Compliance Program Manager

Can be either Johnston, RI or Waltham, MA location

Role Description & Responsibilities

The U.S. Compliance Program Manager ensures that Dassault Systemes meets and maintains compliance with key U.S. cybersecurity regulations and standards. This includes driving FedRAMP authorization efforts, ensuring the proper handling of Controlled Unclassified Information (CUI), and managing obligations under ITAR, EAR, and relevant cybersecurity executive orders. The role supports public sector market access, regulatory readiness, and secure delivery of SaaS offerings to highly-regulated customers, in particular Dassault Systemes' 3DEXPERIENCE Platform.

• Actively lead and maintain new FedRAMP authorization program (Moderate or High baseline), including agency sponsorship, 3PAO assessments, SSP development, POA&M management, and continuous monitoring

• Manage compliance to NIST 800-53 and NIST 800-171 standards, including proper safeguarding of CUI in cloud environments

• Interpret and implement requirements from U.S. cybersecurity executive orders (e.g., EO 14028) and CISA directives impacting Dassault Systemes

• Manage operational and technical adherence to ITAR and EAR regulations, including user access controls, data residency, and export compliance

• Collaborate internally to assess compliance impacts of new features, cloud architectures, and third-party integrations

• Support internal audits and external regulatory inspections related to digital services and cybersecurity

• Contribute to cybersecurity compliance internal training

• Participate in regulatory consultations and working groups when applicable, and track best practices from industry bodies and US regulatory authorities

• Coordinate with customer trust team to provide accurate, up-to-date information to customers and partners on regulatory alignment

Qualifications

• Experience & Education - Bachelor's or Master's degree in Information Security, Public Policy, Compliance, or related field

• 5+ years of experience in regulatory compliance, cybersecurity governance, or data protection in a technology, SaaS, or digital services environment

• Proven experience implementing or managing programs aligned with FedRAMP, or similar frameworks

• Familiarity with US cybersecurity and digital service regulations

• Experience working in cross-border, multi-jurisdictional compliance contexts

• Strong understanding of US regulatory structures and compliance frameworks related to cybersecurity, digital services, and privacy

• Ability to translate legal/regulatory texts into actionable internal policies, controls, and operational processes

• Solid knowledge of cybersecurity risk management and third-party/vendor compliance

• Excellent project management and organizational skills; ability to lead cross-functional initiatives under tight deadlines

• Strong written and verbal communication skills; able to draft policies, deliver training, and engage with regulators and external stakeholders

In order to provide equal employment and advancement opportunities to all individuals, employment decisions at 3DS are based on merit, qualifications and abilities. 3DS is committed to a policy of non-discrimination and equal opportunity for all employees and qualified applicants without regard to race, color, religion, gender, sex (including pregnancy, childbirth or medical or common conditions related to pregnancy or childbirth), sexual orientation, gender identity, gender expression, marital status, familial status, national origin, ancestry, age (40 and above), disability, veteran status, military service, application for military service, genetic information, receipt of free medical care, or any other characteristic protected under applicable law. 3DS will make reasonable accommodations for qualified individuals with known disabilities, in accordance with applicable law.
Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable state laws and local ordinances. We are committed to fair employment practices and will evaluate all candidates based on their qualifications, regardless of past arrest or conviction history.

Dassault Systemes offers an excellent salary with potential for bonus, commensurate with experience. Benefits include a choice of plans providing comprehensive coverage for medical, dental, vision care for employee & dependents as well as employee life, short & long term disability, tuition reimbursement, immediate 401K enrollment, 401K match (50 cents on the dollar, up to the first 8% of your eligible compensation that you contribute based on match eligibility criteria), flexible time off policy, and 10 paid holidays.