CrawlJobs Logo

FedRAMP Program Manager

secondfront.com Logo

Second Front Systems

Location Icon

Location:
United States

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

140000.00 - 164000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Second Front Systems (2F) is seeking a detail-oriented and systems-driven FedRAMP Program Manager to join our mission-driven team. We are a fast-growing entrepreneurial company at the intersection of cutting-edge technology and national security, committed to accelerating secure software delivery for the U.S. Government. Unlike a traditional internal compliance role, this position is focused on process enablement, cross-functional alignment, and customer-facing support. You will help our customers navigate their FedRAMP authorization journeys by coordinating internal teams, external assessors, and partner organizations to ensure smooth, predictable progress.

Job Responsibility:

  • Partner with customers to understand their FedRAMP goals and provide program management support throughout their ATO process
  • Coordinate internal teams—engineering, customer success, security, and product—to align deliverables that support customer readiness
  • Ensure clarity on shared responsibility models by helping customers understand which controls they inherit and which they must own
  • Build and maintain program plans, trackers, timelines, and reporting to drive alignment across all stakeholders
  • Serve as the primary liaison between customers, third-party assessors, and external FedRAMP partners
  • Identify risks, blockers, and dependencies early and escalate as needed to protect timelines and outcomes
  • Support the creation of scalable enablement materials, such as documentation, playbooks, and repeatable processes
  • Educate internal teams on FedRAMP concepts, customer needs, and authorization workflows to drive prioritization and cross-functional clarity

Requirements:

  • Program or project management in cloud, SaaS, cybersecurity, or compliance
  • Customer-facing work such as Customer Success, Account Management, or advisory/consulting roles
  • FedRAMP, NIST 800-53, or government compliance frameworks (preferred)
  • 5+ years of program or project management experience
  • Familiarity with FedRAMP, NIST 800-53, or agency ATO processes
  • PMP, CSM, or similar certification a plus
  • Security certifications (CISSP, CAP, etc.) are helpful but not required
  • Have a strong interest in matters of national security
  • U.S. citizenship
  • Must reside in one of the approved hiring hubs: DC/Maryland/Virginia
  • Raleigh/Durham/Chapel Hill, NC
  • Denver/Colorado Springs, CO
  • Dallas/Fort Worth, TX

Nice to have:

  • PMP, CSM, or similar certification
  • Security certifications (CISSP, CAP, etc.)
What we offer:
  • Competitive Salary
  • 100% Healthcare, vision and dental coverage
  • 401(k) + 3% company contribution
  • Equity incentive plan
  • Tech + office supplies stipend
  • Annual professional development stipend
  • Flexible paid time off + federal holidays off
  • Parental leave
  • Work from anywhere
  • Referral Bonus

Additional Information:

Job Posted:
January 26, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
Second Front Systems - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for FedRAMP Program Manager

