Security Program Manager

Three or more years leading compliance or security programs in a high-growth technology or defense startup Demonstrated success achieving and maintaining FedRAMP High Authority to Operate or equivalent Deep familiarity with IL5, CMMC Level 2, SOC 2, NIST 800-171 Proven ability to design and run automated evidence collection, policy management, and vulnerability-tracking workflows Strong written and verbal communication skills for technical and executive audiences Experience coordinating red-team, penetration-test, or bug-bounty programs

Build and maintain master compliance program (FedRAMP High, IL5, CMMC Level 2, SOC 2) Own evidence management end to end Lead quarterly and annual security documentation cycles Coordinate penetration tests and red-team engagements Track remediation plans to closure Act as primary liaison on security questionnaires and customer calls Identify solutions to compliance roadblocks Guide company roadmaps for compliance changes Partner with engineering to embed secure-by-design practices Monitor threat landscape and propose hardening measures