# GRC Program Manager, US Government Compliance

**Company:** [OpenAI](https://hotfix.jobs/companies/openai)
**Location:** Washington, DC
**Role:** Security Engineering
**Salary:** $162k – $310k/yr
**Experience:** 5+ years
**Skills:** FedRAMP, Nist, Rmf, Kubernetes, Terraform, AWS, Azure, Authentication, Encryption, Vulnerability Management, Audit Logging
**Posted:** 2026-04-23

> Leads US government compliance programs, driving FedRAMP and agency ATOs for OpenAI products. Collaborates with engineers on security controls, documentation, and audits in highly regulated environments. Requires 5+ years compliance experience and deep USG framework knowledge.

## Job Description

## Responsibilities
- Drive the ATO process for FedRAMP and across multiple government clients in restricted environments with minimal oversight.
- Collaborate with engineering teams to interpret security requirements and implement controls that balance compliance with operational needs.
- Create clear, concise, and technically accurate documentation, including System Security Plans (SSPs), risk assessments, and architecture diagrams.
- Act as a subject matter expert during audits and assessments, representing the organization with credibility and expertise.
- Continuously refine processes to improve the efficiency and quality of compliance efforts.

## Requirements
- Proven experience in obtaining and maintaining a FedRAMP ATO and agency specific ATOs in highly restricted environments, within government or regulated sectors.
- Deep understanding of USG security frameworks and policies (e.g., NIST, RMF, FedRAMP).
- Ability to communicate technical concepts to diverse audiences, including engineers and non-technical stakeholders.
- Exceptional technical program management skills, with the ability to multitask and deliver large complex programs under pressure.

## Nice-to-Haves
- Active US security clearance.
- 5+ years of compliance experience in positions involving information security, data security, or infrastructure or network security.
- Familiarity with deployment models, including to cloud platforms (Azure, AWS) and the underlying infrastructure primitives (Kubernetes, Terraform).
- Strong familiarity with core security concepts and technologies, such as authentication, encryption, vulnerability management, and audit logging.
- Ability to work collaboratively and effectively in a cross-functional team environment.
- Thrive in dynamic environments and can navigate ambiguity with ease.

## Similar roles

- [Fraud Researcher](https://hotfix.jobs/jobs/1cec9c43-3405-4515-8100-f119da7c3ea2) - Plaid - New York, NY - $162k – $244k/yr
- [Security Software Engineer](https://hotfix.jobs/jobs/a42c1feb-b70c-40ee-b79f-3311e516bdb3) - Tailscale - Remote - $163k – $204k/yr
- [Security Infrastructure Engineer](https://hotfix.jobs/jobs/08fbd071-b8ee-435c-b68d-661136123b73) - Tailscale - Remote - $163k – $204k/yr
- [Security Engineer](https://hotfix.jobs/jobs/be1ae539-4e2e-462f-aedd-c2ac34023a86) - Skydio - San Mateo, CA - $160k – $210k/yr
- [Security Platform Engineer](https://hotfix.jobs/jobs/534da07b-38bd-4a83-be3d-33ff3a4d7c51) - Lumin Digital - Remote - $160k – $180k/yr

**Apply:** https://hotfix.jobs/jobs/a48dc498-ad95-4a44-913c-f265e2357109
**Canonical:** https://hotfix.jobs/jobs/a48dc498-ad95-4a44-913c-f265e2357109