Full Job Description
As a Senior Federal Compliance Manager, you will help Secureframe build the future of software for the federal government. You will play a key role in shaping our AI, security, and compliance software specifically built for federal contractors and agencies, helping navigate authorization processes and meet the demands of FedRAMP and FedRAMP 20x.
The role will report to the VP of Cybersecurity and Compliance and will work closely with company leadership across product, business, and functional teams to ensure we are upholding compliance requirements as we continue to build software on the cutting edge of federal technology.
**Benefits**
- Medical, dental, and vision benefits for you and your dependent(s)
- Flexible PTO
- 401(k)
- Paid family leave
- Ground floor opportunity as an early member of the team
**What you'll do**
- Lead scoping, architecting, and isolating environments to ensure future product development is inherently meeting NIST requirements
- Lead internal FedRAMP assessments, including NIST 800-53 and FedRAMP 20x
- Enhance the Secureframe product to improve support for FedRAMP 20x requirements and continuous automation
- Collaborate with engineering and product teams, using your FedRAMP expertise to build the future of AI-driven software that helps solve common federal industry issues related to security and compliance
**Who we're looking for**
- 3+ years of leading assessments for federal cybersecurity frameworks, with deep expertise in FedRAMP
Bonus if you have experience with CMMC, StateRAMP, FISMA, or IL4/IL5 environments
- Demonstrated ability to interpret and apply NIST-based control requirements in real-world environments
- Proven experience scoping, leading, performing testing, and reporting on FedRAMP assessments (Moderate and/or High baselines)
- Strong understanding of the current FedRAMP authorization landscape, including the Agency ATO pathway and awareness of FedRAMP 20x modernization efforts
- You consider yourself a subject matter expert and have spoken, presented, or are comfortable doing so in relation to your FedRAMP and federal compliance expertise
- A self-starter who is driven, sees problems and manifests solutions, and takes action on things they believe can be improved