Senior Compliance Program Manager

We are seeking an experienced Senior Compliance Program Manager to lead our Fede...
Location
Location
United States , San Francisco
Salary
Salary:
116100.00 - 186500.00 USD / Year
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Technology, Cybersecurity, or a related field
  • A Master's degree or relevant experience with certifications (e.g., CISSP, CISM, PMP) are preferred
  • A minimum of 10 years of experience in compliance program management, with a focus on FedRAMP or similar regulatory frameworks
  • In-depth knowledge of FedRAMP, IRAP, ISMAP requirements, processes, and documentation, including the authorization process and continuous monitoring
  • Demonstrated experience in managing compliance audits and assessments, preferably with experience working with 3PAOs
  • Strong understanding of cloud computing technologies and security practices, particularly in a government context
  • Excellent project management skills, with the ability to manage multiple projects and priorities effectively
  • Strong analytical and problem-solving skills, with a keen attention to detail
  • Excellent communication and interpersonal skills, with the ability to engage and influence stakeholders at all levels
Job Responsibility
Job Responsibility
  • Oversee and manage the entire FedRAMP compliance lifecycle, from initial assessment through continuous monitoring
  • Develop and implement compliance strategies to meet FedRAMP requirements and maintain authorization
  • Prepare, maintain, and update all necessary documentation, including System Security Plans (SSPs), policies, procedures, and incident response plans
  • Ensure timely and accurate reporting of compliance status, issues, and risks to senior management and stakeholders
  • Develop and manage Plans of Action and Milestones (POAMs) to address identified compliance gaps and vulnerabilities
  • Track and monitor the progress of POAMs, ensuring timely resolution and reporting of status to stakeholders
  • Coordinate and manage internal and external audits and assessments to ensure compliance with FedRAMP standards
  • Act as the primary point of contact for third-party assessment organizations (3PAOs) and facilitate the audit process
  • Identify, evaluate, and mitigate risks associated with FedRAMP compliance
  • Develop and implement risk management plans to address potential compliance gaps
What we offer
What we offer
  • health and wellbeing resources
  • paid volunteer days
  • Fulltime
Read More
Arrow Right

FedRAMP Cloud Security Project Manager

Our FedRAMP Cloud Security Project Manager will be working on a highly functiona...
Location
Location
United States , North Wilkesboro
Salary
Salary:
Not provided
infusionpoints.com Logo
InfusionPoints
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 5 years’ experience managing the developing of FISMA/FedRAMP System Security Plans for low, moderate and high impact IaaS, PaaS and SaaS solutions
  • 3+ years managing projects and/or programs
  • Experience with obtaining and maintaining compliance certifications such as FedRAMP preferred
  • Experience with cloud infrastructure and software development lifecycle preferred
  • Excellent decision-making, analytical and problem-solving skills
  • Results-Driven and have the courage and confidence to challenge the status quo
  • Organized Researcher with strong organizational, presentation, and customer research skills
  • Solid understanding of Amazon Web Services (AWS), and Azure Cloud Security experience
  • Strong knowledge of technology and security topics including network and application security, infrastructure hardening, security baselines, web server, and database security
  • Outstanding interpersonal and communication skills, both verbal and written
Job Responsibility
Job Responsibility
  • Stay current on US policy related to IA, acquisition and computer network defense
  • Create and publish technical documentation associated with FedRAMP assessment packages
  • Work across our customers' environments to manage, provide Subject Matter Expertise in leading, designing, building, and documenting FedRAMP security controls for our customers in AWS and Azure environments
  • Work with our customers to guide them to achieve and maintain a FedRAMP Authority to Operate (ATO)
What we offer
What we offer
  • Competitive compensation and benefits package
Read More
Arrow Right

Director, GRC, Privacy, & Trust

We’re looking for an experienced security leader to grow and mature the Governan...
Location
Location
United States; Canada
Salary
Salary:
258000.00 - 350000.00 USD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years leading GRC and privacy programs, including experience with international audits, risk management frameworks, and privacy regulations
  • 5+ years experience managing individual contributors as well as experience managing other managers
  • Proven expertise in policy development, risk assessment, compliance monitoring, and privacy program management
  • Passion for fostering psychological safety and stability in complex compliance environments
  • Hands-on experience with various information security and privacy compliance frameworks such as SOC 2 Type II, ISO 27001, FedRAMP, CMMC, GDPR, and CPRA
  • Experience with security and privacy automation tools for compliance monitoring and knowledge management
  • Experience leading company-wide compliance initiatives, securing buy-in for security and privacy policies, and leading cross functional programs
  • Experience partnering on customer contracts, including security addendums and compliance terms, balancing customer expectations and business needs
  • Exceptional written and verbal communication skills with ability to communicate effectively with executives, legal counsel, and stakeholders
  • Experience managing third-party risk, vendor assessments, and external auditors
Job Responsibility
Job Responsibility
  • Lead and mentor the GRC and Privacy Engineering team, fostering career growth and high performance
  • Drive the organization's risk management strategy and oversee the implementation of risk assessment frameworks
  • Develop and maintain information security and privacy policies, ensuring regular reviews and updates
  • Establish strong partnerships across departments to align on security and compliance initiatives
  • Engaging with customers, in partnership with Sales and Legal, to represent security in RFPs, due diligence, and security assessments
  • Oversee 1Password’s various information security and privacy certification processes ensuring compliance with relevant frameworks and regulations
  • Monitor and report on compliance metrics and program effectiveness
  • Partner with legal and security teams to assess and mitigate business, technical, and regulatory risks
  • Oversee relationships with external auditors and consultants
What we offer
What we offer
  • Maternity and parental leave top-up programs
  • Generous PTO policy
  • Four company-wide wellness days
  • Company equity for all full-time employees
  • Retirement matching program
  • Free 1Password account
  • Paid volunteer days
  • Employee-led inclusion and belonging programs and ERGs
  • Peer-to-peer recognition through Bonusly
  • Fulltime
Read More
Arrow Right

