GRC Program Manager (FedRAMP & Compliance)
Port.io
About Port At Port.io , we are building an open and flexible Agentic Engineering Platform for modern engineering organizations. Following our recent $100M Series C funding round, we are in a phase of rapid hypergrowth with strong enterprise momentum. We act as the central nervous system for engineering, enabling platform teams to unify their stack and expose it as a governed layer through golden paths for developers and AI agents. By combining rich engineering context, workflows, and actions, we help organizations transition from manual processes to autonomous, AI‑assisted engineering workflows while maintaining control and accountability. As a product‑led company, we believe in building world‑class platforms that fundamentally shape how modern engineering organizations operate. Why we’re looking for you We’re looking for a GRC Program Manager to drive Port’s FedRAMP authorization and oversee our broader compliance portfolio. You’ll be the program’s operational backbone - coordinating 3PAO assessments, managing documentation, and ensuring readiness across teams. FedRAMP authorization is a strategic milestone for Port as we expand into enterprise and federal markets. This is a high‑visibility initiative with executive sponsorship, requiring precise coordination across engineering, security, and product. We need a program manager who thrives in complex, cross‑functional environments and can translate regulatory frameworks into clear execution plans while managing timelines, budgets, and stakeholder expectations. Who you’ll work with You’ll report to the CISO and work closely with the Security team, Engineering, DevOps, IT, and Product teams. You’ll manage relationships with external partners, including the 3PAO, FedRAMP consultants, and government agency sponsors. You will also collaborate with Legal and Finance on contracts, budgets, and compliance obligations. In addition, you’ll support the US sales process, compliance and regulatory inquiries, RFIs/RFPs, and other related business processes. What you’ll do Lead the FedRAMP project from kickoff through ATO: schedule, documentation, 3PAO engagement, and agency coordination. Own the System Security Plan (SSP), Plan of Action & Milestones (POA&M), and all readiness deliverables. Manage the 3PAO relationship, coordinate assessments, and drive remediation efforts. Build and maintain the compliance evidence repository and continuous monitoring program. Manage cross‑team milestones, track control implementation progress, and identify blockers. Develop repeatable processes and frameworks to sustain compliance post‑authorization. Partner with Engineering, Security, IT, and Product to translate NIST 800‑53 controls into technical implementations. Lead internal readiness assessments and gap analysis. Assist and support GRC initiatives, other compliance frameworks, team processes and systems. Requirements Direct FedRAMP experience (managing an authorization from start to ATO) — Must have. 5+ years of experience managing compliance or GRC programs in SaaS or regulated environments. Proven track record running complex audits or certification programs (FedRAMP, SOC 2, ISO, etc.). Deep understanding of control frameworks (NIST 800‑53, ISO 27001) and how they translate to technical implementations. Exceptional project management and communication skills — ability to manage timelines, budgets, and complex dependencies. Experience managing vendor relationships, including 3PAOs, consultants, and compliance tooling providers. Strong stakeholder management skills — comfortable managing multiple workstreams and influencing across technical and non‑technical teams. Detail‑oriented with strong documentation and organizational skills. Nice to have Experience working with government agency sponsors and understanding FedRAMP agency workflows. Hands‑on experience with GRC automation platforms (Drata, Tugboat Logic, Vanta, OneTrust). Risk Management. Background in technical security controls, cloud infrastructure, or DevSecOps. CISSP, CISM, PMP, or FedRAMP‑related certifications. Experience with continuous monitoring and ongoing compliance management. #J-18808-Ljbffr Port.io
$137k - $165k
...Overview The Senior Manager, Global Trade Compliance – Export Compliance is a strategic leadership role responsible for designing, executing, and... ...continuously enhancing the company’s global export control program. This position will lead the development of policies, processes...SuggestedFull timeTemporary workPart timeWork at officeLocal area- RTX in Cambridge, MA is seeking an EHS Generalist to support environmental, health, and safety compliance. The ideal candidate will manage EHS programs, provide technical support, and ensure adherence to regulations while promoting a culture of safety and sustainability...Suggested
$121.3k - $169.83k
