FedRAMP Specialist

POWER A WORLD OF TRUST

Incode is the leading provider of world-class identity solutions that is reinventing the way humans authenticate and verify their identities online to power a world of digital trust.

Through our revolutionary identity solutions, we are unleashing the business potential of universal industries including finance, government, retail, hospitality, gaming, and more, by reducing fraud and transforming human interactions with data, products, and services.

We’re in the process of rapidly scaling our diverse global team and we’re looking for entrepreneurial individuals and leaders who are curious, driven, and excited by ownership to join a Unicorn-status scale-up!

Job Title: FedRAMP Specialist
Location: United States - Remote
Department: Compliance/Information Securit

Job Summary:
The FedRAMP Specialist is responsible for managing, developing, and maintaining the FedRAMP (Federal Risk and Authorization Management) compliance program within the organization. This role ensures that all cloud-based services meet the security requirements set forth by FedRAMP and other relevant regulatory standards. The specialist works closely with internal and external stakeholders to achieve and maintain the necessary security authorizations for operating in federal environments.

Key Responsibilities:

• Lead and manage the end-to-end FedRAMP compliance process, including Initial Authorization (ATO) and Continuous Monitoring.
• Develop and maintain documentation required for FedRAMP certification, including System Security Plans (SSP), Plan of Action & Milestones (POA&M), and Security Assessment Reports (SAR).
• Collaborate with cross-functional teams (security, operations, engineering, etc.) to ensure all controls are effectively implemented and maintained.
• Work with third-party assessment organizations (3PAOs) to conduct audits and assessments.
• Perform gap analysis, risk assessments, and readiness assessments to identify areas for improvement and ensure compliance.
• Monitor the FedRAMP marketplace and stay up-to-date with changes to regulatory requirements and standards.
• Provide guidance and training to internal teams regarding FedRAMP requirements and best practices.
• Assist in responding to security incidents or breaches, ensuring compliance with federal guidelines.
• Ensure continuous monitoring and reporting for ongoing FedRAMP compliance.
• Communicate effectively with government agencies and contractors regarding authorization status and progress.

Required Qualifications:

• Bachelor’s degree in Information Technology, Cybersecurity, or a related field (or equivalent experience).
• 5+ years of experience in IT security, compliance, or risk management.
• Strong understanding of FedRAMP requirements, NIST 800-53 controls, and cloud security.
• Experience working with 3PAOs and conducting security assessments.
• Familiarity with cloud service providers such as AWS, Azure, or Google Cloud.
• Strong organizational and project management skills.
• Excellent written and verbal communication skills.

Preferred Qualifications:

• FedRAMP certification or other relevant security certifications (e.g., CISSP, CISM, CCSP).
• Experience working within federal environments or managing federal contracts.
• Knowledge of other compliance frameworks such as FISMA, SOC 2, or ISO 27001.

8 Aspects of our Culture:

• Values are what we value
• High performance
• Freedom & responsibility
• Context, not control
• Highly aligned, loosely coupled
• Continuous Feedback
• Pay Top of Market
• Promotions & Development
• Learn more about Life at Incode!

Benefits & Perks:

• Meaningful Equity
• Flexible Working Hours & Workplace
• Open Vacation Policy
• Wellness Program
• International Travel Opportunities
• Additional benefit package according to location (401k, medical insurance, etc.)

Equal Opportunities:

Incode is an equal opportunity employer, committed to creating a diverse and inclusive work environment. We take great pride in having an inclusive, diverse, and global team and are always on the lookout for talented, passionate people from all backgrounds and walks of life.

Applicant Data Privacy:

We will only use your personal information in connection with Incode’s application, recruitment, and hiring processes.