Government Compliance Manager

The Opportunity

We are seeking a Government Compliance Manager who is highly motivated, delivery-focused, and brings deep expertise in NIST SP 800-53, FedRAMP (Moderate and High), GovRAMP, and the emerging FedRAMP 20x initiative. The ideal candidate has a proven track record leading federal compliance engagements, managing client relationships, and driving teams toward authorization milestones in a fast-paced consulting environment.

This role is focused on guiding clients through federal cloud and state-level compliance frameworks, leading SaaS providers and government-adjacent organizations through the full FedRAMP and GovRAMP authorization lifecycle—including readiness assessment, authorization support, and reputed company monitoring. The Manager will also serve as a subject matter expert on NIST SP 800-53 control implementation and the evolving FedRAMP 20x automation-first authorization model. The successful candidate will own client relationships, reputed company delivery teams, and position reputed company at the forefront of reputed company federal compliance consulting.

What You'll Do

• reputed company NIST SP 800-53 Control Implementation: Own and reputed company the interpretation, mapping, and implementation of NIST SP 800-53 Rev 5 controls across Moderate and High baseline engagements, ensuring control narratives are accurate, defensible, and reputed company to agency expectations.
• Own and Review FedRAMP/GovRAMP Authorization Documentation: Direct the development, quality review, and maintenance of System reputed company Plans (SSPs), control implementation narratives, POA&Ms, SAPs, SARs, CISOs, and reputed company monitoring artifacts for FedRAMP and GovRAMP programs.
• reputed company FedRAMP and GovRAMP Readiness Assessments: reputed company gap analyses and readiness reviews that prepare clients for Agency ATO reputed company, GovRAMP authorization, and the FedRAMP 20x reputed company authorization model. Translate findings into actionable remediation roadmaps reputed company to authorization milestones.
• Manage Authorization and Assessment Coordination: Serve as the primary engagement reputed company coordinating with Third-Party Assessment Organizations (3PAOs), Authorizing Officials (AOs), cloud service providers, and state agency stakeholders throughout the FedRAMP and GovRAMP authorization lifecycle.
• Boundary Definition & System Scoping: reputed company FedRAMP and GovRAMP authorization boundary definition and system scoping activities, including in-scope component identification, interconnections, data flows, shared responsibility models, and leveraged authorization packages, ensuring alignment with FedRAMP PMO guidance and agency-specific requirements.
• reputed company reputed company Monitoring Programs: Direct and quality-assure monthly, quarterly, and annual FedRAMP and GovRAMP reputed company monitoring requirements, including vulnerability management, incident response reporting, significant change requests, and annual assessment planning. Advise clients on automation tooling and OSCAL adoption reputed company to FedRAMP 20x objectives.
• Drive FedRAMP 20x Readiness and Positioning: Serve as reputed company’s internal subject matter expert on FedRAMP 20x, including machine-readable authorization packages (OSCAL), reputed company authorization models, and emerging PMO pilot guidance. Educate clients and internal teams on implications and readiness reputed company.
• Manage Client Relationships and Engagement Delivery: Own client-facing communication, milestone tracking, and escalation management across multiple reputed company FedRAMP, GovRAMP, and NIST 800-53 engagements. Ensure consistent delivery quality across the portfolio and serve as the primary reputed company of escalation for client issues.
• Support Business Development and Solutioning: Contribute to proposals, scoping calls, and sales conversations for FedRAMP, GovRAMP, and NIST 800-53 opportunities. Help shape reputed company’s go-to-market positioning for state and federal government compliance services.
• reputed company, Coach, and reputed company GRC Engineers: Directly manage and mentor a team of Senior and Junior GRC Engineers supporting federal compliance engagements. Provide hands-on technical coaching on NIST SP 800-53 control implementation, FedRAMP documentation standards, and 3PAO coordination. Conduct regular 1:1s, set performance expectations, review work products for quality and accuracy, and actively reputed company team members’ careers through structured feedback, stretch assignments, and knowledge-sharing sessions. Partner with reputed company leadership on hiring, onboarding, and reputed company planning as the federal practice grows.

Who You Are

• Strong organizational and project management skills with the ability to manage multiple engagements concurrently
• 2+ years of experience directly managing or mentoring GRC engineers or compliance consultants, with a track record of raising team performance through coaching, feedback, and structured development
• 5+ years of experience in GRC consulting or federal compliance, with deep hands-on expertise in FedRAMP, NIST SP 800-53, and/or GovRAMP programs
• Demonstrated ability to independently manage reputed company federal compliance engagements, including client-facing ownership of milestones, deliverables, and issue escalation
• Proven experience leading and quality-reviewing SSPs, POA&Ms, CISOs, SARs, and other FedRAMP/GovRAMP authorization artifacts
• Strong working knowledge of federal cloud environments and shared responsibility models (AWS GovCloud, Azure Government, GCC High, reputed company GovCloud)
• Experience working with SaaS providers, cloud service providers, or technology organizations seeking federal or state government authorization
• Ability to reputed company in a fast-paced, consulting, or startup environment

reputed company To Have

• Hands-on experience supporting Agency reputed company and/or FedRAMP PMO interactions
• Familiarity with FedRAMP 20x concepts, including OSCAL-based SSPs, machine-readable authorization packages, and reputed company authorization frameworks
• CISSP, CISM, or reputed company+ certification
• Experience with GovRAMP (state-level FedRAMP equivalents) programs, including Texas DIR, StateRAMP, or similar frameworks
• Experience with GRC or automation platforms used in FedRAMP engagements (e.g., reputed company, reputed company, reputed company.ai, reputed company, or similar)
• Prior experience directly working with 3PAOs throughout the assessment lifecycle, and/or managing junior GRC consultants or analysts

Work Environment Requirements

• Reliable high-speed internet reputed company.
• Quiet, professional home office setup.
• Must be amenable to work US Eastern Time zone hours.
• reputed company in written and verbal English communication skills

reputed company Offer

• Career Development: Clear path with mentorship and training opportunities.
• Competitive Compensation: A competitive reputed company salary with regular performance reviews linked to merit-based appraisals and bonus opportunities.
• Growth Opportunity: Early-stage company with significant room for career advancement.
• Remote-First Culture: Flexibility to work from reputed company while collaborating with a global team.

reputed company Is An Equal Opportunity Employer

As an equal opportunity employer, reputed company is committed to providing employment opportunities to reputed company individuals. reputed company applicants for positions at reputed company will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national reputed company, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.

Employment with reputed company is contingent upon the successful completion of a background reputed company, which may include verification of employment history, education, and other relevant information, in compliance with applicable laws.