Staff Governance, Risk, and Compliance Engineer

📋 Description

• Oversee the upkeep and growth of Anthology’s Federal and State compliance initiatives.

• Contribute to the development of Blackboard’s State/FedRAMP portfolios.

• Actively participate in emerging DISA compliance-related projects.

• Ensure adherence to policies, practices, and procedures by direct reports, customers, and stakeholders.

• Accountable for State and Federal regulatory compliance in collaboration with the CISO, Finance, Sales, and Legal teams.

• Provide expertise on FedRAMP and NIST 800-53 compliance standards and regulations.

• Manage and execute the external audit calendar in alignment with business processes and agency/state sponsors.

• Lead the completion of corrective and preventive actions resulting from Compliance audit findings.

• Ensure that systems vulnerability and penetration tests are conducted according to standards, and that results are communicated.

• Collaborate with operational teams to reassess remediated systems.

• Ensure ongoing monitoring and reporting is performed.

• Supervise the annual reviews and updates of System Security Plans.

• Assist in identifying areas for business process enhancements and partner with stakeholders to determine compliance readiness strategies.

• Work cross-functionally to drive, monitor, and address all aspects of Compliance readiness and audit execution.

• Support forecasting, planning, and risk assessment related to the expansion of the compliance program.

• Stay updated on current industry knowledge and best practices.

• Manage projects, including analyzing business requirements and creating and updating project plans.

• Mentor and cross-train team members to meet business objectives.

• Create metrics and dashboards for reporting on Regulatory Compliance initiatives.

⛳️ Requirements

• 8+ years of proven experience in governance, risk management, compliance, and internal audit in a technology-driven environment.

• Excellent documentation and communication abilities.

• Recent hands-on experience with the FedRAMP Framework (audit and compliance background).

• Strong foundation in the NIST Risk Management Framework (SP 800-53) and a comprehensive skill set in NIST publications and FedRAMP requirements.

• Experience conducting control assessments and coordinating audit activities.

• Proven track record of managing and obtaining authorizations under the FedRAMP program.

• US Citizen.

• Capability to work independently as well as collaboratively in a global team environment.

• Ability to cultivate strong relationships with technology and business stakeholders.

• Proficient writing skills with an emphasis on communicating technical topics effectively.

• Proficiency in both written and spoken English.

🏝️ Benefits

• Competitive salary and performance-based incentives.

• Comprehensive health, dental, and vision insurance.

• Generous paid time off and holiday schedule.

• Opportunities for professional development and training.

• Flexible work arrangements and remote work options.