FedRAMP Compliance Program Manager

Description

We’re growing and looking to hire a FedRAMP Compliance Program Manager, who embodies our core values: People First, Customer Obsession, Strive for Excellence, and Integrity.

As a member of the Claroty Cybersecurity team you will play an integral role in leading the company’s Federal and Public Sector compliance function. The FedRAMP Compliance Program Manager is responsible for developing and implementing the organization's FedRAMP compliance program. This role will work closely with cross-functional teams to ensure that FedRAMP requirements and obligations are satisfied

About Claroty:   

Claroty is on a mission to secure cyber-physical systems across industrial, healthcare, commercial and public sector environments: the Extended Internet of Things (XIoT). The Claroty Platform integrates with customers’ existing infrastructure to provide a full range of controls for visibility, exposure management, network protection, threat detection, and secure access. Our solutions are deployed by over 1,000 organizations at thousands of sites across all seven continents.

Claroty is headquartered in New York City, with employees across the Americas, Europe, Asia-Pacific, and Tel Aviv. The company is widely recognized as the industry leader in cyber-physical systems protection, with backing from the world’s largest investment firms and industrial automation vendors, as well as recognition from KLAS Research as Best in KLAS for Healthcare IoT Security, the Deloitte Technology Fast 500, the Forbes Cloud 100, and the Fortune Cyber 60. 

Responsibilities

As a FedRAMP Compliance Program Manager, Your impact will be:

• Develop and implement the organization's FedRAMP compliance & security program
• Work with cross-functional teams to ensure that the FedRAMP requirements and obligations are satisfied for Claroty. 
• Serve as the primary expert for compliance requirements, coordinating with subject matter experts (SMEs).
• Translate control requirements into simple terms, making them useful to our environment to enhance understanding and implementation.
• Provide technical guidance and lead discussions with Engineering, IT, and other teams to articulate FedRAMP/NIST requirements and facilitate necessary design and infrastructure modifications.
• Analyze boundary diagram, data flows, and interconnections, offering recommendations for compliance alignment.
• Lead and  manage the FedRAMP audit process including the Continuous Monitoring (ConMon) initiative and own iterative program improvements.
• Track and report on FedRAMP compliance status to internal and external stakeholders, both with technical audiences and executive leadership
• Stay up-to-date on FedRAMP regulations and best practices, including changes that impact Claroty’s FedRAMP obligations.
• Provide training and guidance to internal stakeholders  on federal compliance regulations.
• Serve as the company’s authoritative voice on FedRAMP, representing the organization internally and externally with key stakeholders (Agencies, 3PAO, Advisory Services, etc.).



Requirements

What do you need to succeed in this role?

• Bachelor's degree in computer science, information technology, or a related field
• 7+ years of experience in IT compliance and at least 3+ years within FedRAMP.
• Industry certifications such as CISSP, CEH, Security+ are desired
• Demonstrated experience managing complex project schedules, risks, dependencies, and execution until completion. Skilled in tracking milestones, reporting progress, and escalating issues effectively. 
• Strong leadership skills while working with cross-functional teams, addressing challenges promptly, and the ability to adapt to changing circumstances or new information.
• Excellent communication and interpersonal skills, with an ability to build relationships and rapport with key internal and external stakeholders. Ability to communicate effectively to C-suite level internal and external shareholders, as well as technical internal stakeholders (ex. developer).
• Demonstrated security knowledge related to FedRAMP, and have experience running a compliance function for a company providing SaaS products.  
• Demonstrated experience with the FedRAMP process, from end-to-end, including leading FedRAMP audits. 
• Demonstrated experience managing FedRAMP risks, coordinating cross-functional teams, driving deadlines, and delivering results in a fast-paced environment with attention to detail and self-motivation.
• Direct experience being the interface directly with US federal government agencies for FedRAMP and ConMon activities.
• Demonstrated experience documenting and validating implementation of security controls and management of a System Security Plans (SSP) package.
• Familiarity with AWS, the shared responsibility model of FedRAMP, and the ability to communicate FISMA and FedRAMP inheritance models to any both technical and non-technical audiences. 
• Familiarity working with federal compliance standards, frameworks, and methodologies, such as NIST SP 800-53, NIST SP 800-37, FedRAMP, StateRAMP, FIPS 140-2/140-3, FISMA, DoD SRG, or NIST SP 800-171.

Why Claroty? Our Culture and Benefits: 

• Claroty is a people first company. With strong bonds amongst the team, we believe in prioritizing personal care and support over work, confident that results follow from a harmonious environment. We celebrate professional and personal successes, committed to fostering a diverse and inclusive space. 
• Stability, we demonstrate continued growth over the past few years, raised over 700M$ from top tier investors, we have top tier board members and our products are sold worldwide, over 1000 customers. 
• We understand the importance of maintaining a healthy work-life balance, and encourage people to take the time they need to rest and prioritize their mental and physical health. We also provide a biannual “ClaroBreak”, a company-wide long weekend shutdown so we can all rest, recharge and spend time with our loved ones.
• We care about your development. At Claroty, we prioritize excellence and uphold high professional and ethical standards. We encourage career growth and exploration within the company, facilitated by biannual performance reviews, feedback sessions, and individual development planning, complemented by professional courses.
• We believe in transparency and openness. That’s why we regularly hold company all-hands, town hall meetings, and “Coffee with the CEO” sessions. We also conduct round table sessions and employee satisfaction surveys, to keep a pulse on what matters most to our team members and make our culture the best it can be. 
• While we have physical offices in New York, Tel Aviv, London and Singapore, we also embrace a hybrid working culture. This flexibility allows us to tap into a diverse talent pool and enables our team members to work in a way that suits their individual preferences and circumstances.  

Claroty is an equal-opportunity employer committed to fostering a diverse and inclusive work environment for all. We encourage applications from candidates of ALL diverse backgrounds, and special accommodations are available upon request in all selection phases.

Expected compensation for the role is between $180,000.00 - $190,000.00. This is a good faith estimate but does not include equity, bonus, or other forms of payment. Pay will be by experience level, but those outside the salary band are welcome to apply.

While we believe competitive compensation is a critical aspect of your decision to join us, we do hope you also spend time considering why our mission and culture are right for you. We are creating something amazing here, and we hope you are as excited about the future as we are.