FedRamp Assesor - US

Insight Assurance is a leading provider of cybersecurity compliance and risk management services. Our mission is to help organizations achieve and maintain compliance with federal regulations, specifically focusing on FedRAMP. We are committed to delivering exceptional service and expertise to our clients, enabling them to navigate complex regulatory landscapes.

Position Overview:
We are seeking a highly experienced Consultant to join our FedRAMP service line and lead client-facing engagements across various compliance and security frameworks. This role requires strong technical and audit expertise, the ability to provide value-added recommendations, and the leadership skills to mentor junior team members while driving project success. You will be a trusted advisor to clients, helping them strengthen their security posture, ensure compliance, and navigate the complexities of regulatory requirements.

Key Responsibilities:

• Client Advisory & Engagement
• Guide clients on issues affecting their security posture and scope of work in a value-driven manner.
• Educate clients on compliance activities and interpret requirements across multiple cybersecurity frameworks.
• Establish and maintain positive, collaborative relationships with client stakeholders at all levels.
• Audit & Assessment Leadership
• Lead audits and assessments, including audit plan preparation, documentation and evidence review, evaluation of client procedures, and conducting interviews.
• Draft audit programs that address both regulatory objectives and the complexity of client environments.
• Conduct security vulnerability assessments against appropriate frameworks.
• Lead inquiry walkthroughs and client interviews, capturing detailed and accurate notes.
• Documentation & Reporting
• Develop, review, and approve assessment reports with actionable recommendations.
• Perform offline and remote evidence inspections of client documentation, ensuring clarity and accuracy.
• Ensure quality assurance standards are consistently applied to all deliverables.
• Project & Team Management
• Manage project priorities, deliverables, and hours in coordination with project managers to meet utilization targets.
• Escalate client or project issues promptly to management for resolution.
• Provide mentorship and guidance to team members in audit execution, technical review, and professional writing.
• Collaborate with project managers, quality management, sales, and delivery teams to meet project and client objectives.
• Business & Professional Development
• Identify upsell and cross-sell opportunities during client engagements and coordinate with sales teams.
• Maintain and expand expertise in one or more cybersecurity frameworks through continuous professional development.
• Stay current on industry certifications and trends in cybersecurity, auditing, and compliance.

Qualifications:

• Strong expertise in one or more major cybersecurity/compliance frameworks (e.g., SOC 2, ISO 27001, NIST, HIPAA, PCI DSS).
• 5+ years of experience in IT auditing, cybersecurity assessments, or related roles.
• Proven ability to lead client-facing audits and assessments, including preparation, execution, and reporting.
• Exceptional written and verbal communication skills, with experience developing professional reports and recommendations.
• Ability to manage multiple projects, meet deadlines, and ensure high-quality deliverables in a remote environment.
• Strong interpersonal skills, with the ability to interface with clients across all levels of the organization.
• Experience mentoring or guiding junior staff is a plus.
• Willingness to travel up to 20% as required.

Nice To Have

• Relevant industry certifications (e.g., CISA, CISSP, ISO 27001 Lead Auditor, CISM).
• Experience in sales support, client relationship management, or business development.
• Demonstrated expertise in advanced security frameworks or niche compliance areas.

Why Join Us?

• Competitive salary and benefits package.
• Opportunities for professional growth and development.
• Collaborative and innovative work environment.
• Make a meaningful impact by helping clients achieve compliance with federal standards.

Insight Assurance is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

Privacy Notice Ccpa:

• Insight Assurance shares your personal data/information with Greenhouse recruiting because this is the tool we use for the recruitment process.
• Insight Assurance does not sell personal data/information under any circumstances.
• You may exercise your rights under personal data protection legislation by reaching out to us via: HR@insightassurance.com or submit a request via mail at 400 N Tampa St. 15th Floor Suite 122, Tampa, FL 33602

Privacy Notice Gdpr:

This notice informs you about the categories of Personal Data/ Information and the Purpose and Scope of Processing Activities to be undertaken by Insight Assurance (we, us, our), under its job application and recruitment process.

We resort to Greenhouse.com as the platform that supports our recruitment process, and therefore your Personal Data/ Information will be Processed on this tool (hosted, shared with, cross-referenced, accessed by our team); we have in place contractual terms and the commitment of Greenhouse.com that ensures the Security and Confidentiality plus Purpose limitation with regards to the Processing of your Personal Data.

When you reply to one of your job postings, you voluntarily and freely submit your Personal Data to us; this, allied with the fact that the Processing by us (and over Greenhouse.com) of that Personal Data has the sole Purpose of validating your application and proceeding with the inherent scrutiny and decision, allows us to argue having Legitimate Interest as the applicable Legal Basis to undertake the Processing of your Personal Data under this scope.

We are a U.S.-based company; hence, some or all Personal Data pertaining to you will be hosted in the U.S.

The categories of Personal Data under Processing consist of:

• Identification
• Contact
• Education and Professional
• Interview performance
• Evaluation

You may exercise several Rights as determined under applicable Personal Data Protection legislation, in short:

• Right of Access – meaning getting information about the Personal Data under Processing by us, except for the information you already know;
• Right of Erasure – you may ask for us to erase all Personal Data pertaining to you under Processing; this may imply you being excluded from the recruitment process, for without information we cannot proceed with it;
• Right of Opposition or Restriction of Processing – you may ask us to stop some Processing or restrict the Processing of some Personal Data, this may imply you being excluded from the recruitment process, at our sole discretion also for without information we cannot proceed with it;
• Rectification – you can rectify your Personal Data at anytime