Staff Product Manager, Platform & Infrastructure

We are hiring a Staff Product Manager to own and execute the Cloud Platform & In...
Location
Location
United States , San Mateo
Salary
Salary:
170000.00 - 220000.00 USD / Year
skydio.com Logo
Skydio
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years product experience shipping cloud platform, infrastructure, or developer-facing products
  • 4+ years in senior/lead product roles delivering large, cross-functional technical programs
  • Demonstrated track record of turning customer pain into a prioritized roadmap and driving cross-functional programs to completion
  • Deep federal/regulatory domain knowledge or field experience working with federal/defense/regulatory customers (FedRAMP, CJIS, DoD RMF, or similar)
  • Track record of shipping platform features that materially improved reliability, scalability, security, and/or cost
  • Strong program management and stakeholder influence skills
  • Excellent written and verbal communication skills
  • experience briefing executives and external auditors
Job Responsibility
Job Responsibility
  • Customer & sales engagement: Run discovery with government and commercial customers
  • Own the platform roadmap for Cloud Platform & Infrastructure
  • Productize and deliver Skydio On-Prem
  • Drive compliance and certification programs (FedRAMP, CJIS, and other regulatory frameworks)
  • Release & expectation management
  • Compliance enablement
  • Evangelize & enable
What we offer
What we offer
  • Equity in the form of stock options
  • Comprehensive benefits packages
  • Relocation assistance
  • Group health insurance plans
  • Paid vacation time
  • Sick leave
  • Holiday pay
  • 401K savings plan
  • Fulltime
Read More
Arrow Right

Staff Technical Program Manager

We are seeking a highly skilled and passionate Technical Program Manager to own ...
Location
Location
India , Hyderabad; Karnataka
Salary
Salary:
Not provided
teradata.com Logo
Teradata
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s degree in Computer Science, Engineering, or related technical discipline
  • 8+ years of experience managing complex, global software or cloud engineering programs
  • Deep understanding of software and systems architecture, development lifecycles, and cloud-based delivery models (SaaS, PaaS, IaaS)
  • Proven track record of delivering large-scale technical initiatives using Agile or SAFe methodologies
  • Foundational AI skills and the ability to understand how AI can be applied to improve outcomes in your area of expertise
Job Responsibility
Job Responsibility
  • Shepherd ideas from concept into development, ensuring the value propositions and business models are clear and validated, following our lifecycle process
  • Work with Product Managers, Product Owners, UX, Architects, Engineering Managers and Scrum Masters to ensure there is a properly prepared backlog
  • Capacity planning based on historical velocity
  • Ensure the team is staffed and funded for success, and operates within budget
  • Facilitate quarterly and release planning, scrum-of-scrums, and program reviews
  • Support the team with data views of timelines, completion, quality, and tech debt
  • Coordinate system and solution demos
  • Collaborate with Customer Support, Services, Marketing, and Sales to ensure customers adopt and are delighted by our releases, with issues quickly resolved
  • Identify and rapidly mitigate risk and uncertainty
  • Eliminate/manage impediments, risks and dependencies with a focus on Lean flow
What we offer
What we offer
  • We prioritize a people-first culture
  • We embrace a flexible work model
  • We focus on well-being
  • We are committed to actively working to foster an inclusive environment that celebrates people for all of who they are
  • Fulltime
Read More
Arrow Right

