Sr Software Developer in Test (FedRamp)
CriblSalary not specified
Full Time
Senior (5 to 8 years)
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
NoVisa
Technology, GovernmentIndustries
Requirements
- US Citizenship (required for Federal business and hands-on system operations)
- Minimum 7 years of compliance experience in FedRAMP
- Prior experience leading a FedRAMP Authorization to Operate (ATO) or renewal, including preparing for agency or JAB authorization
- Prior, hands-on FedRAMP experience in documentation, RMF, POA&M management, Continuous Monitoring, and FIPS-validated cryptography (FIPS 140-3)
- Strong working knowledge of NIST 800-53r5 and RMF (NIST 800-37), with the ability to map technical controls to evidence
- Demonstrated ability to author policies, review SSPs, and collaborate effectively with 3PAOs/advisors and engineering teams
- Excellent documentation, communication, and stakeholder management skills
- Strong English communication skills (oral and written)
- Positive, can-do attitude with proven ability to take ownership and drive complex initiatives to completion
- Technical background with ability to translate NIST controls into practical engineering outcomes
- Standard U.S. time-zone collaboration, with occasional meetings with external auditors/advisors
- Hybrid role - 2 days a week in SAP NYC office
Responsibilities
- Own the FedRAMP RMF lifecycle, including defining/maintaining the authorization boundary, driving control implementation evidence, writing and reviewing the System Security Plan (SSP), and managing System Assessment Plan (SAP)/System Assessment Report (SAR), Plan of Action & Milestones (POA&M), and Continuous Monitoring submissions
- Author and maintain security and compliance policies, standards, and procedures, aligning with NIST 800-53r5 and organizational standards
- Drive vulnerability management, including vulnerability scanning, patching cadence enforcement, and tracking remediation
- Liaise with external FedRAMP advisors/3PAO and authorizing stakeholders, scheduling walkthroughs, coordinating requests, and resolving findings
- Serve as the U.S. citizenship compliance focal point for technical operations in the FedRAMP production environment
- Collaborate with Security (GRC/AppSec/IR), Cloud Engineering/SRE, and IT teams to operationalize NIST 800-53 Rev. 5 controls and ensure traceable evidence
- Influence engineering best practices by embedding security and compliance requirements into CI/CD pipelines, IaC, and operational processes
- Report program status, risks, and metrics to the GRC Lead/CISO, and prepare materials for audits, renewals, and leadership reviews
Skills
FedRAMP
RMF
NIST
SSP
SAR
POA&M
Continuous Monitoring
Compliance
Auditing
Policy Authoring
WalkMe
Digital adoption platform for user guidance
About WalkMe
WalkMe specializes in Digital Adoption Platforms (DAP) that enhance user experiences for employees and customers. The platform works by overlaying visual cues and personalized content on websites or enterprise software, which helps users with onboarding, training, and provides real-time contextual guidance. This approach allows users to navigate complex systems more easily and efficiently. Unlike many competitors, WalkMe focuses on continuous support and updates through a subscription-based model, ensuring that clients receive ongoing assistance. The main goal of WalkMe is to improve enterprise productivity and user engagement by facilitating effective digital adoption in the workplace.
San Francisco, CaliforniaHeadquarters
2011Year Founded
$299.1MTotal Funding
IPOCompany Stage
Enterprise Software, AI & Machine LearningIndustries
1,001-5,000Employees
Benefits
Comprehensive Health Care Coverage for Medical, Dental, and Vision for our Employees and Families
401(k) with company matching program
Parental Leave programs
Vacation policy to encourage a healthy work-life balance
WalkMe offices are open during Covid-19 for those who chose to come (vaccines required) with in-person and virtual social activities to promote positive employee engagement
Risks
SAP acquisition may lead to internal restructuring and potential operational disruptions.
Integration with SAP's offerings could face technical challenges, delaying benefits.
Intensifying competition in the digital adoption market could erode WalkMe's market share.
Differentiation
WalkMe offers a code-free platform for digital adoption, simplifying user experiences.
The platform provides real-time contextual guidance, enhancing onboarding and training processes.
WalkMe's subscription model ensures continuous support and updates for enterprise clients.
Upsides
Increased demand for digital adoption platforms boosts WalkMe's market potential post-pandemic.
Strategic partnerships with Cognizant and UST expand WalkMe's reach and capabilities.
WalkMeX, an AI copilot, enhances user engagement with contextual awareness and AI-driven suggestions.
Related Jobs
RemoteRemoteSecurity Governance Risk & Compliance (GRC) Analyst
Virtru$130,000 - $180,000/year
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Program Manager-Federal
ZscalerSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior DevOps Engineer
Keeper SecuritySalary not specified
- Part Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Compliance Analyst
EarnestSalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteSenior GRC Analyst
TinesSalary not specified
- Full Time
- Senior (5 to 8 years)