Docebo

FEDRAMP Program Manager

Docebo

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Tech Stack

AWSCloudGoPMPSDLC

About the role

  • Own and orchestrate the end-to-end FedRAMP roadmap, defining key milestones, managing dependencies, and controlling the critical path. Lead readiness assessments, gap analyses, and remediation planning to ensure timely and audit-ready execution. Collaborate with executive leadership to shape the overall FedRAMP strategy, while taking full ownership of the business case, governance framework, and program operating model.
  • Lead end-to-end preparation for FedRAMP authorization (ATO), partnering closely with Third-Party Assessment Organizations (3PAOs) to ensure a smooth and successful evaluation process. Ensure the effective implementation of required security controls across Product, Infrastructure, and Security, and establish robust continuous monitoring processes to maintain audit readiness and ongoing compliance post-authorization.
  • Partner closely with Engineering and DevOps to drive infrastructure hardening initiatives, collaborate with Security on control implementation, and align with Product to embed secure development lifecycle practices. Engage Legal to address contractual, regulatory, and compliance implications. Support Sales and Go-to-Market teams to enable public sector opportunities and ensure compliance positioning is effectively translated into revenue impact.
  • Proactively identify compliance gaps and operational risks that may impact FedRAMP authorization or ongoing adherence. Maintain and continuously update the risk register, defining clear mitigation and remediation plans with accountable owners. Provide regular executive-level reporting on program progress, risk exposure, and overall compliance posture. Ensure alignment and consistency with broader security and compliance frameworks (e.g., SOC 2, ISO 27001, NIST 800-53).
  • Design and implement scalable, repeatable processes for evidence gathering, documentation management, and compliance reporting. Promote and enable automation of security and compliance controls wherever feasible to improve efficiency and reduce manual overhead. Track and report on key performance indicators, including: Percentage of control implementation coverage, Time to remediate audit findings, POA&M backlog and aging trends, Adherence to continuous monitoring SLAs.
  • Act as the primary point of contact for all FedRAMP-related initiatives, communications, and escalations across the organization. Support Sales and Go-to-Market teams throughout the public sector sales cycle, providing subject matter expertise to position the FedRAMP offering effectively. Clearly articulate the differences between the FedRAMP-authorized environment and the commercial version of the product, ensuring accurate expectation setting with prospects and customers. Partner with Sales, Legal, and Security during RFPs, security reviews, and due diligence processes to strengthen credibility and accelerate deal closure.

Requirements

  • Bachelor’s degree in Business, Computer Science, Engineering, Human-Computer Interaction, or a related field; or equivalent professional experience.
  • 5+ years working as a Program Manager in an Agile SDLC environment.
  • 3+ years experience working with a FedRAMP/GovRAMP ATO.
  • Strong knowledge of NIST800-53, Risk Management Framework (RMF), continuous monitoring requirements.
  • AWS / Public Cloud infrastructure experience.
  • Proven ability to manage complex, cross-functional programs.
  • Detail oriented, strong leader, good communicator, ability to overcome obstacles.
  • Excellent executive communication skills.
  • PMP, CSM, or similar certification a plus.
Benefits
  • Financial Wellness: Own a piece of Docebo through our Employee Share Purchase Plan (ESPP) at a 15% discount, plus a competitive compensation package.
  • Your Well-Being, Covered: You’ll get access to health benefits, so you can get the care you need when you need it.
  • Rest, Relax, Repeat: Rest and recharge with paid vacation days, two company-wide Docebo Days, floating holidays for cultural celebrations, and your birthday off!
  • Family First: We provide coverage offering you time with your little one(s) so you can soak up all those precious moments. Fun fact: we had 30 Docebian babies join the family in 2025!
  • Connections That Count: Connect with global communities through our Employee Resource Groups (including PRIDE, DWA, BIDOC, and Green Ambassadors) and company-wide events that keep the fun rolling all year long.
  • Fri-Yay: Kick off your weekends early with 4:30 PM Fridays (eligible employees only).
  • Swag Central: Look fresh with your new-hire swag and enjoy access to our internal swag store to stay branded year-round.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
FedRAMPGovRAMPNIST 800-53Risk Management Framework (RMF)Agile SDLCcontinuous monitoringinfrastructure hardeningsecurity controls implementationevidence gatheringcompliance reporting
Soft Skills
detail orientedstrong leadergood communicatorability to overcome obstaclesexecutive communication
Certifications
PMPCSM