hero

We bind our fortunes to those who dare to burn
away the obsolete and forge the unimagined future.

Staff Product Manager, Compliance (Federal & Public)

Cohesity

Cohesity

Product, Compliance / Regulatory
Santa Clara, CA, USA · Heathrow, FL, USA · Washington, DC, USA · Roseville, MN, USA · Remote
USD 195,200-244k / year
Posted on Oct 2, 2025

Cohesity is a leader in AI-powered data security and management. Aided by an extensive ecosystem of partners, Cohesity makes it easy to secure, protect, manage, and get value from data — across the data center, edge, and cloud. Cohesity helps organizations defend against cybersecurity threats with comprehensive data security and management capabilities, including immutable backup snapshots, AI-based threat detection, monitoring for malicious behavior, and rapid recovery at scale.

We’ve been named a Leader by multiple analyst firms and have been globally recognized for Innovation, Product Strength, and Simplicity in Design.

Join us on our mission to shape the future of our industry.

The Staff Product Manager, Public & Federal Compliance will own Cohesity’s compliance strategy and execution for our product portfolio, ensuring our offerings meet the stringent regulatory requirements of government and enterprise customers worldwide. You will act as a cross-functional leader, collaborating with legal, engineering, and sales teams to develop, launch, and scale products that meet standards for privacy, security, and risk mitigation. Your expertise will directly influence Cohesity’s ability to enter and grow into new markets, secure new business, and maintain customer trust.

HOW YOU WILL SPEND YOUR TIME HERE:

  • Compliance strategy and roadmap: Define and execute the product strategy for regulatory compliance and data governance. Translate complex requirements from standards like FedRAMP, DORA, and GDPR into actionable product roadmaps.

  • Cross-functional leadership: Partner with engineering, legal, security, and sales teams to embed compliance by design throughout the entire product development lifecycle. Act as the primary point of contact for compliance matters related to the product portfolio.

  • Regulatory expertise: Maintain deep expertise in relevant global compliance frameworks, including:

    • NIST and FIPS: Ensure products adhere to security standards and guidelines from the National Institute of Standards and Technology (NIST) and Federal Information Processing Standards (FIPS).

    • FedRAMP: Drive and manage the process for FedRAMP authorization, including continuous monitoring, security assessments, and documentation (e.g., SSPs).

    • GDPR: Oversee data governance processes and features to ensure compliance with global data privacy regulations, including the General Data Protection Regulation (GDPR).

    • DORA: Prepare products and processes to meet the EU's Digital Operational Resilience Act (DORA) for the financial sector.

    • IRAP: Guide products through the Information Security Registered Assessors Program (IRAP) process for Australian government customers.

  • Government market focus: Develop product strategies to address the unique needs of government and highly regulated sectors. This includes understanding requirements for agencies (DOD) and State, Local, and Education (SLED) organizations.

  • Market and risk analysis: Conduct market research and risk assessments to identify emerging regulations and competitive landscape changes. Advise senior leadership on risk mitigation and opportunities for new compliance-related product features.

  • Documentation and audits: Oversee the creation and maintenance of compliance documentation. Support internal and external audits by providing necessary evidence and working with auditors.


WE’D LOVE TO TALK WITH YOU IF YOU HAVE SEVERAL OF THE FOLLOWING:

  • Bachelor's degree in Computer Science, Engineering, or a related technical field; or equivalent experience.

  • 10+ years of product management experience, with at least 4 years focused on regulatory compliance and data governance in a SaaS or enterprise software environment.

  • Proven track record of building and managing compliance programs or tooling for complex software products.

  • Deep, demonstrable experience with government compliance frameworks such as FedRAMP, NIST, FIPS, and IRAP.

  • Hands-on knowledge of privacy regulations, including GDPR and its impact on product design and data governance.

  • Strong understanding of security engineering, risk management, and the software development lifecycle.

  • Exceptional communication and stakeholder management skills, with a proven ability to bridge the gap between technical teams, legal experts, and business leaders.

  • Ability to thrive in ambiguous, fast-paced environments and navigate complex regulatory landscapes.

  • Industry-relevant certifications, such as Certified Information Privacy Professional (CIPP), Certified Information Security Manager (CISM), or CISSP.

  • Experience with risk management frameworks for the financial sector (DORA) and government sectors (DoD, SLED).

Disclosure Pursuant to Applicable State Equal Pay Transparency Laws - This position has a starting pay range as listed below. Actual salary depends upon many factors, including a candidate’s skills, qualifications and experience, location, and salary expectations, and therefore a starting salary at the low end, high end, or even above the stated range may be offered. This position may also be eligible for bonus compensation, commission (if in a sales function), and/or equity grants. Additionally, full-time employees are eligible to participate in our comprehensive benefits framework, including health and wellness benefits, vacation, paid holidays and refresh days, 401(k) retirement plan, life and disability insurance coverages, and other benefits the Company may offer from time to time.

Pay Range :

$195,200.00-$244,000.00

The compensation noted above is based on an annualized hourly rate assuming normal full-time employment.

Data Privacy Notice for Job Candidates:

For information on personal data processing, please see our
Privacy Policy.

Equal Employment Opportunity Employer (EEOE)

Cohesity is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status or any other category protected by law.

If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process, or are limited in the ability or unable to access or use this online application process and need an alternative method for applying, you may contact us at 1-855-9COHESITY or
talent@cohesity.com for assistance.

In-Office Expectations

Cohesity employees who are within a reasonable commute (e.g. within a forty-five (45) minute average travel time) work out of our core offices 2-3 days a week of their choosing.

Interested candidates based outside of the designated areas are welcome to apply, provided they have the right to work in the job location.