Title: Program Manager

Location: Remote

Department Name

Description

ARDX is seeking highly motivated, organized, forward looking and adaptable Security Program Manager to lead a team of security assessment professionals to implement and evolve CMS’ security controls assessment program. This is a dynamic environment requires agility to evolve, document and stabilize the assessment methods, processes and capabilities that will leverage your considerable expertise in compliance frameworks and policy support. Leading a key element of the customers overall security program requires a firm understanding of the CMS environment, and the ability to communicate and coordinate with a diversity of systems owners and stakeholders and help to evolve the compliance program. If you are looking for a position with flexibility in your primary work location, supporting a leading-edge customer, then this could be the job for you. This position supports the Centers for Medicare & Medicaid Services.

Duties:

• Lead the assessment lifecycle, from initial planning, scheduling, communications with systems owners and related stakeholders through to final reporting.
• Manage all deliverables and support quality assurance processes.
• Partners with our clients and systems owners across the organization to communicate and implement new security standards, policies and practices and to make continual improvements and increase the effectiveness of security programs.
• Participates in the planning, development and implementation of staff training.
• Works with the client and internal organizations to establish reliable data associated with critical goals or other key performance indicators that help the client reach their business objectives.
• Coordinates resources and ensures adequately security and technology coverage.
• Analyzes effectiveness, productivity and profitability and makes recommendations and/or changes as appropriate.
• Coaching and mentoring and formally evaluating the performance of direct reports.
• Handles employee complaints, grievances and investigations.
• Develops and maintain plans for the effective deployment of security staff and programs throughout the program through combinations of staffing, technology, training, education and awareness.
• Develops and updates operational security program documentation. This includes but is not limited to policies, procedures and training documents.
• Ensures timeliness and quality of all deliverables.

Required Qualifications:

• 15+ years of experience with information assurance or Cybersecurity
• Expertise in federal regulations and security compliance requirements for civilian federal agencies (FISMA, NIST 800 series, Office of Management and Budget A-130, FedRAMP, etc.)
• Conducting security control assessments using NIST SP 800-53, including preparation of complete authorization packages
• ISSP, CISA or CISM certification
• Experience in an organization with CMMI Level 4 or 5 appraisal is an advantage
• Experience with supporting CMS and system security initiatives

EOE AA/M/F/Vet/Disability