Let’s face it, a company whose mission is human transformation better have some fresh thinking about the employer/employee relationship.

We do. We can’t cram it all in here, but you’ll start noticing it from the first interview.

Even our candidate experience is different. And when you get an offer from us (and accept it), you get way more than a paycheck. You get a personal BetterUp Coach, a development plan, a trained and coached manager, the most amazing team you’ve ever met (yes, each with their own personal BetterUp Coach), and most importantly, work that matters.

This makes for a remarkably focused and fulfilling work experience. Frankly, it’s not for everyone. But for people with fire in their belly, it’s a game-changing, career-defining, soul-lifting move.

Join us and we promise you the most intense and fulfilling years of your career, doing life-changing work in a fun, inventive, soulful culture.

If that sounds exciting—and the job description below feels like a fit—we really should start talking. 

This role is responsible for being a dedicated US Public Sector subject matter expert interfacing with the BetterUp federal team to support the delivery of a best-in-class information security federal GRC program.

What you’ll do:

  • Collaborate closely with Product, Engineering, IT, People Operations, and Legal teams in devising action plans to meet FedRAMP requirements. 
  • Support and lead BetterUp’s US Public Sector GRC program, including requirements gathering, documentation, and planning.
  • Be a FedRAMP subject matter expert (SME) and provide input to various business teams with regard to how FedRAMP compliance may impact product updates, SSP updates, or the underlying relevant processes.
  • Leverage technical and program management skills to plan, track, collaborate, and report on FedRAMP program deliverables, including scheduling and leading meetings, assigning and tracking action items, and developing status reports.
  • Work with the Engineering team to execute on continuous monitoring, including tracking and updating Plan of Action and Milestones and ensuring timely reporting to our government partners.
  • Manage the security awareness and training program for employees on the Federal teams.
  • Collaborate with the Federal Operations team to perform timely and efficient communication with our agencies and the FedRAMP PMO.
  • Lead the Federal Customer Trust program, including external facing documentation and security questionnaires. 
  • Manage and develop related security documentation as applicable for FedRAMP policy lifecycle management.
  • Provide support to the compliance audit and assessment efforts to include external third-party auditors with evidence collection and upload, auditor interview support, and auditor walk-throughs of policies, procedures, and related compliance and security documentation.
  • Assist with performing and managing security impact analyses, reviewing access management controls, creating relevant training deployment to applicable users, and mapping technical implementation of changes to impacted NIST security controls.
  • Assess the impact of new features and architectural changes to the FedRAMP boundary and SSP. 
  • Guide technical teams on relevant NIST requirements and documentation update tasks.
  • Assist GRC team on other ad hoc important tasks when required.

If you have some or all of the following, please apply:

  • Strong communications and critical thinking skills, attention to detail, eagerness to learn, a curious nature, and a fundamental desire to help.
  • Demonstrated achievement in driving and/or supporting a company’s journey in obtaining FedRAMP ATO.
  • Subject matter expert level knowledge FedRAMP, FISMA, NIST 800-53, CMMC, NIST 800-171 as applicable to a SaaS environment.
  • Security experience in at least some of the following domains: application security, vulnerability management, continuous monitoring, incident response, authentication / authorization, or data governance.
  • Extensive knowledge and experience in working with cloud technologies and architectures, preferably AWS.
  • Understanding of security metrics and creation of effective dashboards for management review and consumption.
  • Able to articulate situations, challenges, risks, and see intersection of compliance impacts.
  • Demonstrated ability to create and present security awareness training content.
  • Excellent presentation, facilitation, and communication skills.
  • Ability to build and cultivate strong relationships to make and influence decisions at multiple levels in the organization.
  • Intermediate to advanced level expertise with Excel and PowerPoint
  • Must be a US citizen

 Desirable Requirements 

  • Bachelor’s degree or 4 years experience in Computer Science, Information Technology, or related field.
  • 5-7+ years of direct information security experience, with a primary focus in risk and compliance preferably within software/SaaS industry environments. Startup experience is a plus.
  • 3+ years creating and maintaining System Security Plan (SSP), Plan of Actions & Milestones (POA&M), Security Assessment Plan (SAP), Information Security Risk Assessment (ISRA), Interconnection Systems Agreement (ISA), etc.
  • 3+ years with Security / GRC in a predominantly Cloud/ SaaS environment.
  • Industry certifications such as CISA/CISM/CRISC/CISSP/Security+/CCSK or similar are a plus.
  • Knowledge of other security standards and frameworks such as SSAE-18, ISO 27001, PCI DSS, or similar are a plus.
  • Experience with the DoD Cloud Computing Security Requirements Guide or US state and local security compliance (e.g., StateRAMP) is a plus.

Benefits:

At BetterUp, we are committed to living out our mission every day and that starts with providing benefits that allow our employees to care for themselves, support their families, and give back to their community. 

  • Access to BetterUp coaching; one for you and one for a friend or family member 
  • A competitive compensation plan with opportunity for advancement
  • Medical, dental and vision insurance
  • Flexible paid time off
  • Per year: 
    • All federal/statutory holidays observed
    • 4 BetterUp Inner Work days (https://www.betterup.co/inner-work)
    • 5 Volunteer Days to give back
    • Learning and Development stipend
    • Company wide Summer & Winter breaks 
  • Year-round charitable contribution of your choice on behalf of BetterUp
  • 401(k) self contribution

We are dedicated to building diverse teams that fuel an authentic workplace and sense of belonging for each and every employee. We know applying for a job can be intimidating, please don’t hesitate to reach out — we encourage everyone interested in joining us to apply.

BetterUp Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, disability, genetics, gender, sexual orientation, age, marital status, veteran status. In addition to federal law requirements, BetterUp Inc. complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

At BetterUp, we compensate our employees fairly for their work. Base salary is determined by job-related experience, education/training, residence location, as well as market indicators. The range below is representative of base salary only and does not include equity, sales bonus plans (when applicable) and benefits. This range may be modified in the future.

The base salary range for this role is $163,000 – $252,000.

If you live in New York, the base salary range for this role is: 
$181,000 – $252,000: New York City
$171,000 – $239,000: Nassau, Newburgh
$163,000 – $227,000: Albany, Buffalo, Rochester, Syracuse

Protecting your privacy and treating your personal information with care is very important to us, and central to the entire BetterUp family. By submitting your application, you acknowledge that your personal information will be processed in accordance with our Applicant Privacy Notice. If you have any questions about the privacy of your personal information or your rights with regards to your personal information, please reach out to support@betterup.co

#LI-Hybrid

Apply for this Job

* Required
resume chosen  
Dropbox Google Drive
(File types: pdf, doc, docx, txt, rtf)
Cancel
cover_letter chosen  
Dropbox Google Drive
(File types: pdf, doc, docx, txt, rtf)
Cancel

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in BetterUp’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Voluntary Self-Identification of Disability

Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

  • Alcohol or other substance use disorder (not currently using drugs illegally)
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
  • Blind or low vision
  • Cancer (past or present)
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or serious difficulty hearing
  • Diabetes
  • Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
  • Epilepsy or other seizure disorder
  • Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
  • Intellectual or developmental disability
  • Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
  • Missing limbs or partially missing limbs
  • Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
  • Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
  • Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
  • Partial or complete paralysis (any cause)
  • Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
  • Short stature (dwarfism)
  • Traumatic brain injury

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

Enter the verification code sent to to confirm you are not a robot, then submit your application.

This application was flagged as potential bot traffic. To resubmit your application, turn off any VPNs, clear the browser's cache and cookies, or try another browser. If you still can't submit it, contact our support team through the help center.