...pm Key Responsibilities Supervises staff and manages resources to develop and implement toxic reduction and control, compliance/enforcement and information technology... ...supervises TRAC's data management group and Program Manager, Industrial Treatment Systems & Data...SuggestedWork at officeLocal areaRemote workMonday to Friday- ...EHS Generalist based in Cambridge, MA to support our Environmental, Health, and Safety (EHS) function. You will manage programs, ensure regulatory compliance, and develop EHS communications. The ideal candidate possesses a relevant Bachelor's or Master's degree and at least...Suggested
- MWRA in Chelsea, MA is seeking a senior leader to oversee compliance and enforcement programs within TRAC. The role focuses on developing policies, managing staff, and coordinating information systems to support regulatory requirements for industrial wastewater controls...SuggestedRemote work
$130k - $170k
...Senior Governance, Risk, and Compliance Analyst At WHOOP, we are on... ..., Risk, and Compliance (GRC) team helps ensure technology... ...ongoing operation of the GRC program in a fast-paced, high-growth... ...risk assessments, exceptions management, SDLC reviews and security compliance...Full timeWork at officeRelocation$70k - $110k
As a GRC Analyst, you will support the WHOOP Governance, Risk, and Compliance program. You will help manage third-party vendor risk reviews, and operational requests, in cross-functional security compliance workflows. Success in this role requires strong attention to detail...Full timeWork at officeRelocation- WHOOP is seeking a GRC Analyst in Boston to support the Governance, Risk, and Compliance program and manage third-party vendor risk reviews within cross-functional security workflows. You will review, prioritize, route, track, and complete vendor assessments, using intake...Relocation
$60k - $90k
As a GRC Analyst, Operations & Risk, you will support the WHOOP Governance, Risk, and Compliance program by helping manage GRC intake, coordinate third-party risk activities, strengthen operational workflows, and improve visibility across risk and compliance work. This...Full timeWork at officeRelocation$70k - $80k
...As a GRC Cybersecurity Analyst (CA), you will play a pivotal... ...their cybersecurity improvement programs. In this position, you will... ...leadership in Governance, Risk, and Compliance (GRC) directly to our clients... ...of a good cybersecurity management program, including: Leading...Full timeWork at office$155k - $185k
WHOOP is seeking a Senior Program Manager, SaMD, located in Boston, MA. This role involves driving execution of Software as a Medical Device... ..., collaborating with various teams to ensure regulatory compliance and successful product delivery. Candidates should have 6-10...- Elliot Health System - Compliance & Privacy Program Sr. Manager - Full Time Position Summary - 40 hr/wk. Days, hours can be flexible. Required on site presence. Key Responsibilities Manages the implementation of Elliot Health System entities' compliance activities, programs...Full timeTemporary workPart timeWork at officeLocal areaFlexible hours
$60k - $90k
Whoop is searching for a GRC Analyst in Boston, MA, to enhance the Governance, Risk, and Compliance program. This role involves managing GRC intake processes, coordinating third-party risk reviews, and ensuring effective compliance operations. The ideal candidate will have...$222.1k - $261k
...seeking a highly motivated and experienced Staff Security Risk & Compliance Program Manager - Access Management to join our Trust & Security team. This... ...identity teams without direct authority. Integration with GRC and Partner Functions: Ensure the access management program...Full timeRemote work- ...digital employee experience (DEX) management software. The company... ...compliant, customer-ready federal programs will be essential to opening... ...We're looking for a FedRAMP Technical Program Manager to... ...FedRAMP and U.S. public sector compliance programs. This is a high-impact...Work at officeImmediate startRemote workWorldwideFlexible hours
- A management consulting firm seeks a full-time Program Manager to provide professional and administrative support services in the Environmental Management... ...technical projects, managing personnel, and ensuring compliance with regulations. Ideal candidates will have 5-10...Full time
$155k - $205k
...re hiring for two separate roles at the Manager and Senior Manager levels. Final... ...Senior Manager of Governance, Risk, and Compliance to lead the day-to-day execution and support... ...ongoing operation and enhancement of the GRC program in a fast-paced, high-growth...Full timeWork at officeRelocation- ...community-focused organization is seeking a Residential Manager to ensure quality care and successful operations of... ...home. The role involves managing staff, ensuring compliance with regulations, and overseeing program budgets. The ideal candidate should have a Bachelor'...
