Derived from job-description analysis by Serendipath's career intelligence engine.
Original posting from remoterocketship
Job Description: Lead global GRC strategy, enterprise risk management, and compliance operations
Own FedRAMP authorization, continuous monitoring, audits, assessments, and regulatory reporting
Drive compliance programs across frameworks including NIST, FISMA, ISO 27001, SOC 2, CMMC, HIPAA, PCI, and related standards
Partner cross-functionally with Security, Engineering, Product, Legal, and external stakeholders to embed compliance into business and product operations
Build scalable governance processes, policies, controls, and compliance automation capabilities
Support customer assurance, regulatory engagement, and public sector growth initiatives
Lead and mentor a global GRC and compliance team
Requirements: Bachelor's degree and 10+ years of experience in GRC, cybersecurity, compliance, and/or federal cloud authorization programs
Proven experience leading FedRAMP authorization and continuous monitoring initiatives
Strong knowledge of FedRAMP, NIST, FISMA, ISO 27001, SOC 2, and related frameworks
Experience operating in regulated commercial and government environments
Executive-level communication and stakeholder management skills
Familiarity with cloud/SaaS environments and FedRAMP-enabled platforms
Ability to obtain and maintain a U.S. Government security clearance
Preferred industry certifications such as CISSP, CISA, CAP, or PMP
Experience with DoD SRG, secure SDLC, compliance automation, and public sector accreditation programs
M&A diligence and post-acquisition integration experience
Benefits: Competitive pay
Company ownership
Meaningful benefits
Source: remoterocketship careers