FedRAMP Compliance Manager

 
Figma is growing our team of passionate people on a mission to make design accessible to all. Born on the Web, Figma helps entire product teams brainstorm, create, test, and ship better designs, together. From great products to long-lasting companies, we believe that nothing great is made alone—come make with us!

The Governance, Risk and Compliance (GRC) team is focused on security & privacy risk reduction throughout Figma while adhering to legal and customer commitments. We partner closely with cross-functional internal and external partners (customers, auditors) to drive these objectives.
We are looking for an experienced and driven FedRAMP Compliance Manager who is looking to leverage their federal systems information security experience and knowledge to plan, execute and deliver on new strategic federal compliance activities. You will have an exciting opportunity to drive this highly visible initiative from the beginning. As part of this journey, you will navigate unforeseen constraints and challenges that you'll need to solve in a timely manner while successfully partnering with teams across Figma and our customer base.


What you’ll do at Figma:

 
Design, support, advise, and assess the implementation of security controls for a FedRAMP authorized system or other system based on NIST 800-53, 800-37, 800-34, etc.
 
Deliver accurate and concrete compliance guidance and direction to internal partners
 
Build strong relationships with cross-functional teams to facilitate the development of strong compliance programs that support continuous improvement and operational efficiency
 
Develop compliant System Security Plans (SSP) and all required underlying SSP related documentation
 
Drive improvements in existing processes and monitor the measurement and review of internal processes, especially those that affect the quality of the organization's service
 
Assist the team by cultivating strong working relations with industry regulators, accreditation bodies, and authorized auditing firms
 
Facilitate and verify FedRAMP evidence and artifacts are created and uploaded according to FedRAMP continuous monitoring requirements


  


 
We'd love to hear from you if you have:
 

  
7+ years experience working on different compliance frameworks (ISO, NIST, FedRAMP, etc.)
  
Experience building a FedRAMP compliance program from scratch and 1+ years experience maintaining it for a Cloud Service Provider
  
In-depth knowledge of FedRAMP, NIST 800-53 security controls, NIST 800-37 risk management framework, building and running the federal compliance program 
  
A track record of successfully collaborating with technical and business teams to achieve deadline-driven milestones while demonstrating the ability to think critically and creatively
  
Able to independently operate and take a proactive approach to your projects
  
CISSP, CISM, or CISA preferred
 
 

  

   

    At Figma, one of our values is Grow as you go. We believe in hiring smart, curious people who are excited to learn and develop their skills. If you’re excited about this role but your past experience doesn’t align perfectly with the points outlined in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.


   
  
 
 

  

   
Read more about our team
   

    
Investing in Figma: The Decade of Design
    
How work is changing at Figma
    
Figma's next product is a multiplayer whiteboard called FigJam
    
Software Design Startup Figma Is Now Worth $10 Billion
   
  
 


 
 
 
We will work to ensure individuals with disabilities are provided reasonable accommodation to participate in the interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please let your recruiter know if you require accommodation.
 
 
 
About Figma
 
Dylan Field and Evan Wallace co-founded Figma in 2012 with the vision of building tools for designers in the browser. Their goal was to create the first design tool that combined the accessibility of the Web with the functionality of a native app. Today Figma is a platform with tools and spaces to support the entire product development process—idea to design to build—and has simplified collaboration for companies like Microsoft, Uber, and The New York Times to name a few.
 
At Figma, we celebrate and support our differences. We know employing a team rich in diverse backgrounds, experiences, and opinions allows our employees, products, and community to flourish. Figma is an equal opportunity workplace—we are dedicated to equal employment opportunities regardless of race, color, ancestry, religion, sex, national orientation, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.
 
By applying for this job, the candidate acknowledges and agrees that any personal data contained in their application or supporting materials will be processed in accordance with the applicable candidate section of Figma's Privacy Policy.