Program Manager, Public Sector Compliance

Remote North America

The database market is massive (IDC estimates it to be $121B+ by 2025!) and MongoDB is at the head of its disruption. At MongoDB we are transforming industries and empowering developers to build amazing apps that people use every day. We are the leading modern data platform and the first database provider to IPO in over 20 years. Join our team and be at the forefront of innovation and creativity.

The MongoDB security team is looking for a Program Manager, Public Sector Compliance. This role will be responsible for analyzing, documenting and monitoring risk and compliance posture across our existing program. This role will report to the FedRAMP Technical Compliance Program Manager.

MongoDB aligns its practices to multiple compliance frameworks in order to support our customer’s needs. As we continue to grow, MongoDB is expanding to support more public sector compliance frameworks. The Program Manager - Public Sector role will provide support for MongoDB’s public sector compliance team by creating and maintaining comprehensive public sector compliance documentation, arranging meetings, liaising with internal stakeholders to communicate compliance requirements and gather feedback, preparing data for further analysis and reporting, tracking meeting minutes and actions and providing general administrative support to enable continuous growth of the Governance, Risk and Compliance Program.

The ideal Program Manager, Public Sector Compliance candidate should have demonstrated experience with documents and data handling, proven general administration, be familiar with change management enabling organizations to improve and/or establish efficient and effective processes and drive forward change. Familiarity with compliance programs or technical audits in public sector Information Security related frameworks (i.e. NIST 800-53, NIST 800-171, etc.) is a plus. 

This role will support building out an internal compliance program and help scale MongoDB Inc. to support our customer’s needs. MongoDB is a breakthrough company that is disrupting a $40B market. This position has significant growth potential and we’re looking for someone who is excited to take initiative and eager to learn. 

This role can be based remotely in the US.

Responsibilities

  • Develop, review, and update documentation for MongoDB’s public sector cloud customers
  • Assist in building dashboards and presentations for various audiences (executive, business unit, ops, etc.)
  • Support assessment activities as required to maintain compliance or evaluate the system by potential sponsors, 3PAO, PMO, or the JAB 
  • Work within ticketing flows to ensure various projects remain on target
  • Interface with and Lead projects involving external auditors related to scheduling, drafting relevant communications and communicating metrics
  • Help schedule and track gaps and remediations related to periodic internal audits
  • Perform gap analysis and maturity assessments
  • Track internal Governance, Risk and Compliance actions, as well as present team roadmaps and timelines
  • Support preparation of annual roadmap taking account of dependencies and resource requirements
  • Help track schedules and identify any obstacles that may impact milestones and key delivery dates  
  • Help schedule and track gaps and remediations related to periodic internal and external audits
  • Help create metrics and dashboards related to periodic internal and external audits
  • Prepare data for further analysis and reporting 
  • Arrange meetings 
  • Draft meeting agendas based on meeting's goals
  • Draft presentations and communications around compliance program metrics
  • Take meeting minutes and actions and follow up on their completion 

Qualifications

  • Bachelor's degree or equivalent practical experience.
  • Working knowledge of cloud controls and environments
  • Experience with security and major compliance standards such as ISO27001, SOC, PCI, HIPAA
  • Experience with internal governance, risk, and compliance functions.
  • Experience with policies, procedures, and governance frameworks in a highly regulated industry.
  • Practical experience performing gap analysis, maturity assessments, and risk assessments.
  • Experience managing projects or workstreams at the enterprise level.
  • Experience implementing compliance technology and associated tools.
  • Ability to engage organizational levels simultaneously, leading to solutions/sustainable programs.
  • Knowledge of compliance and regulatory processes, including aligning policies to regulatory and business requirements.
  • Excellent attention to detail and organizational skills 
  • Practical understanding of cloud security compliance, risk management and information security principles
  • Strong presentation building and communication skills
  • Strong analytical, diagnostic, and critical thinking skills
  • Excellent verbal, written and interpersonal communication skills with both technical and non-technical audiences

Preferred Qualifications

  • Experience with FedRAMP, NIST 800-53, and NIST 800-171, IRAP
  • Experience working with Jira
  • Experience reviewing and editing SSPs, IRPs, ISCPs, and other FedRAMP related documentation
  • Project management experience including:  
    • process, metrics and dashboard reporting,  
    • drafting communications,
    • drafting meeting minutes, 
    • rollout of information security training and awareness program
    • project management support and reporting
  • An understanding of the common and fundamental project management processes e.g. scoping, planning, risk management, change control, communication etc.

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

To applicants in the European Union and California: Please find our European Union and California Recruitment Privacy Notice.

To all recruitment agencies: MongoDB does not accept unsolicited agency resumes. Please do not forward resumes to our jobs alias or MongoDB employees. MongoDB is not responsible for any fees related to unsolicited resumes.