Posted in

Senior Cybersecurity GRC

Senior Cybersecurity GRC

CompanyWorkday
LocationMcLean, VA, USA
Salary$125800 – $223400
TypeFull-Time
DegreesBachelor’s
Experience LevelSenior, Expert or higher

Requirements

  • 8+ years of experience in an equivalent governance, risk & compliance and/or related engineering role
  • 5+ years direct experience with the FedRAMP and RMF assessment and authorization processes
  • This position requires a TS/SCI with CI POLY security clearance. Applicants must already possess a valid and active TS/SCI with CI POLY security clearance.
  • 10+ years of experience in an equivalent governance, risk & compliance and/or related engineering role
  • 5+ years direct experience with the FedRAMP and RMF assessment and authorization processes
  • This position requires a TS/SCI with CI POLY security clearance. Applicants must already possess a valid and active TS/SCI with CI POLY security clearance.
  • A solid understanding of the FedRAMP Framework and DoD Impact levels IL4, IL5 and IL6
  • Bachelor’s degree or equivalent experience
  • Experience prioritizing technical changes to a FedRAMP system and apply controls to ensure audit readiness and acceptability
  • Experience leading system design with engineering to provide technical guidance documentation
  • Experience designing federal SaaS cloud computing systems including source control management, logging & monitoring systems, FIPS encryption methods, access controls and vulnerability management
  • Strong communications skills (written and verbal) and attention to detail
  • Proven program/project management experience (especially audit management)
  • Ability to lead multiple projects and organize time effectively
  • Organized, adaptable, and able to gain support and consensus with cross-functional partners
  • CISA, CISSP, PMP, CIPP or other related certifications

Responsibilities

  • Support one or more direct or indirect contracts with the U.S. Federal Government
  • Lead the design, implementation and assessment of Workday’s US National Security offerings
  • Ensure continued compliance across public sector frameworks
  • Assist in prioritizing future system changes
  • Manage the audit lifecycle for the various DoD and IC programs
  • Lead security and compliance related interactions with Workday’s National Security customers
  • Advise internal business partners on risk and compliance requirements related to the product development lifecycle and other strategic organizational initiatives.

Preferred Qualifications

  • CISA, CISSP, PMP, CIPP or other related certifications