Senior Manager Compliance

The Compliance team at MongoDB manages the strategy, execution, and maintenance of our global security certifications and regulatory requirements. We ensure that our cloud database products meet the rigorous security standards required by our customers in the most highly regulated industries worldwide. The Senior Manager, Compliance (US Public Sector) leads the compliance efforts for our Atlas for Government product. Reporting to the Director of GRC, you will lead a specialized team of Program Managers and Analysts responsible for high-stakes US federal authorizations, including FedRAMP High, DoD IL5+, CJIS, ITAR, and CMMC. You are responsible for the end-to-end success of our public sector audit portfolio, driving high-impact initiatives, and maintaining an always-ready posture for continuous monitoring. This role will contribute to the long-term Compliance strategy, provide insights for Board-level reporting, and serve as a trusted advisor to internal stakeholders to ensure federal compliance scales alongside our product innovation. Responsibilities: Lead and mentor a team of senior individual contributors and analysts. Own the team’s resource allocation, performance management, and professional development, ensuring a high bar for technical execution within federal frameworks Oversee the end-to-end success of federal assessments, coordinating with Third Party Assessment Organizations (3PAOs), agency sponsors, and the FedRAMP PMO Lead the team driving the ConMon program for Atlas for Government, ensuring timely analysis of vulnerabilities and maintenance of artifacts like the POAM and SSP Serve as the primary point of contact for Product, Engineering, and Legal leadership on federal requirements. Communicate the impact of NIST 800-53 mandates on product roadmaps and drive accountability for remediation Aggregate public sector metrics and audit outcomes to contribute to Board of Directors presentations and executive reviews. Translate federal compliance health into business risk and market readiness Partner with federal sales and marketing leads to identify emerging regulatory trends (e.g., GovRAMP, CMMC) and define the roadmap for technical remediation and authorization Requirements: 8+ years in GRC, Information Security, or IT Audit. Significant experience managing US public sector compliance programs (FedRAMP/DoD) end-to-end is required Deep expertise in US Public Sector frameworks, specifically FedRAMP, DoD Cloud SRG, NIST 800-53, CJIS, and ITAR Proven track record working directly with FedRAMP authorization officials, federal agencies, and 3PAOs Experience contributing to organizational goal-setting and the ability to link compliance authorizations to federal revenue growth Superior skills in preparing data for executive-level audiences and explaining complex federal security configurations to both technical and non-technical stakeholders Advanced proficiency in Jira/Confluence and a strong understanding of cloud-native security controls in AWS, GCP, or Azure environments US Citizenship is required for this role. Responsibilities Expectations: You are expected to be a subject matter expert who operates with minimal supervision. You don't just track tasks; you own the success of the Atlas for Government FedRAMP authorization You must navigate complex negotiations with federal regulators and drive internal teams toward compliance milestones without disrupting the pace of innovation You are expected to maintain the highest level of integrity and confidentiality due to the nature of public sector data Scope Complexity: The scope is deeply technical and focused on the US Federal, State, and Local Government markets You handle the complexity of mapping shared controls across multiple specialized frameworks, ensuring a single remediation effort satisfies FedRAMP High, DoD IL5+, and ITAR requirements simultaneously Authority Impact You have the authority to represent MongoDB in high-stakes meetings with ... (truncated, view full listing at source)