer research skills
  • Ability to propose solutions and process flows based on the requirements gathered
  • Strong track record of cross-functional collaboration
  • Work with Product Management and Development leadership to identify product and process changes
  • Outstanding interpersonal and communication skills, both verbal and written
  • Possess the skills and presence to effectively communicate across all levels of leadership
  • Skills and Requirements

  • BS/BA degree preferred or equivalent work experience
  • At least one of following certifications preferred: PMP, CISSP, CISM, CEH, CISA, Security+, GSEC, CIPP, AWS, Azure certifications
  • Previous FedRAMP and other compliance experience preferred (NIST, ISO 27001, SOC2)
  • 6+ years managing projects and/or programs 
  • Experience with obtaining and maintaining compliance certifications such as FedRAMP preferred
  • Experience with cloud infrastructure and software development lifecycle preferred 
  • Why Work at Thycotic?
    We’re passionate problem-solvers doing our part to make the world a safer place. We invest in people who are smart, self-motivated and collaborative.
    What we offer in return is meaningful work, a culture of innovation and great career progression!
    Thycotic was named a “Best Places to Work” Award Winner in 2019 and 2020 in recognition of our positive work environment and culture, as reported by employees.  A focus on employee advancement and our ethos of respect are just some of the reasons why people love working here!
    Thycotic Software, LLC (Thycotic) is an Equal Opportunity and Affirmative Action employer and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
    Upon conditional offer of employment, candidates are required to complete a criminal background check and drug screen per Thycotic employment policy. In addition, all publicly posted social media sites may be reviewed.