Principal FedRAMP Advisor

Piper Companies is looking for a Principal FedRAMP Advisor to join a professional services company that focused on cybersecurity and compliance services. This is 100% remote!

 Essential Duties of the Principal FedRAMP Advisor:

• Evaluate and enhance the security of complex systems that may impact both risk and compliance.
• Scope and lead on-site engagements with clients. This includes leading pre-sales calls, onsite visits, understanding customer security and compliance requirements and environments, and proposing and delivering packaged offerings or custom solution engagements.
• Develop technical content, such as security plans, procedures, policies, and white papers that can be used by our clients.
• Work with industry and standards bodies to provide information security technical and non-technical expertise.

Qualifications of the Principal FedRAMP Advisor:

• 5-7+ years of experience in an IT security audit, assessment, compliance, risk management, or data privacy role.
• Knowledge of strategy, privacy and risk standards/frameworks and professional practices.
• Experience in strategy development, setting direction for team members, influencing both internally and externally.
• Experience building common compliance frameworks as well as mapping between different compliance requirements.
• 7+ years of experience with compliances such as NIST, FedRAMP, DoD RMF, GovRAMP, CMMC
• Certifications such as CISSP, CISM, CCSP.

 Compensation for the Principal FedRAMP Advisor:

• $140,000 - $170,000 (based on experience)
• 100% Remote
• Comprehensive benefit package; Cigna Medical, Cigna Dental, Vision, 401k w/ ADP, PTO, paid holidays, Sick Leave as required by law, paid holidays

This job opens for applications on 6/6/2025. Applications for this job will be accepted for at least 30 days from the posting date.

#LI-LS3 #LI-REMOTE

Keywords: 401k, 401k match, pto, paid time off, holiday, medical, dental, health, culture, government, federal, gov, fed, cyber, security, cyber security, cybersecurity, consulting, cloud consultant, cyber consultant, security consultant, cybersecurity consultant, cloud services, compliance, compliance services, fedramp, fed ramp, infrastructure, cloud infrastructure, solution architect, solution architecture, cloud services consultant, cloud engagements, compliance monitoring, cloud strategy, cloud strategies, cloud program, compliant solutions, defense, compliant cloud, cloud configuration, cloud configurations, aws, azure, amazon web services, gcp, google cloud, google cloud platform, cloud platform, hipaa, hippa, hitrust, fisma, cmmc, soc, iso, pci, framework, federal risk, federal risk and authorization management program, federal information, federal information security management act, security management, system and organization controls, international organization for standardization, health insurance portability and accountability act, health information trust alliance, pci dss, pcidss, cissp, cism, cisa, giac, giac public cloud, public cloud, pmp, palo alto, palo, paloalto, cisco, asav, vpc, vpc peering, transit gateway, encryption, tls, ssl, tls/ssl, pki, terraform, cloudformation cloud formation, python, powershell, power shell, bash, certified information systems security professional, certified information security manager, infosec, information security, security manager, security engineer, security manager, cyber manager, cybersecurity manager, information security manager, certified information systems auditor, aws architect, azure architect, cloud architect, gcp architect, cloud architecture, aws architecture, azure architecture, gcp architecture, cloud platform, infrastructure engineer, cloud infrastructure, aws infrastructure, azure infrastructure, gcp infrastructure, iac, infrastructure as code, terraform, csp, cloud service provider, digital transformation, tenable, trend micro, aquasec, aqua sec, Microsoft defender, defender, burp suite, infrastructure-as-code, devops engineer, devops, cloud devops, cloud security engineer, cloud engineer, cloud architect, cloud architecture, ansible, gitlab, github, disa, stig, cis benchmark, fedramp advisory, fedramp advisor, dfars, cobit, msp, mssp, msps, mssps, xacta, csam, archer, senior consultant, cloudtrail, nist, crowdstrike, sentinelone, pci-dss, zero trust, zerotrust, zero-trust, security architect, cybersecurity architect, practice lead, cmmc lead, cmmc practice, program lead, cyber lead, cybersecurity lead, security consultant, cyber consultant