Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.
Job Description
at Signature Performance, Inc. in Burlington, Vermont, United States Job Description This is a remote based position. Applicants can be located nationwide Back 3d ICS Authorizations Program Analyst II #2764 United States Apply X Facebook LinkedIn Email Copy Position Description About You You are a person who is looking to advance the organization's security and compliance objectives. We need someone who brings a blend of project management discipline, hands-on experience with security authorizations, and familiarity with working alongside federal agencies or Third-Party Assessment Organizations. In the role of ICS Authorizations Program Analyst II, you will serve as the primary ATO and FedRAMP coordination point between federal agency stakeholders and internal SaaS teams. Tell us about your experience in Cybersecurity, Compliance, Risk, Framework Compliance, or Audit Programs. Are you a team player and a self-motivator? What is your experience with conducting business in a way that is credit to a company? We are counting on you to manage multiple projects using your problem-solving skills. We are looking for someone
UNCOMMON.
What is uncommon about you? Are you highly committed? Are you team-oriented? Do you value professionalism, trust, honesty, and integrity? If so, we cannot wait to meet you. About The Position Plan, manage, and track system Authorization to Operate (ATO) and FedRAMP authorization packages, including schedules, dependencies, and renewal cycles, ensuring all required documentation is completed by internal owners and submitted to Agency partners on time. Work directly with federal agency points of contact and internal SaaS product, engineering, and security teams to clarify authorization and evidence requirements, assign actions, and follow up until all requested artifacts are complete and accepted. For client- or agency-specific packages coordinate with the assigned security analyst to ensure that the SSP is documented, updated, and delivered, tracking status but not authoring the technical content. Coordinate security assessments and audits through engagement with internal and external stakeholders, including 3PAOs and federal partners, managing evidence collection, organizing responses to questions, and tracking remediation of findings across responsible internal teams. Oversee submission and maintenance of continuous monitoring evidence for assigned systems, confirming that scan results, inventory updates, POA&M updates, and change records have been prepared by the appropriate internal owners and transmitted per agency or FedRAMP requirements. Monitor, assess, and report on control effectiveness; develop dashboards and metrics to communicate overall compliance posture to leadership. Support assessments against NIST-based requirements (e.g., NIST 800-53, NIST CSF) and related programs such as FedRAMP, FISMA, or HIPAA by coordinating tasking and consolidating evidence and status updates. Translate technical and policy requirements from Agencies and 3PAOs into actionable, trackable plans for internal teams, ensuring timely remediation and risk reduction. Contribute to the improvement of compliance and authorization workflows, leveraging GRC tools to automate and track activities related to ATOs, FedRAMP, and continuous monitoring. Serve as a liaison with IT, security operations, privacy, and business units to ensure cohesive governance and communication of audit results and policy updates.
Minimum Requirements:
U.S. citizenship and eligibility for a NACLC DoD Security Clearance. Bachelor's degree in Information Systems, Cybersecurity, Computer Science, or a related field (or equivalent professional experience). 5--10 years of progressively responsible experience supporting cybersecurity, compliance, risk, framework compliance, or audit programs within a federal agency, contractor, or 3PAO environment. Demonstrated ability to independently manage complex authorization and audit workstreams, schedules, dependencies, documentation control, and deliverable quality. Advanced working knowledge of NIST-based frameworks, the end-to-end ATO lifecycle (e.g., SSP, RAR/SAR, POA&M, continuous monitoring), and how these are... For full info follow application link. This Company is an Equal Opportunity Employer, and does not discriminate on the basis of race, gender, ethnicity, religion, national origin, age, disability, veteran status, or on any other basis prohibited by law. Information on race, gender and national origin will only be used for statistical and recordkeeping purposes, and will not be used in making any employment decisions. All information provided will be kept separate from your expression of interest. Providing this information is strictly voluntary, and you will not be subjected to any adverse action or treatment if you choose not to provide this information. If you do not choose to answer these questions, we ask that you select "Decline to Identify" for each question. Thank you for your voluntary cooperation. To view full details and how to apply, please login or create a Job Seeker account