27 applicants

Company

Original Job Post

SentinelOne · 2 days ago

Associate Technical Program Manager - Federal

United States

Full-time

Remote

Mid Level

$92K/yr - $127K/yr

2+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

Artificial Intelligence (AI)Cyber Security

Growth Opportunities

Insider Connection @SentinelOne

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Ensure the program’s security and operations are in support of SentinelOne, federal cybersecurity, and FedRAMP program policy.

Assist in the maintenance and oversight of security controls to ensure compliance with FedRAMP and other relevant security frameworks.

Conduct regular assessments and audits to verify the effectiveness of security controls.

Work with the teams to set and meet quality standards for vulnerability management deliverables.

Support the identification, assessment, and management of security risks associated with the information systems.

Works with other SentinelOne stakeholder organizations (engineering, site reliability engineering, and FedRAMP product management) to plan and manage our Federal environments in a compliant manner.

Create and maintain accurate and up-to-date security documentation, including security plans, risk assessments, Plan of Actions & Milestones (POA&M), and authorization packages.

Generate regular reports for leadership and relevant stakeholders on the security posture of the information systems to help make data-driven program decisions.

Support the Change Control Board (CCB) by reviewing system changes for security implications.

Ensures quality of all Continuous Monitoring (ConMon) deliverables and timely submission to approved repositories for FedRAMP PMO and customer review.

Supports the execution and completion of FedRAMP annual assessments, including analysis and remediation of findings, support gathering/management of audit evidence, and finalization of Security Package documentation such as System Security Plan (SSP), Policies/Procedures, Security Assessment Plan (SAP), Risk Exposure Table (RET), and Security Assessment Report (SAR).

Keeping abreast of changes performed on Federal systems and providing notice of changes to FedRAMP and customers via the Significant Change Request (SCR) process.

Support and foster collaboration among stakeholders

Collaborate with system administrators, developers, product owners, and other stakeholders to integrate security measures into the system development life cycle.

Provide support during security incidents, including investigation, documentation, and reporting.

Identify areas of concern and provide recommendations for mitigations and/or remediation.

Continuous learning and growth

Stay on top of new technologies and how they can be used to help enhance the overall security posture of our offerings.

Stay current on industry best practices, emerging threats, and changes in security regulations.

Continually seek out new tools that could improve the way we work.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

TPMISSOUS government complianceFedRAMPFISMACMMCDoDSLED environmentsInformation securityCybersecurityCompliance standardsDISA SRGs/STIGSNIST 800-53Stakeholder managementCloud technologiesCloud architecturesGovernment clearanceCertified Information Systems Security ProfessionalCertified Information Security ManagerCertified Information Systems Auditor

Required

2-3 years of prior experience working as a TPM or ISSO in a similar industry.

Must have US government compliance experience (i.e. FedRAMP, FISMA, CMMC, etc); experience supporting DoD and SLED environments is a plus.

Knowledge of information security principles, practices, and technologies.

Experience participating in the delivery and oversight of a highly complex digital program, product, or business.

Experience implementing, evaluating, and assessing cybersecurity and compliance standards and controls such as FedRAMP, DISA SRGs/STIGS, and NIST 800-53.

Experience building and managing collaborative relationships with a complex set of stakeholders to achieve program goals.

Familiarity with advanced cloud technologies and architectures.

Must live in the United States, be a US Citizen, and have the ability to obtain a government clearance.

Preferred

Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) are a plus.