Jobs · Engineering

Senior GRC Engineer (NIST 800-53/FedRAMP)

Workstreet · United States · 3 wk ago
RemoteRemoteEngineeringFull-time

About Workstreet

We're on an exciting journey to help businesses scale securely by designing and implementing cutting-edge security and compliance programs. Specializing in frameworks like SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP, we empower companies to meet regulatory requirements and enhance their cybersecurity posture.

The Opportunity

We are seeking a Sr. GRC Engineer (Government) who is highly motivated, detail-oriented, and experienced with these compliance frameworks. The ideal candidate will have strong communication skills, proven ability to manage multiple projects, and experience leading or mentoring a small team.

What You'll Do

  • Client Relationship Management (Primary Focus): Guide clients through NIST SP 800-53 and FedRAMP compliance initiatives, provide proactive communication, clear milestone guidance, and hands-on support throughout the A&A lifecycle.

  • Collaborate Closely with Clients: Partner directly with organizations pursuing federal authorizations to understand their environment, identify security gaps, and drive progress toward achieving and maintaining compliance.

  • Be a Trusted Compliance Advisor: Deliver expert guidance on NIST SP 800-53, FedRAMP requirements, and federal cybersecurity standards in a way that is accessible, actionable, and aligned with each client's unique operational environment.

  • Team Leadership: Lead and mentor a compliance team, provide direction, feedback, and professional development support, maintain quality standards and accountability across client engagements, and manage and coordinate multiple NIST SP 800-53 and FedRAMP compliance projects.

  • NIST 800-53 & FedRAMP Compliance Execution: Interpret and apply security controls, develop and maintain authorization documentation, conduct gap assessments, guide clients through the A&A process, coordinate with 3PAOs and independent assessors, and support remediation efforts.

  • Monitor Regulatory Updates: Stay current on evolving NIST SP 800-53 revisions, FedRAMP requirements, and federal cybersecurity policies and guidance to ensure client programs remain compliant and ahead of changing requirements.

Required

  • Strong organizational skills with the ability to manage multiple NIST SP 800-53 compliance projects concurrently.

  • 5+ years of experience in federal compliance, NIST SP 800-53, FedRAMP, or RMF implementation.

  • 3+ years of leadership experience managing or guiding a small team.

  • Deep understanding of the NIST Risk Management Framework (RMF) and the security and privacy control families within NIST SP 800-53.

  • Experience with NIST SP 800-53 control implementation and assessment.

  • Familiarity with FedRAMP authorization paths and federal agency workflows.

  • Experience working with cloud service providers (CSPs) or organizations pursuing federal authorizations.

  • Knowledge of common FedRAMP-authorized cloud environments such as AWS GovCloud, Azure Government, or GCC High.

  • Thrives in a fast-paced startup environment.

Nice to Have

  • CGRC (Certified in Governance, Risk and Compliance) or CAP (Certified Authorization Professional) certification.

  • Security+ or CISSP certification.

  • Experience with FedRAMP authorization and continuous monitoring (ConMon) activities.

  • Previous experience working directly with 3PAOs or as part of security assessment teams.

What We Offer

  • Career Development: Clear growth path with mentorship and training opportunities.

  • Technical Training: Comprehensive onboarding on security and compliance frameworks.

  • Competitive Compensation: Competitive base salary with regular performance reviews, merit-based appraisals, and bonus opportunities.

  • Growth Opportunity: Early-stage company with significant room for career advancement.

  • Remote-First Culture: Flexibility to work from anywhere while collaborating with a global team.

Workstreet Is An Equal Opportunity Employer

We are committed to providing employment opportunities to all individuals. All applicants for positions at Workstreet will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law. Employment with Workstreet is contingent upon the successful completion of a background check, which may include verification of employment history, education, and other relevant information, in compliance with applicable laws.

Similar jobs

Senior GRC Engineer

Nexus Venture PartnersSan Francisco, CA· 6 days ago
Engineering$180k–$200k/yrapply on job-boards.greenhouse.io

Senior GRC Engineer

PostmanSan Francisco, CA· 1 wk ago
Engineering$180k–$200k/yrapply on job-boards.greenhouse.io

Senior GRC Engineer

FlockUnited States· 1 wk ago
RemoteEngineering$130k–$145k/yrapply on jobs.ashbyhq.com

Senior GRC Engineer

BiographNew York, NY· 1 mo ago
Engineering$150k–$200k/yrapply on jobs.ashbyhq.com

Senior GRC Engineer

Life360United States· 3 wk ago
RemoteEngineering$116k–$213k/yrapply on job-boards.greenhouse.io