Compliance Program Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

Exostar · 3 weeks ago

Compliance Program Manager

positionHerndon, VA
timeFull-time
remoteHybrid
senioritySenior Level
date6+ years exp

Exostar is a company that creates cloud-based platforms for secure collaboration in highly regulated industries. They are seeking a Compliance Program Manager to lead and enhance their Cybersecurity Maturity Model Certification (CMMC) service offerings, ensuring high-quality, compliance-aligned experiences for customers while managing cross-functional teams and continuous improvement initiatives.

CollaborationIdentity ManagementInformation TechnologyRisk Management

Responsibilities

Own and manage the end-to-end CMMC services portfolio, including readiness programs, advisory support, and any managed compliance services offered by Exostar
Develop and maintain a strategic roadmap for CMMC services aligned with regulatory updates, customer needs, and Exostar’s business goals
Serve as the internal subject matter expert on CMMC program structure, compliance milestones, scoring methodologies, timelines, and DoD expectations
Evaluate and refine service frameworks, pricing models, delivery methodologies, and customer engagement workflows
Oversee successful delivery of all CMMC-related customer engagements, ensuring quality, consistency, and adherence to documented processes
Coordinate cross-functionally with Engineering, Product Management, Support, Customer Success, and partner organizations to resolve escalations and ensure smooth execution of CMMC services
Act as the primary operational liaison for customers engaged in Exostar’s CMMC services, ensuring they receive timely communication, guidance, and measurable progress
Support sales and customer success teams by providing domain expertise during pre-sales conversations, solution positioning, and service scoping
Maintain deep expertise in CMMC, NIST SP 800-171, DFARS 252.204-7012, 7019, 7020, and related compliance frameworks
Track regulatory changes, DoW updates, and ecosystem developments to ensure Exostar’s services remain accurate and relevant
Develop or enhance documentation, process guides, best practices, templates, and knowledge resources for internal teams and customers
Identify opportunities to automate, scale, or enhance CMMC service delivery, working closely with Product teams to recommend improvements
Track KPIs related to customer progress, adoption, satisfaction, engagement duration, and overall program performance
Prepare monthly/quarterly reporting for leadership, highlighting risks, bottlenecks, and opportunities for improvement
Ensure CMMC services operate in alignment with Exostar’s security, compliance, and quality standards

Qualification

CMMC frameworksNIST SP 800-171Compliance program managementCybersecurity frameworksGRC consultingCMMC-related certificationsProcess ownershipContinuous improvementOperational standardizationCommunication

Required

6+ years of experience in compliance program management, cybersecurity frameworks, GRC consulting, or a related discipline
Strong knowledge of NIST SP 800-171, CMMC 2.0, and DoW cybersecurity requirements
Bachelor's degree in Computer Science, Information Security, Information Technology or equivalent experience
Experience leading cross-functional programs, tracking milestones, and managing service delivery for enterprise customers
Excellent communication skills with the ability to break down complex requirements into clear, actionable guidance
Proven ability to manage multiple concurrent customer engagements or programs
Demonstrated success in process ownership, continuous improvement, and operational standardization

Preferred

CMMC-related certifications such as CCP, CCA, RP, or similar credentials
Experience working with or within regulated industries such as aerospace & defense, government contracting, or high-trust environments
Familiarity with compliance platforms, GRC tools, readiness assessments, scoring methodologies, and evidence collection workflows
Background in SaaS, cloud services, or cybersecurity product organizations
Experience collaborating with or managing third-party RPOs, C3PAOs, or auditor relationships

Benefits

Employee development: we promote internally and provide training and educational assistance
A fun, engaged workplace, with social and community-building events
Comprehensive benefits and flexible time off plans

Company

Exostar

twittertwittertwitter
company-logo
Exostar is a leader in secure cloud-based solutions that improve collaboration,
dateFounded in 2000
location
Herndon, Virginia, USA
people-size201-500 employees
web-link
http://exostar.com

Funding

Current Stage
Growth Stage
Total Funding
$15M
Key Investors
Merck Global Health Innovation Fund
2023-09-26Acquired
2015-10-30Series Unknown· $15M

Leadership Team

leader-logo
Rick Simpson
Chief Financial Officer
linkedin
leader-logo
Derrick Reig
Chief Revenue Officer
linkedin

Recent News

PR Newswire
Exostar Achieves CMMC Maturity Level 2 Certification with Perfect Score Following C3PAO Assessment
2025-12-17
citybiz
Exostar Acquires Robot Morning and ComplyUp
2024-12-18
PR Newswire
Exostar Expands Its Leading Supplier Offerings with Its Acquisitions of Robot Morning and ComplyUp
2024-12-17
Company data provided by crunchbase