RiseMe
LoginSign Up
CoreKinect logo
CoreKinect Verified
Internet of Things (IoT), Hardware, Software, Technology

FedRAMP/CMMC Compliance Program Manager

Chandler, Arizona, United StatesOnsiteFull Time$150,000–$200,000 /yrPosted 2 months agoVisa sponsorship available

Is this role right for you?

Upload your resume and get a skill-by-skill breakdown — see exactly where you match, where you're close, and what to highlight. Not a mystery percentage.

Get a tailored resume highlighting what this role needs.

Role summary

We are seeking an experienced FedRAMP/CMMC Compliance Program Manager to lead and operationalize cybersecurity and regulatory compliance initiatives for federal and government programs. This role is responsible for the end-to-end execution of compliance efforts, including achieving and maintaining FedRAMP Authorization to Operate (ATO) and CMMC certification. The ideal candidate will possess deep expertise in federal cybersecurity frameworks, manage complex cross-functional programs, and serve as a key liaison between internal teams, government stakeholders, and third-party assessors. This is a highly visible, on-site role in Chandler, AZ, requiring strategic oversight and hands-on execution to strengthen our security framework and enable growth in regulated markets.

Job Overview
We are seeking an experienced FedRAMP / CMMC Compliance Program Manager to lead and operationalize our cybersecurity and regulatory compliance initiatives across federal and governement programs. This role is responsible for driving the end-to-end execution of compliance efforts, including achieving and maintaining FedRAMP Authorization to Operate (ATO) and CMMC certification.

The ideal candidate will bring deep expertise in federal cybersecurity frameworks and a proven ability to manage complex, cross-functional programs involving engineering, security, and external auditors. This individual will serve as a key liaison between internal teams, government stakeholders, and third-party assessors, ensuring alignment with evolving regulatory requirements.

This is a highly visible role requiring both strategic oversight and hands-on execution, with ownership over compliance posture, risk management, and audit readiness. The successful candidate will play a critical role in strengthening our security framework, enabling growth within regulated markets, and ensuring ongoing compliance with federal standards.

This is an on-site role supporting our Chandler, AZ office.

Key Responsibilities

  • Program Management and Oversight
  • Lead the development, implementation, and maintenance of FedRAMP and CMMC programs.
  • Manage project timelines, budgets, and stakeholder communications.
  • Coordinate with internal IT, security, and engineering teams, as well as external 3PAOs (Third Party Assessment Organizations) and federal auditors.
  • Compliance and Certification
  • Oversee preparation of System Security Plans (SSPs), risk assessments, and authorization packages.
  • Manage the path to achieving or renewing FedRAMP Authorization to Operate (ATO) and CMMC certification.
  • Track compliance with NIST SP 800-53 (for FedRAMP) and NIST SP 800-171 / 172 (for CMMC).
  • Security and Risk Management
  • Oversee the process of assessing, remediate vulnerabilities discovered through security assessments or continuous monitoring.
  • Implement governance processes consistent with FISMA, RMF, and DoD cybersecurity requirements.
  • Coordinate audits, penetration tests, and incident response.
  • Stakeholder and Government Liaison
  • Serve as the liaison to government agencies, FedRAMP PMO, The Cyber AB (CMMC Accreditation Body), and major contractors.
  • Translate technical compliance information into actionable business insights for executives.
  • Documentation and Reporting
  • Maintain up-to-date documentation on compliance posture, risk metrics, and security plans.
  • Produce reporting for audits, executive briefings, and government communication.

Required Qualifications

  • 5–10+ years in cybersecurity, compliance, or program/project management within federal or defense sectors
  • Knowledge Areas: Strong understanding of FedRAMP, CMMC, FISMA, RMF, and NIST SP 800-53 / SP 800-171
  • Cloud security expertise (AWS, Azure, GCP)
  • Risk management and compliance frameworks
  • Strong written communication skills for policy, audit, and documentation
  • Ability to coordinate across stakeholders and cross-functional teams

Preferred Qualifications

  • Certifications: CISSP, CISM, PMP, Certified CMMC Assessor (CCA), Certified CMMC Professional (CCP), or similar
  • Additional depth in regulatory or highly controlled environments
  • Advanced experience leading audits, assessments, or authorization processes

Job Type: Full-time

Pay: $150,000.00 - $200,000.00 per year

Benefits:

  • Dental insurance
  • Health insurance
  • Paid time off
  • Vision insurance

Application Question(s):

  • Are you a U.S. person with a permanent unrestricted right to work in the United States?
  • Do you have direct experience supporting or leading a FedRAMP authorization (ATO) or continuous monitoring program?
  • Do you have hands-on experience implementing or managing compliance with NIST SP 800-171, NIST SP 800-53, or CMMC requirements?
  • Have you participated in or led formal security audits or assessments (e.g., 3PAO, CMMC assessment, or equivalent)?
  • Have you owned or led a compliance or cybersecurity program (not just contributed as a team member)?
  • Have you been responsible for developing or maintaining System Security Plans (SSPs) or similar compliance documentation?
  • Have you worked in a federal, DoD, or regulated government contracting environment?

Ability to Commute:

  • Chandler, AZ 85226 (Required)

Work Location: In person

Ready to apply?
You'll be redirected to CoreKinect's application page.