Manager - Cyber Compliance (FedRamp/CMMC)

Manager - Cyber Compliance (FedRamp/CMMC)

Join to apply for the Manager - Cyber Compliance (FedRamp/CMMC) role at RSM US LLP.

We are the leading provider of professional services to the middle market globally. Our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are key to our culture and talent experience, enabling us to be compelling to our clients. We offer an environment that inspires and empowers you to thrive both personally and professionally. There's no one like you, and that's why there's nowhere like RSM.

FedCyber Manager - Security, Privacy, and Risk

To address the critical needs of our clients, RSM US LLP has established the Security, Privacy, and Risk group, consisting of over 300 professionals dedicated to cybersecurity. Our experienced consultants help clients prevent, detect, and respond to security threats impacting their critical systems and data. We serve diverse industries and are relied upon for expertise in security testing, architecture, governance, compliance, and digital forensics.

We seek a Manager to join our Security, Privacy & Risk practice, focusing on Government Contractors serving commercial entities with an emphasis on cybersecurity frameworks and data protection. The Manager of FedCyber will oversee cybersecurity services delivery, understanding risks related to cyber regulatory expectations impacting government contractors serving defense and civilian agencies. This role involves helping organizations establish effective data protection programs to safeguard critical assets.

Candidates should possess skills including overseeing cybersecurity governance assessments (e.g., FedRAMP, FISMA, CMMC, MARS-E), vulnerability assessments, penetration testing, and incident response. Experience in managing teams deploying SIEM, DLP, and Identity Management solutions is highly desirable.

Responsibilities include:

• Overseeing delivery and management of cybersecurity engagements and teams, ensuring high-quality work products.
• Managing and growing key client accounts to facilitate their cyber agenda transformation.
• Building strong client relationships through effective communication.
• Supporting new business development activities.
• Managing cybersecurity governance and compliance assessments against standards like FISMA, FedRAMP, CMMC, MARS-E, NYDFS, HIPAA/HITECH, and NERC/CIP.
• Assisting clients in designing and implementing cybersecurity remediation strategies.
• Articulating findings clearly to senior management and clients.
• Identifying improvement opportunities for clients.

Required qualifications:

• Bachelor's degree in IT, Computer Science, Cybersecurity, or related field.
• 5 to 7+ years of experience in cybersecurity governance and compliance consulting, or equivalent academic experience with an advanced degree.
• Certifications such as CISSP, CISM, CISA, CCP, or CCA.
• Willingness to travel up to 30% to client sites.
• Technical expertise in network/infrastructure, application/database design, IT governance, incident response, and security components.
• Familiarity with standards like FedRAMP, CMMC, NIST CSF, and GLBA.
• Strong interpersonal skills and experience in professional services or large consultancy environments.

We offer a competitive benefits package, flexible schedules, and a commitment to diversity and inclusion. For more details, visit our benefits page.

RSM is an equal opportunity employer. Accommodation for applicants with disabilities is available upon request. We do not hire entry-level candidates requiring sponsorship now or in the future. Salary range: $107,000 - $214,500, with potential discretionary bonuses based on performance.

Additional Details

• Employment type: Full-time
• Job function: Legal
• Industries: Accounting, Financial Services, Business Consulting