Ramp

Senior Security Program Manager, Public Sector

United States

$160,400 – $259,200Compensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Financial Services, Fintech, CybersecurityIndustries

Position Overview

  • Location Type: Remote
  • Job Type: Full-Time
  • Salary: $160.4K - $259.2K

Ramp is a financial operations platform designed to save companies time and money. Our all-in-one solution combines payments, corporate cards, vendor management, procurement, travel booking, and automated bookkeeping with built-in intelligence to maximize the impact of every dollar and hour spent. More than 30,000 businesses, from family-owned farms to e-commerce giants to space startups, have saved $2B and 20M hours with Ramp. Founded in 2019, Ramp powers the fastest-growing corporate card and bill payment platform in America, and enables over $55 billion in purchases each year.

We are seeking a skilled and detail-oriented Senior Security Program Manager, Public Sector to lead and enhance our organization’s adherence to U.S. government cybersecurity risk management frameworks, including but not limited to FedRAMP and GovRAMP. In this role, you will play a key part in guiding compliance strategies for our public sector initiatives, working cross-functionally to ensure effective security practices and successful authorizations across jurisdictions.

Preference for candidates based in the DC Metro area, though this is not a requirement.

Responsibilities

  • Lead all aspects of the compliance lifecycle across multiple public sector frameworks (e.g., FedRAMP, GovRAMP), including risk assessments, continuous monitoring, audits, and authorization management.
  • Drive complex cross-functional program management efforts involving teams across security, legal, engineering, infrastructure, and product functions.
  • Serve as a subject matter expert on risk management and regulatory compliance for federal, state, and local government environments.
  • Develop and maintain comprehensive security documentation aligned with applicable frameworks, including System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and data flow diagrams.
  • Monitor compliance with control requirements (e.g., NIST 800-53, GovRAMP Baselines) and coordinate the implementation of technical and procedural safeguards.
  • Engage with third-party assessors (3PAOs or independent assessors), government sponsors, and internal teams to support assessments and audits.
  • Lead readiness assessments and support the prioritization of remediation activities across teams.
  • Manage timely tracking and closure of vulnerabilities and findings; ensure reporting and documentation obligations are met.
  • Provide risk-informed compliance recommendations that influence infrastructure and product development decisions.
  • Collaborate with legal and government affairs teams to ensure compliance with emerging federal and state regulatory requirements.
  • Stay informed on evolving threats, compliance trends, and guidance updates across FedRAMP, GovRAMP, NIST, and other frameworks.

Requirements

  • 5+ years of experience in information security or compliance, with a focus on government and public sector regulatory frameworks (e.g., FedRAMP, GovRAMP, FISMA, NIST RMF).
  • Knowledge of NIST SP 800-53 and experience mapping controls across frameworks.
  • Experience with cloud environments like AWS GovCloud or Azure Government, including implementation of compliant architectures.
  • Proven ability to manage large-scale compliance programs.

Company Information

Ramp’s investors include Thrive Capital, Sands Capital, General Catalyst, Founders Fund, Khosla Ventures, Sequoia Capital, Greylock, and Redpoint, as well as over 100 angel investors who were founders or executives of leading companies. The Ramp team comprises talented leaders from leading financial services and fintech companies—Stripe, Affirm, Goldman Sachs, American Express, Mastercard, Visa, Capital One—as well as technology companies such as Meta, Uber, Netflix, Twitter, Dropbox, and Instacart.

Ramp has been named to Fast Company’s Most Innovative Companies list and LinkedIn’s Top U.S. Startups for more than 3 years, as well as the Forbes Cloud 100, CNBC Disruptor 50, and TIME Magazine’s 100 Most Influential Companies.

Skills

Cybersecurity
Risk Management
FedRAMP
GovRAMP
Compliance Strategies
Security Frameworks
Public Sector Security

Ramp

Corporate card and spend management platform

About Ramp

Ramp provides a corporate card and spend management platform that helps businesses track expenses and save money. The platform allows finance teams to manage corporate cards, expense reports, and bill payments in one place, and it integrates with tools like Slack for added convenience. Ramp serves a wide range of clients, from large enterprises to creative agencies, and aims to reduce overall expenses through its comprehensive financial tools. Unlike competitors such as Amex and Brex, Ramp generates revenue through interchange fees on card transactions and subscription fees for advanced features. The company's goal is to streamline financial operations for businesses and help them achieve significant cost savings.

New York City, New YorkHeadquarters
2019Year Founded
$1,096.3MTotal Funding
SERIES_DCompany Stage
Fintech, Financial ServicesIndustries
1,001-5,000Employees

Benefits

Competitive salaries: You never have to wonder how your pay compares. Our generous comp reflects our belief that you’ll take Ramp to the next level.
Comprehensive health plans: US-based employees get full medical, dental, and vision insurance coverage. Everyone gets a monthly stipend for personal wellness.
Professional development: Take advantage of our annual education stipends to stay on top of your personal growth.
Unlimited PTO: Flexible vacation days give you the time to step away, unwind, and recharge.

Risks

Increased competition from fintech startups could challenge Ramp's market position.
Economic downturns may reduce business spending, affecting Ramp's revenue streams.
The volatile travel industry poses risks to Ramp's new travel booking services.

Differentiation

Ramp integrates with popular tools like Slack and Workday for seamless financial operations.
The platform offers advanced accounting automations, reducing manual work for finance teams.
Ramp's use of stablecoins and modern financial instruments sets it apart from competitors.

Upsides

Ramp's integration with Workday enhances real-time data syncing and accounting automation.
The partnership with Priceline expands Ramp's services into the growing business travel sector.
Ramp's recent $750 million funding boosts its capacity for innovation and market expansion.

Land your dream remote job 3x faster with AI