Saviynt

Director, Information Security– FedRAMP

Atlanta, Georgia, United States

Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Information Security, Cybersecurity, Cloud Security, Identity and Access ManagementIndustries

Position Overview

  • Location Type: Remote
  • Employment Type: Full-Time
  • Salary: Not Specified

Saviynt’s Enterprise Identity Cloud helps modern enterprises scale cloud initiatives and solve the toughest security and compliance challenges in record time. The company brings together identity governance (IGA), granular application access, cloud security, and privileged access (PAM) to secure the entire business ecosystem and provide a frictionless user experience. The world’s largest brands trust Saviynt to accelerate digital transformation, empower distributed workforces, and meet continuous compliance.

The Director, Information Security, reports into Information Security leadership and will lead various Technical and Governance, Risk and Compliance (GRC) efforts as they relate primarily to the FedRAMP Program. The candidate will possess the ability to execute, scale, and continuously evolve the InfoSec and GRC functions to maximize the impact and oversight across the organization. The candidate must be comfortable managing projects in an Agile environment. The candidate should be familiar with policy and compliance requirements, including policy documentation and system requirements to successfully respond to potential audits.

Requirements

  • Experience leading FedRAMP Info Sec and Compliance related activities
  • Ability to execute, scale, and continuously evolve InfoSec and GRC functions
  • Familiarity with policy and compliance requirements (including policy documentation and system requirements)
  • Comfortable managing projects in an Agile environment
  • Knowledge of NIST CSF and RMF frameworks
  • Experience with System Security Plans (SSP)
  • Experience with FedRAMP audit work
  • Experience drafting and updating security documentation (policies, guidance documents, etc.)
  • Working knowledge of ISO 27001, PCI-DSS, SOC 1, SOC 2 (a plus)

Responsibilities

  • Serve as the lead for Saviynt’s FedRAMP Info Sec and Compliance related activities.
  • Take Saviynt through the FedRAMP certification and re-recertification journey.
  • Develop System Security Plans (SSP), drive FedRAMP audit work with support from cross-functional team members.
  • Lead monthly ConMon discussions, especially the technical aspects.
  • Review security documentation/artifacts such as audit reports, gap analysis reports, POA&Ms, etc.
  • Serve as the Governance POC both internally and externally.
  • Identify governance or compliance requirements, assess risks, review required forms.
  • Serve as a liaison across cross-functional teams to help achieve Info Sec objectives.
  • Proactively work with cross-functional peers to establish InfoSec requirements and expectations, so that compliance checks provide assurance for implemented controls.
  • Accountable for the execution of various compliance assessments throughout the year, primarily FedRAMP related audits.
  • Draft and update key security documentation including policies, guidance documents, Contingency Plan, Incident Response Plan, etc.
  • Help automate GRC inefficiencies through automation and improved workflows.
  • Perform vulnerability scanning and provide remediation guidance as needed.
  • Support customer requests as they pertain to Compliance queries and to other Information Security questions, with the support of technical Info Sec members.
  • Develop and update Policies, Standards and Procedures per the organization’s policy framework.
  • Establish and lead risk management activities, including identification of risk and recommended mitigations; track and manage risks and issues from identification.

Application Instructions

  • Not specified in the provided text.

Skills

FedRAMP
InfoSec
GRC
Policy Documentation
System Security Plans (SSP)
NIST CSF
RMF
Agile Project Management
ISO 27001
PCI-DSS
SOC 1
SOC 2

Saviynt

Cloud-based identity security and access governance

About Saviynt

Saviynt provides a cloud-based platform focused on identity security and access governance for businesses. Its services include identity governance and administration, third-party access governance, and cloud privileged access management, all aimed at helping organizations manage and secure digital identities, including those of employees and vendors. The platform features automated workflows and tools that simplify identity lifecycle management, while offering visibility and analytics to help businesses stay audit-ready and reduce identity-related risks. Unlike many competitors, Saviynt emphasizes user-friendliness and ease of implementation, making it accessible for a wide range of clients from small businesses to large enterprises. The company's goal is to protect major brands and support their cloud and security initiatives through a subscription-based model that ensures ongoing revenue and investment in product development.

El Segundo, CaliforniaHeadquarters
2010Year Founded
$165.4MTotal Funding
DEBTCompany Stage
Enterprise Software, CybersecurityIndustries
1,001-5,000Employees

Benefits

Remote Work Options
Flexible Work Hours

Risks

Emerging identity security startups pose a threat to Saviynt's market share.
Rapid AI advancements may outpace Saviynt's current technological capabilities.
Data privacy and regulatory challenges could hinder global service expansion.

Differentiation

Saviynt offers a unified platform for cloud, enterprise, and big data security.
The AI-powered Intelligence Suite enhances decision-making in identity and access management.
Saviynt's user-friendly platform simplifies identity lifecycle management with automated workflows.

Upsides

Saviynt's recognition as a 2024 Gartner Customers' Choice highlights strong customer satisfaction.
Partnership with SPG expands cybersecurity capabilities and market reach.
Hiring industry experts strengthens Saviynt's leadership and product marketing efforts.

Land your dream remote job 3x faster with AI