Security and Compliance Auditor

As a Security and Compliance Auditor at Cadra, you will play a crucial role in maintaining and enhancing our client’s security and compliance posture. You will be responsible for evaluating, documenting, and ensuring adherence to various regulatory standards and frameworks, with a focus on FedRAMP. Your primary responsibilities will include:

Key Responsibilities:
1. Compliance Auditing: Conduct comprehensive audits to assess the company's compliance with relevant industry standards, including but not limited to FedRAMP, NIST, HIPAA, SOC and other regulatory requirements.
2. Documentation Writing: Create and maintain detailed documentation related to security policies, procedures, and compliance controls, ensuring they align with industry standards and best practices.
3. Risk Assessment: Identify security risks, vulnerabilities, and areas of non-compliance, and work collaboratively with cross-functional teams to develop and implement remediation plans.
4. FedRAMP Expertise: Leverage your expertise in FedRAMP to guide the company through the certification and authorization process, providing subject matter expertise and ensuring ongoing compliance.
5. Reporting: Prepare and deliver reports to executive leadership, highlighting audit findings, compliance status, and recommendations for improvement.
6. Collaboration: Collaborate closely with the client’s IT, development, and operational teams to ensure security and compliance requirements are integrated into all aspects of their products and services. Also work with the internal team at Cadra to ensure our reports and deliverables are high-quality.
7. Continuous Improvement: Stay updated on evolving security threats, compliance standards, and best practices, and recommend enhancements to our client’s security and compliance programs, as well as educate the team internally at Cadra.