Senior Compliance Analyst

Company Overview:

Procurement Sciences is at the forefront of transforming the multi-billion-dollar government contracting industry with Awarded AI, our cutting-edge platform designed to help businesses excel in government sales. We simplify complex processes, drive revenue growth, and deliver real cost savings through unmatched efficiency. As a leading venture-backed SaaS company founded by seasoned GovCon experts, we are not just participants in the AI revolution; we are shaping it by solving the industry’s toughest challenges. Our “One Team, One Fight” culture values creativity, accountability, and forward-thinking, and we invite driven builders and innovators to help us develop high-performing teams. Ranked among the top 10 percent of fastest-growing SaaS companies and on a clear path to becoming a unicorn, we are seeking top talent to join our early team and play a key role in building the next great AI software company.

Job Description:

We are seeking a highly experienced and results-oriented Senior Compliance Analyst to join our growing operations team. In this pivotal, hands-on role, you will be instrumental in safeguarding the company’s legal and contractual integrity by leading the authorization and continuous compliance efforts for our GenAI platform, Awarded AI.

You will act as a subject matter expert, managing the full lifecycle of our compliance programs. Expertise and direct experience with FedRAMP, CMMC, and SOC 2 is essential.

Key Responsibilities:

Framework Authorization and Management

• Manage the Authorization Process: Oversee the entire FedRAMP authorization lifecycle, from initial assessment to final approval. Drive all phases of CMMC Level 2 readiness and manage the ongoing maintenance of our SOC 2 Type II report.
• Documentation and Compliance: Prepare, review, and rigorously maintain critical security documentation, including the System Security Plan (SSP), control baselines, and the Plan of Action & Milestones (POA&M), ensuring they accurately reflect our control environment.
• Security Controls Implementation: Conduct detailed gap analyses, actively map controls against frameworks like NIST 800-53, and collaborate with Product and Engineering to implement, validate, and document technical and procedural security controls.
• Continuous Monitoring: Design and oversee the continuous monitoring process to ensure ongoing, active compliance with federal standards, which includes tracking control changes, performing periodic reviews, and managing submissions to relevant authorities.

Risk, Audit, and Stakeholder Communication

• Risk and Audit Management: Perform comprehensive risk assessments and coordinate all security audits. This includes leading the engagement with 3PAOs (Third-Party Assessment Organizations) for FedRAMP/SOC 2 audits and managing remediation efforts for all identified security findings.
• Liaison and Communication: Serve as a primary point of contact and compliance liaison with internal teams (Engineering, Product, Legal), cloud service providers (CSPs), and government agencies/clients, effectively translating complex technical requirements and communicating compliance status and posture.
• GovCon Regulatory Adherence: Maintain expert knowledge of core U.S. federal procurement regulations, including the Federal Acquisition Regulation (FAR) and Defense Federal Acquisition Regulation Supplement (DFARS), ensuring all business practices align with contract and regulatory requirements.

Required Experience:

• Experience: 5+ years of progressive experience in Compliance, IT Audit, GRC (Governance, Risk, and Compliance), or Regulatory Affairs within the Government Contracting (GovCon) or Technology/SaaS industry.
• Framework Expertise: Demonstrated, hands-on experience managing the lifecycle and documentation for at least two of the following frameworks: FedRAMP, CMMC, or SOC 2.
• Knowledge: Comprehensive understanding of core federal procurement regulations (FAR, DFARS) and extensive experience with NIST publications (e.g., 800-53, 800-171).
• Skills: Exceptional analytical, organizational, and project management skills, specifically in managing complex, multi-year compliance projects.

Desired Experience:

• Certifications: Active professional certification such as CISM, CISSP, CISA, CMMC Professional/Assessor, or equivalent security/compliance certification.
• Technical Proficiency: Familiarity with cloud-native security controls and experience in auditing or managing controls within a SaaS or cloud-native environment.
• Domain Expertise: Direct experience managing or supporting a FedRAMP authorization package or direct experience leading a CMMC Level 2 assessment.
• Education: Bachelor’s degree in Business, Finance, IT Security, Legal Studies, or a related quantitative field.

Requirements:

• U.S. citizenship with the ability to pass a Federal Background Check and Identity Verification.

Compensation And Benefits:

• Compensation Doe.

• Competitive salary with performance based incentive plan and stock options in a rapidly growing, venture-backed company.
• Comprehensive health plan, ensuring you and your loved ones are well taken care of.
• Flexible work arrangements, including full remote work capabilities, to balance your professional and personal life.
• Extensive professional development opportunities, providing a fast track for career advancement.

Notice: Background Check Required

As part of our employment process, a background check is required. The background check may include a review of your credit history, criminal records, and employment verification, among other items. This check is conducted in compliance with the Fair Credit Reporting Act (FCRA). By applying for this position, you acknowledge and consent to this process.

Procurement Sciences is an equal opportunity employer and is committed to a diverse and inclusive workplace. We do not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. We encourage candidates from all backgrounds to apply