GRC Program Manager, US Government Compliance

162 000 - 310 000$

Формат работы

hybrid

Тип работы

fulltime

Английский

Страна

Релокация

Вакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:

TL;DR

GRC Program Manager (US Government Compliance): Achieving USG ATOs and compliance frameworks including FedRAMP and agency-specific for hirify.global products with an accent on designing, documenting, and implementing security controls. Focus on driving ATO processes, collaborating with engineering teams, and acting as SME during audits.

Location: Based in Washington, DC with hybrid work model of 3 days in the office per week. Offer relocation assistance to new employees.

Salary: $162K – $310K + equity

Company

hirify.global is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity.

What you will do

Drive the ATO process for FedRAMP and multiple government clients in restricted environments with minimal oversight.
Collaborate with engineering teams to interpret security requirements and implement controls balancing compliance and operations.
Create documentation including System Security Plans, risk assessments, and architecture diagrams.
Act as subject matter expert during audits and assessments.
Refine processes to improve efficiency and quality of compliance efforts.

Requirements

Proven experience obtaining and maintaining FedRAMP ATO and agency-specific ATOs in highly restricted environments.
Deep understanding of USG security frameworks and policies (e.g., NIST, RMF, FedRAMP).
Ability to communicate technical concepts to diverse audiences including engineers and non-technical stakeholders.
Exceptional technical program management skills for large complex programs under pressure.
Based in Washington, DC (hybrid model).

Nice to have

Active US security clearance.
5+ years of compliance experience in information, data, infrastructure, or network security.
Familiarity with cloud platforms (Azure, AWS), Kubernetes, Terraform.
Strong knowledge of security concepts like authentication, encryption, vulnerability management, audit logging.
Ability to thrive in dynamic, ambiguous environments.

Culture & Benefits

Collaborative and execution-driven culture focused on mission outcomes.
Hybrid work model with 3 office days per week.
Relocation assistance for new employees.
Equity offered as part of compensation.
Commitment to equal opportunity employment and reasonable accommodations.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →