Lead Consultant – FedRAMP Advisory and Assessment
Location: 100% Remote US-BasedCompensation: Competitive, based on experience, certifications, and geographic locationTravel: Optional, up to 10% for strategic workshops (client choice)
About Us
RSI Security is a trusted leader in cybersecurity compliance and assessment, dedicated to helping organizations navigate complex security frameworks and safeguard their operations. We are committed to operational excellence, leveraging innovation and expertise to deliver tailored solutions that empower businesses to thrive in a rapidly evolving digital landscape. Our culture emphasizes collaboration, continuous improvement, and professional growth, offering team members the opportunity to contribute meaningfully to impactful projects in a supportive and forward-thinking environment.
Position Overview
As a Lead Consultant in our FedRAMP Advisory and Assessment practice, you will serve as a trusted advisor to cloud service providers navigating the FedRAMP authorization process. You’ll lead end-to-end engagements, from readiness assessments through documentation development, control implementation guidance, and support during 3PAO assessments. This role requires a deep understanding of FedRAMP, NIST SP 800-53, and cloud security principles, as well as the ability to communicate complex requirements clearly to clients.
You will work remotely with occasional travel to client sites for strategic meetings or workshops.
What You’ll Do
- Lead FedRAMP Engagements: Manage and execute end-to-end FedRAMP advisory projects, including readiness assessments, documentation support, and remediation guidance.
- Client Advisory: Serve as a subject matter expert and primary liaison for clients, providing strategic recommendations to align cloud services with FedRAMP and NIST SP 800-53 requirements.
- Documentation Oversight: Develop, review, and refine FedRAMP-required documentation such as System Security Plans (SSPs), Security Assessment Plans (SAPs), Security Assessment Reports (SARs), and POA&Ms.
- Control Assessment & Implementation: Guide clients through security control implementation and validation, ensuring controls are properly documented, tested, and aligned with FedRAMP standards.
- Collaboration with 3PAOs: Support client interactions with Third Party Assessment Organizations (3PAOs), preparing for and responding to assessments.
- Project Management: Oversee timelines, deliverables, and project risks; ensure on-time and quality delivery of all client work.
- Continuous Monitoring Support: Assist clients with establishing and maintaining FedRAMP continuous monitoring (ConMon) programs, including monthly reporting and annual assessments.
- Thought Leadership: Contribute to internal knowledge development, mentor junior consultants, and stay up to date with evolving FedRAMP, NIST, and cloud security standards.
What You’ll Bring
- Bachelor’s degree in cybersecurity, information systems, or a related field (or equivalent experience)
- 5+ years of experience in cybersecurity, with direct experience in FedRAMP, NIST RMF, or FISMA engagements
- Strong understanding of NIST SP 800-53 and FedRAMP documentation requirements
- Excellent written and verbal communication skills
- Ability to manage multiple client engagements simultaneously
- Experience with CSPs or cloud environments (AWS, Azure, Google Cloud) preferred
- Security certifications such as CISSP, CAP, CISA, or PMP are a plus
Mindset We Value
- Strong project management: prioritize tasks, balance workloads, adapt quickly
- Exceptional communication: tailor technical insights for varied audiences
- Analytical rigor: assess control design and operating effectiveness
- Client-centric approach: deliver practical, risk-based recommendations
- Collaborative mindset and continuous-improvement orientation
What We Offer
- Flexibility: 100% remote with optional travel for high-impact engagements.
- Impact: Directly shape compliance posture for leading global clients.
- Growth: Access ongoing training, certifications, and mentorship.
- Culture: Join a values-driven team that “Serves Above All Else” and “Does What’s Right, Not What’s Easy.”
Equal Employment Opportunity
Our commitment to equity, equal opportunity, inclusion, and diversity is part of our broader commitment to respecting fundamental human rights across our value chain. RSI Security is proud to be an Equal Opportunity Employer. The Company will consider for employment qualified applicants with arrest and conviction records. Equal Opportunity Employer/Veterans/Disabled.For more information on RSI Security, please visit our website www.rsisecurity.com or our social media RSI Security LinkedIn. On our career site, you will find some of the key steps you can expect to guide you along the way.