Cyber-Security Technical Administrator

This position is for a Cybersecurity Technical Administrator supporting the ALTE...
Location
Location
United States , Alexandria
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Mid to senior level Cybersecurity Technical Administrator experience in a cloud environment
  • DoD 8570.01-M IAT level II certification is required
  • Resource must possess both Baseline and Computing Environment certification as defined in DoD Instruction 8570.01-M
  • Strong verbal and written communication skills
  • Understanding of DOD Risk Management Framework Assessment & Authorization (RMF A&A), FedRAMP, the DOD cloud provisional authorization (PA) process and the processes to successfully acquire and maintain an Authorization to Operate (ATO)
  • Working knowledge of the Federal Risk and Authorization Management Process (FedRAMP), cloud security information impact levels (IL), the differences between an ATO and P-ATO, the differences between a CSO and CSP, and the processes to successfully acquire, maintain and support DOD cloud accreditation
  • Experience automating routine administrative tasks desired
  • Understanding of network, storage, server and application technologies
  • Strong understanding of common cyber threat patterns, indicators of compromise and defenses
  • Working knowledge of DoD STIGs and IA Vulnerability Management (IAVM)
Job Responsibility
Job Responsibility
  • Serve as overall subject matter expert on Cybersecurity Technical Administrator technology and market capabilities/trends
  • Conduct security scans against the organization’s cloud-deployed infrastructure, produce and interpret compliance reports
  • Validate technical security controls are in place for operating systems, applications and network appliances, and recommend enhancements
  • Review proposed configuration changes for security impact
  • Operate endpoint-protection mechanisms, including high-level reporting and day-to-day administration activities
  • Work between technical and policy teams to implement, maintain and monitor technical security configuration controls, including: STIG’s, SRG’s and other industry security hardening guidance
  • Work between technical and policy teams to successfully implement and manage requirements for maintaining cloud P-ATO, ATO and security control inheritance capabilities
  • Collaborate with internal and external parties to transform high-level technical objectives into comprehensive technical requirements
  • Use results of vulnerability scans to determine vulnerabilities and develop operational plans to remediate or mitigate vulnerabilities as they are discovered
  • Install, operate and maintain Army Endpoint Security System
Read More
Arrow Right

