Senior GRC Engineer – CMMC/FedRAMP
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior GRC Engineer role focusing on FedRAMP compliance and security frameworks at a startup. Leading initiatives and guiding clients in achieving compliance standards.
Responsibilities:
- Interpret and Apply FedRAMP Requirements: Analyze and apply NIST SP 800-53 controls, FedRAMP baselines, and agency-specific requirements to ensure client compliance.
- Develop and Maintain FedRAMP Documentation: Author and maintain System Security Plans (SSPs), control implementation narratives, POA&Ms, SAPs, SARs, and continuous monitoring artifacts.
- Conduct FedRAMP Readiness Assessments: Perform gap analyses and readiness reviews to prepare organizations for JAB or Agency ATO pathways.
- Support Authorization and Assessment Activities: Coordinate with Third-Party Assessment Organizations (3PAOs), cloud service providers, and government stakeholders throughout the FedRAMP lifecycle.
- Boundary Definition & Scoping: Lead CMMC/FedRAMP authorization boundary definition and system scoping activities.
- Manage Continuous Monitoring Programs: Oversee FedRAMP continuous monitoring requirements, including vulnerability management, incident response reporting, and change control.
- Lead FedRAMP Engagements: Manage multiple concurrent client projects, ensuring milestones, deliverables, and quality standards are consistently met or exceeded.
- Support CMMC and NIST 800-171 Compliance Efforts: Assist defense contractors with interpreting CMMC 2.0 and NIST SP 800-171 controls.
Requirements:
- 5+ years of experience in GRC, with deep exposure to FedRAMP, NIST SP 800-53, and federal compliance programs
- Working knowledge of CMMC 2.0 and NIST SP 800-171 requirements
- 3+ years of experience leading or mentoring a small team
- Experience authoring and reviewing SSPs, POA&Ms, and assessment artifacts
- Familiarity with federal cloud environments (AWS GovCloud, Azure Government, GCC High)
- Experience working with SaaS providers, federal contractors, or regulated technology organizations
- Ability to thrive in a fast-paced, consulting or startup environment.
Benefits:
- Career Development : Clear path with mentorship and training opportunities
- Technical Training : Comprehensive onboarding on security and compliance frameworks
- Competitive Compensation: A competitive base salary with regular performance reviews linked to merit-based appraisals and bonus opportunities.
- Growth Opportunity : Early-stage company with significant room for career advancement.
- Remote-First Culture : Flexibility to work from anywhere while collaborating with a global team.
Similar Jobs
Compliance Internship
Compliance Intern at VSP Vision assisting with compliance and privacy activities. Gain practical experience in auditing, regulatory analysis, and more.
Compliance & QC Specialist
Compliance & QC Specialist working with a focused compliance team in a residential mortgage banker. Handling QC, licensing operations, and advertising compliance reviews.
Principal GRC Engineer
Principal GRC Engineer leading compliance and risk management initiatives at Outseer. Collaborating with teams to implement strategy and ensure adherence to regulations and standards.
Regulatory Advisor – Food & Non-Food
Regulatory Advisor ensuring compliance of product information with legislation for food and non-food sectors. Providing risk-based advice and supporting product launches in a fully remote position.
Director, Compliance
Director of Compliance overseeing compliance for a telehealth startup. Ensuring regulatory adherence and integrity in mental health care services.
Senior Payments & Compliance Analyst
Senior Payments & Compliance Analyst at Leap ensuring compliance across SaaS platform and embedded payments. Collaborating with various teams to drive initiatives while managing risks and operational execution.
Associate Director – NERC O&P and CIP Compliance
NERC Operations & Planning compliance expert advising energy provider clients on regulatory standards. Lead compliance programs and assessments for utility operations within the electric grid.
Vice President – Regulatory Reform
Vice President leading IREC’s Regulatory Team to develop strategies for regulatory best practices in clean energy. Driving initiatives to enhance equity and access in the energy transition.
Compliance Intern, Summer 2026
Compliance Intern supporting key operational and regulatory initiatives within a fast-paced insurtech environment. Gaining real-world experience in compliance, legal, or insurance.
Chief Compliance Officer
Chief Compliance Officer at zerohash overseeing compliance program for the UK and managing the Compliance team. Leading compliance, regulatory, and licensing processes within the UK.
Healthcare Compliance Coordinator, English & Spanish
Compliance Coordinator ensuring credentialing and compliance operations remain documented for healthcare aides and therapists. Requires bilingual fluency in English and Spanish with strong organizational skills.
Director of Compliance Testing
Director of Compliance Testing overseeing compliance testing for risk management at Origin Bank. Developing and executing a comprehensive risk-based compliance program while supervising a team.
Compliance Coordinator
Regulatory and Compliance Coordinator assisting Stride Inc. with grants and contracts activities. Responsible for compliance reporting, submissions, and archival activities related to workforce investments.
Client Engagement Ops Analyst – Regulatory Risk Management
RRM Specialist managing a portfolio of regulatory and risk-sensitive client cases. Collaborating with Legal and Compliance teams to meet case handling standards in a remote environment.
Compliance Generalist
Compliance Generalist supporting compliance operations at SEC-registered investment adviser managing $1B in assets. Engaging in compliance policies and developing systems as needed.
Risk and Compliance Officer
Risk and compliance management intern supporting RATP Solutions Ville in addressing urban challenges. Collaborating on risk management, compliance, and internal control activities.
Compliance Manager
Manager of Compliance overseeing quality and regulatory activities for a Software as a Medical Device organization. Leading a compliance team and ensuring adherence to various regulations and standards.
Regulatory Affairs Specialist
Regulatory Affairs Specialist supporting compliance and quality reporting for Radiology, Anesthesia, and other specialties. Collaborating with Operations, Coding, and Business Intelligence teams to ensure regulatory readiness.
Senior Health and Safety Compliance Specialist
Senior Health and Safety Compliance Specialist at EHS Support leading compliance projects and mentoring. Responsible for H&S training, auditing, and regulatory reporting across various sectors.
Payer Compliance Specialist I
Payer Compliance Specialist analyzing allowed claims amounts and resolving payer issues at US Anesthesia Partners. Requirements include revenue cycle experience and healthcare billing knowledge.