Senior Federal Program Manager at LogRhythm

| Greater Boulder Area
Sorry, this job was removed at 11:59 a.m. (MST) on Monday, January 4, 2021
Find out who's hiring in Colorado.
See all Project Mgmt jobs in Colorado
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

About us;

LogRhythm is a Boulder-based security intelligence software company that empowers organizations around the globe to rapidly detect, respond to and neutralize damaging cyber threats. Globally the company has consistently been recognized as a market leader – including being placed in Gartner’s Magic Quadrant eight years running. We’ve earned a reputation as a company with a dynamic culture that’s committed to accelerated innovation cycles, thoughtful career development for our employees, and securing our customers from the most sophisticated cyber threats of the day.

Who we are looking for;

The Senior Program Manager for Federal is responsible for working across the organization to ensure requirements are understood, controls and ongoing monitoring are implemented correctly, and to drive continuous improvements within the FedRAMP, CMMC, and DISA programs. This role leverages technical, business, and interpersonal skills to deliver cloud and product compliance certifications which are critical to meet the high security and compliance standards of our customers.

A primary responsibility will be managing the LogRhythm FedRAMP authorization project. In this role, you will partner with teams across the organization (Development, Cloud Engineering, Security, IT, Sales, Legal, etc.) to ensure requirements are understood and controls are implemented correctly.

The Senior Program Manager provides leadership for enterprise-wide Federal compliance initiatives which support and align to the CSO strategic roadmap.  You will be a liaison between cross-functional technical and non-technical resources and stakeholders so that all targets and requirements are met. 

You will work with internal and external stakeholders on security policy reviews, documentation, requirements identification and gathering, security control mapping, assisting project integration teams implement controls, and ensuring security findings are communicated and remediated timely.  You will support CSO and company-wide teams to develop and maintain corporate policies, standards, and procedures in alignment with ISO27001, NIST, and SOC2 frameworks and controls.

Here’s an overview of the responsibilities & challenges ahead;

  • Be the single point of contact for all things FedRAMP. 
  • Lead and work with teams (Security, Cloud, Product, Engineering, IT, HR, Legal, etc.) to implement FedRAMP requirements and to create required documentation.
  • Ensure technical documentation, e.g. System Security Plan (SSP) is maintained, using knowledge of security controls and audits, for technical architecture, operational and security processes.
  • Create and maintain documents needed for continuous monitoring of the FedRAMP program (such as Deviation Forms and Plans of Action and Milestones (POA&Ms).
  • Provide input to internal teams regarding implementation of FedRAMP and other security frameworks and how they impact product updates or organizational processes.
  • Oversee and build the relationships with the 3PAO, Federal agencies, sponsoring agency, and advisory partners
  • Demonstrate domain expertise in FedRAMP, NIST SP 800-53, NIST 800-171, and supporting Systems Security Assessment and Authorization (SA&A) for Federal Agencies.
  • Manage onsite assessments and coordinate with external stakeholders.
  • Collect security control implementation review results, penetration testing results, and vulnerability scan results for reporting to authorizing agencies.
  • Track and drive remediation of control deficiencies and gaps identified internally and externally.
  • Communicate with customers, stakeholders, and team leadership at all levels. 
  • Facilitate stakeholder meetings to provide updates, present ideas, and obtain feedback.
  • Drive technical, operational, and go-to-market readiness to achieve cloud compliance authorizations and product certifications on schedule.
  • Advise control owners in the development of remediation plans to meet the compliance and regulatory requirements, including identification of mitigating or compensating controls
  • Drive accountability for risk remediation with internal customers
  • Properly identify, remediate, communicate, or escalate technical and program risks
  • Assist Sales and Support teams with responding to Federal compliance RFI questions.

Required Skills:

  • 5-8 years Governance, Risk, and Compliance experience managing projects and programs such as FedRAMP, ISO27001, SOC 2, PCI, HIPAA
  • Experience leading FedRAMP initiative or an active member of a FedRAMP initiative in the past; demonstrated working knowledge in all phases of completing ATO packages.
  • Strong knowledge of security monitoring topics, encryption, vulnerability management, access management, risk management, and related operational topics & processes required.
  • SaaS or Cloud security experience required.
  • Experience at a Cloud Service Provider, technology / software firm, systems integrator, US Government agency, or security / compliance consulting firm
  • Strong written and oral communication with all levels from senior leadership to engineers
  • Demonstrated knowledge and experience with information security frameworks (FedRAMP, ISO27001/2, PCI DSS, SOC2, HIPAA, FISMA) and industry best practices (NIST, SANS, CIS)
  • Understanding of fundamental cloud computing concepts
  • Experience developing policies, processes, procedures, and security system documentation
  • Experience with technical documentation related to FIPS 199, NIST SP 800-37, NIST SP 800-53 REV 4, FISMA A&A, and continuous monitoring, and POA&M management.
  • Working knowledge of the software development life cycle (SDLC) for both Software and SaaS applications.

Workplace equality & inclusion are not just words or topics for LogRhythm, they are part of our core values, beliefs, and integral to our company culture. We hire the best of the best and do not discriminate based on race, gender, age, religion, sexual orientation, identity, or other personal factors. LogRhythm was built on the principals of innovation, dedication, creativity, and commitment. It is through these key areas we were able to grow as an equal and inclusive workplace, one where our employees feel respected and safe in.

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
    • GolangLanguages
    • JavaLanguages
    • PythonLanguages

Location

4780 Pearl East Circle, Boulder, CO 80301

An Insider's view of LogRhythm

How do your team's ideas influence the company's direction?

As a security-first company, our security teams have direct influence on the direction of the products and services we deliver to our customers and to the security market. Everybody has great ideas and experiences, and we want our employees to contribute and feel empowered by the impact they have on the company, our customers, and the greater good.

James Carder

Chief Security Officer & Vice President of Labs

What are LogRhythm Perks + Benefits

LogRhythm Benefits Overview

Free Food- Lunch every Friday is on us. And to get you through those other days, there’s Monday cinnamon rolls, fro-yo gatherings and plenty of birthday cake.

LoGiving- We are dedicated to giving back and empowering our employees, customers, and communities.

Wellness- We are competitive when it comes to wellness. Sign up for our activity competition and get a free fitness tracker. Discounted gym memberships, annual health screenings and flu shots are here for you, too.

While at work- On-site yoga, gym, pool bikes, ping-pong, foosball and weekly meditation. Or get outside on the Boulder Creek Path.

Employee referral program- We know the best people know the best people.

Health- Benefits include top-of-the-line health insurance and a generously funded HSA.

Work life balance- We mean it. Flex time off, 12 sick days, 9 company holidays and company-sponsored volunteering opportunities. Oh and take your birthday off — it’s policy.

Culture
Volunteer in local community
Our employees participate in a number of volunteer activities every year, such as the Pedal 4 Possible charity bike ride and Boulder Open Space cleanups.
Partners with Nonprofits
Every year, we run donation drives for Coats for Colorado and Community Food Share. We also participate in a number of other activities organized by our Logiving committee.
Friends outside of work
Eat lunch together
Intracompany committees
To support our community, LogRhythm created Logiving, a committee of LogRhythm employees across the company dedicated to giving back. To read about their work, visit logrhythm.com/about/logiving/
Daily stand up
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Diversity
Dedicated Diversity/Inclusion Staff
Hiring Practices that Promote Diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
LogRhythm employees can contribute up to $2700 annually to their FSA for the 2019-2020 plan year.
Disability Insurance
Disability insurance covers 60% of base weekly pay for short-term disability insurance and 60% of base monthly pay for long-term disability insurance.
Dental Benefits
Vision Benefits
Health Insurance Benefits
LogRhythm provides health insurance benefits.
Life Insurance
Life insurance is offered in $10,000 increments up to $1,000,000 or up to six times annual salary, whichever is less.
Pet Insurance
LogRhythm provides access to pet insurance.
Wellness Programs
LogRhythm's health and wellness programs include the bi-annual Biggest Logger competition and corporate discounts to certain fitness clubs.
Onsite Gym
Team workouts
LogRhythm's fitness offerings include an on-site gym, yoga classes, and the bi-annual Biggest Logger competition.
Retirement & Stock Options Benefits
401(K)
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Generous Parental Leave
LogRhythm provides up to 8 weeks of parental leave (and 12 weeks of FMLA) for the primary caretaker and the secondary caretaker.
Flexible Work Schedule
LogRhythm provides employees with a flexible work schedule, including flexible start and end times.
Remote Work Program
Our remote work program includes full-time remote work for specific positions, as well as the ability for on-site employees to work remotely as needed.
Family Medical Leave
Company sponsored family events
LogRhythm offers multiple family-oriented events every year, including Logtoberfest, Bring Your Child to Work Day, and Bring Your Dog to Work Day (DogRhythm).
Vacation & Time Off Benefits
Unlimited Vacation Policy
Paid Holidays
Paid Sick Days
LogRhythm offers paid sick days.
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Company outings at LogRhythm include Logtoberfest and summer happy hours.
Game Room
Stocked Kitchen
LogRhythm has fully stocked kitchens, including unlimited coffee, tea, soda, and sparkling water. There are also vending machines in each building.
Some Meals Provided
Happy Hours
Happy hours are hosted on occasion .
Parking
LogRhythm offers employees free on-site parking.
Pet Friendly
LogRhythm participates annually in Bring Your Dog to Work Day.
Recreational Clubs
LogRhythm sponsors office sports leagues, including softball and hockey.
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
LogRhythm encourages professional development, including by offering opportunities for on-site and virtual training.
Diversity Program
Lunch and learns
LogRhythm hosts lunch and learn meetings for employees throughout the company.
Cross functional training encouraged
Promote from within
Mentorship program
Our mentorship program includes leadership mentoring.
Online course subscriptions available

Additional Perks + Benefits

Flexible Paid Time Off, Birthdays required off. Free Food Fridays. Yoga and Meditation Classes. Foosball, Ping Pong and Arcade Games.

More Jobs at LogRhythm13 open jobs
All Jobs
Operations
Product
Sales
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView LogRhythm's full profileSee more LogRhythm jobs