Compliance Analyst

insightsoftware is seeking a detail-oriented and proactive Compliance Analyst to...
Location
Location
United States , Remote
Salary
Salary:
Not provided
insightsoftware.com Logo
insightsoftware
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information security, Cybersecurity, Computer Science, Risk Management, Legal Studies, Business Administration, or related field
  • Minimum 3+ years of experience in compliance program management, risk management, or information security roles, preferably in regulated industries or technology companies
  • Demonstrated experience responding to third-party risk assessments, security audits, customer security questionnaires, RFPs, and compliance due diligence requests
  • Working knowledge of regulatory frameworks and standards (e.g., ISO 27001, SOC 2 (Type II), NIST, FedRAMP, CMMC, PCI DSS, GDPR, CCPA), trade control regulations (EAR, ITAR), anti-bribery/corruption laws (FCPA, UK Bribery Act), and data privacy principles
  • A strong knowledge of at least one regulatory framework governing matters pertaining to data privacy, cybersecurity, trade compliance, or third-party risk management
  • Experience with third-party screening tools and vendor risk management platforms
  • Familiarity with GRC or data protection management platforms (e.g., OneTrust, ServiceNowMetricStream)
Job Responsibility
Job Responsibility
  • Support the development, implementation, and maintenance of a global compliance program, including trade compliance, anti-bribery/corruption, anti-trust, and business ethics
  • Conduct secondary screening of third parties (vendors, partners, customers) , and assess potential matches against government watchlists of denied, debarred, sanctioned, or restricted parties to ensure compliance with applicable trade compliance, export control and sanctions regulations (e.g., U.S. Department of the Treasury Office of Foreign Assets Control ("OFAC"), U.S. Department of Commerce Bureau of Industry and Security ("BIS"), U.K. Office of Financial Sanctions Implementation ("OFSI"), European Union, and United Nations)
  • Assist with export classification determinations and licensing requirements for software products and services, including evaluation of Export Control Classification Numbers ("ECCNs")
  • Support the company's compliance with applicable data protection regulatory frameworks (e.g., GDPR, CCPA)
  • Support the Corporate Counsel, Data Privacy, AI, Cybersecurity with data protection initiatives and obligations including data mapping exercises, processing activity records, and privacy impact assessments, and coordinate responses to data subject access requests ("DSARs") and privacy-related inquiries
  • Support privacy management tools and platforms for consent management and privacy workflow automation
  • Partner with company counsel, InfoSec, and other stakeholders with compliance audits, data privacy questionnaires, and third-party risk assessment processes including vendor due diligence and ongoing monitoring
  • Support risk and control self-assessments ("RCSA"), audit management, and remediation tracking
  • Collaborate with stakeholders including the Chief Information Security Officer ("CISO") and the team to quantify, monitor, and report on security and compliance performance
  • Maintain GRC platforms (e.g., ServiceNow, Archer, MetricStream) to track compliance activities, risks, and controls
Read More
Arrow Right
New

Director, GRC

Founded in 2018 with co-headquarters in Dublin and Boston, Tines powers some of ...
Location
Location
United States
Salary
Salary:
250000.00 - 265000.00 USD / Year
tines.com Logo
Tines
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of progressive experience in GRC, information security, or risk management
  • At least 5 years in a leadership role
  • Proven track record leading FedRAMP authorization efforts from planning through ATO
  • Deep expertise in multiple compliance frameworks: SOC 2, ISO 27001, FedRAMP, NIST 800-53
  • Experience building and scaling GRC teams and programs in high-growth SaaS or technology companies
  • Strong executive presence with ability to influence C-suite and Board-level stakeholders
  • Demonstrated success managing complex, multi-workstream compliance programs with competing priorities
  • Exceptional communication skills with the ability to translate technical compliance requirements into business value
  • Strategic mindset with hands-on execution capability
  • Experience partnering with Sales, Engineering, Product, and Legal teams to operationalize compliance
Job Responsibility
Job Responsibility
  • Define and execute Tines' multi-year GRC strategy aligned with business objectives
  • Own the compliance roadmap, prioritizing certifications and frameworks based on customer needs and revenue impact
  • Serve as executive sponsor for all compliance programs, providing visibility and reporting to C-suite and Board of Directors
  • Build business cases for compliance investments, demonstrating ROI and competitive advantage
  • Monitor evolving compliance landscape, anticipating regulatory changes
  • Lead, mentor, and grow a team of GRC professionals
  • Scale the team strategically as Tines grows
  • Foster cross-functional collaboration with Engineering, Product, Sales, Legal, IT, Security, and HR teams
  • Drive Tines' FedRAMP authorization to successful completion
  • Establish ongoing FedRAMP continuous monitoring and reauthorization processes
What we offer
What we offer
  • Competitive salary
  • Startup equity & extended exercise window
  • Matching retirement plans
  • Home office setup
  • Private healthcare plans
  • 25 days annual leave
  • Extra company holidays
  • Generous parental leave programs
  • Flexibility in how and where you work
  • Phone and home Internet allowance
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy