Director, Information Security - FedRAMP
Director, Information Security - FedRAMP
Saviynt
United States
See who Saviynt has hired for this role
Saviynt is an identity authority platform built to power and protect the world at work. In a world of digital transformation, where organizations are faced with increasing cyber risk but cannot afford defensive measures to slow down progress, Saviynt’s Enterprise Identity Cloud gives customers unparalleled visibility, control and intelligence to better defend against threats while empowering users with right-time, right-level access to the digital technologies and tools they need to do their best work.
About The Job
Saviynt’s Enterprise Identity Cloud helps modern enterprises scale cloud initiatives and solve the
toughest security and compliance challenges in record time. The company brings together identity
governance (IGA), granular application access, cloud security, and privileged access (PAM) to secure
the entire business ecosystem and provide a frictionless user experience. The world’s largest brands
trust Saviynt to accelerate digital transformation, empower distributed workforces, and meet
continuous compliance.
The Director, Governance Risk and Compliance, reports into the Information Security team, and will
lead various Governance Risk and Compliance efforts.
The candidate will possess the ability to execute, scale, and continuously evolve the Governance
function to maximize the impact and oversight across the organization. The candidate must be
comfortable managing projects in an Agile environment.
They should be familiar with policy and compliance requirements, including policy documentation and
system requirements to successfully respond to potential audits.
What You Will Be Doing
SOC 1, SOC 2.
What You Bring
managers, and conducting project meetings).
project tracking and analysis.
Saviynt is an equal opportunity employer and we welcome everyone to our team. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
About The Job
Saviynt’s Enterprise Identity Cloud helps modern enterprises scale cloud initiatives and solve the
toughest security and compliance challenges in record time. The company brings together identity
governance (IGA), granular application access, cloud security, and privileged access (PAM) to secure
the entire business ecosystem and provide a frictionless user experience. The world’s largest brands
trust Saviynt to accelerate digital transformation, empower distributed workforces, and meet
continuous compliance.
The Director, Governance Risk and Compliance, reports into the Information Security team, and will
lead various Governance Risk and Compliance efforts.
The candidate will possess the ability to execute, scale, and continuously evolve the Governance
function to maximize the impact and oversight across the organization. The candidate must be
comfortable managing projects in an Agile environment.
They should be familiar with policy and compliance requirements, including policy documentation and
system requirements to successfully respond to potential audits.
What You Will Be Doing
- Serve as the lead for Saviynt’s FedRAMP Info Sec and Compliance related activities
- Taking Saviynt through FedRAMP certification and re-recertification journey
- Develop System Security Plans (SSP), drive FedRAMP audit work with support from cross
- Lead monthly ConMon discussions
- Review security documentation/artifacts such as audit reports, gap analysis reports, POA& amp; Ms,
- Serve as the Governance POC both internally and externally.
- Identify governance or compliance requirements, assess risks, review required forms
- Serve as liaison across cross functional teams to help achieve Info Sec objectives.
- Maintain a compliance calendar and be accountable for the execution of various compliance
SOC 1, SOC 2.
- Draft and update key security documentation including policies, guidance documents,
- Help automate GRC inefficiencies through automation and improved workflows.
- Perform vulnerability scanning and provide remediation guidance as needed.
- Have a working knowledge of the NIST CSF and RMF frameworks
- Support customer requests as they pertain to Compliance queries and to other Information
- Develop and update Policies, Standards and Procedures per the organization’s policy
- Establish and lead risk management activities, including identification of risk and recommended
- Establish and maintain appropriate metrics that will help measure the GRC posture of the
- Collaborate with key stakeholders to ensure successful execution of mission and business
- Execute on GRC initiatives as defined within the security roadmap, while working with the
- Conduct risk assessments, compile risk registers, and track risk remediation plans
- Respond to requests from customers for information on our security measures
- Completing vendor security reviews. Optimize and automate the security questionnaire
- Review security clauses in customer and vendor contracts
- Establish, review, and enhance security training and awareness programs
- Support the business with customer engagements, including attending customer calls and
What You Bring
- Bachelor's degree with a minimum of 8 years of experience
- Knowledge of U.S. Federal Government security compliance, risk management processes and
- Experience with GRC tools and automation is a plus
- Experience with common controls framework, unified control framework (UCF) is a plus
- Knowledge of current trends/technologies (i.e., Zero Trust, AI/ML, PAM, etc.) is a plus
- Experience with vulnerability scanning, remediation, and continuous monitoring (ConMon)
- Experience managing Agile projects with a focus on duties related to Product Owner
- Experience developing executive level presentations to support Governance and broader
- Experience assessing project and technical documentation to ensure compliance with
- Requires sufficient technical background to be able to interpret audit and compliance
- Ability to provide excellent written and oral communications by email, presentations, and
managers, and conducting project meetings).
- Experience supervising or managing an Agile project team.
- Work on multiple projects and tasks concurrently
- Experience defining project scope and objectives, developing detailed work products
project tracking and analysis.
- Experience with continuous monitoring and Plans of Actions and Milestones (POA& amp ;Ms) is a plus
- Knowledge of local legal and regulatory security requirements including HIPAA, FedRAMP, and
- Flexible and collaborative approach to enabling and supporting the business
- Strong stakeholder and relationship management skills
Saviynt is an equal opportunity employer and we welcome everyone to our team. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
-
Seniority level
Mid-Senior level -
Employment type
Full-time -
Job function
Information Technology -
Industries
Software Development
Referrals increase your chances of interviewing at Saviynt by 2x
See who you knowGet notified about new Director Information Security jobs in United States.
Sign in to create job alertSimilar jobs
People also viewed
-
Chief Information Security Officer
Chief Information Security Officer
-
Director, Information Security, Governance, Risk and Compliance (GRC)
Director, Information Security, Governance, Risk and Compliance (GRC)
-
Director of Information Security
Director of Information Security
-
Chief Information Security Officer
Chief Information Security Officer
-
Information Security Sr Director
Information Security Sr Director
-
Director of Information Security
Director of Information Security
-
Director, Security & Compliance
Director, Security & Compliance
-
Director of Security
Director of Security
-
Healthcare - Chief Information Security Officer
Healthcare - Chief Information Security Officer
-
Director of AI Governance and Information Security (Remote)
Director of AI Governance and Information Security (Remote)
Looking for a job?
Visit the Career Advice Hub to see tips on interviewing and resume writing.
View Career Advice Hub