- Forrester Research, based in Cambridge, MA, is seeking a Senior Analyst to deliver strategic advice and conduct research for risk management leaders. The ideal candidate will possess strong knowledge of risk practices, cyber risk quantification, and excellent...
$147.68k - $236.28k
...practical. Design and deliver training programs, workshops, demos, and enablement... ...evangelizing AI capabilities—not managing people. What You’ll Do Adoption &... ...classification, prompt injection risks, and compliance requirements (CJIS, FedRAMP, SOC 2). Develop and maintain a "...Work experience placementWork at office- Randstad USA is seeking an experienced Enterprise 340B Program Director in the Somerville/Boston, MA area. The ideal candidate will oversee a talented team, ensuring compliance and operational excellence in managing the 340B Drug Pricing Program. This hybrid position...
- Join a leading financial services company as a Senior Program Manager, responsible for executing the Corporate Technology Strategy. You will lead key programs and manage cross-functional teams, ensuring alignment with organizational objectives. Ideal candidates have extensive...
$95k - $245k
The Charles Stark Draper Laboratory, Inc. is seeking a Program Manager 1 in Cambridge, MA. This role involves managing the Air Force Strategic Systems portfolio, ensuring program execution, and working in a multidisciplinary team to tackle national challenges. The ideal...Full time- Lumovy Technology Solutions, LLC is seeking an experienced Program Manager to lead Microsoft Dynamics 365 programs and strategic client engagements. You will partner with executives, drive delivery strategies, and shape practical business and technology solutions for enterprise...
- AcuityMD, Inc. is looking for a Program Manager to oversee the experience of our largest accounts on the AcuityMD platform. In this role, you'll partner closely with various teams to ensure a smooth implementation process and continual support for our clients in the medical...Flexible hours
- MassMutual is seeking an experienced Project Manager to join the Global Business Services Programs & Strategic Initiatives team in Boston. You will coordinate, plan, develop, and implement medium to large-scale projects across US and international offices. The role requires...
$110k
...we celebrate the modern woman through our clothing, styling, and … Salary: $110,000.00 yearly Employment type: Full‑time Store Manager Opportunity at Buck Mason Are you ready to be the heartbeat of Buck Mason, living and breathing our culture, customer experience, and...Hourly payPermanent employmentFull timePart timeWork at officeDay shift$100k - $275k
Inuplands in Cambridge, MA is looking for a Program Manager 2 for Air Force and Missile Defense. This role requires overseeing complex projects, managing teams, and ensuring customer satisfaction while meeting targets. The ideal candidate should possess at least 7 years...- Northeastern University in Boston seeks a Program Manager for the Massachusetts Promise Fellowship (MPF), a full‑time AmeriCorps program... ...Senior Fellows and work‑study students, and help ensure program compliance with federal funders. #J-18808-Ljbffr NU USA Northeastern...Full time
- Brigham and Women's Hospital in Boston, MA seeks an experienced program manager to oversee a large-scale, multidisciplinary portfolio. You will design schedules, manage budgets, align initiatives with organizational goals, and report progress to leadership. You will lead...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to GRC Program Manager (FedRAMP & Compliance). Be the first to apply!
- program director Boston, MA
- national program manager Boston, MA
- director of program development Boston, MA
- privacy program manager Boston, MA
- technical program manager Boston, MA
- customer project program manager Boston, MA
- senior program manager Boston, MA
- staff program manager Boston, MA
- research program manager Boston, MA
- global program director Boston, MA

