Federal Compliance Lead / Federal GRC Manager

About The Position

Requirements

• Experience: 4–7+ years in GRC, Security Compliance, or Information Assurance.
• Framework Fluency: Deep, hands-on expertise with NIST 800-53 is required. Exposure to CMMC, SOC 2, or NIST 800-171 is highly valued.
• Operational Mindset: Demonstrated experience implementing controls, not just auditing or documenting them.
• Communication: Elite written communication and executive reporting skills; you can summarize complex risk postures for non-technical stakeholders.
• Citizenship: U.S. Citizenship is required to support federal compliance mandates.

Responsibilities

• The ATO Mission: You are the captain of our authorization journey. You will own the readiness roadmap, manage external consultants and assessors, and drive the remediation work required to achieve and sustain compliance.
• Governance & Translation: You will translate complex federal requirements into clear, actionable steps for technical teams. You will operationalize policies so that compliance becomes part of the DNA of our infrastructure and cloud environments.
• Risk & Vigilance: You will look around corners, conducting readiness reviews, managing POA&Ms, and validating that our controls are effective—not just on paper, but in practice.
• Cross-Functional Leadership: You will serve as a trusted advisor to the C-suite and Engineering leads, providing clear visibility into risks, blockers, and timelines.