Technical Program Manager, Governance Risk & Compliance - Platform at Jobgether – United States

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Technical Program Manager, Governance Risk & Compliance - Platform in United States.

This role sits at the intersection of cybersecurity, compliance, and program execution, driving the governance, risk, and compliance strategy within a highly regulated and fast-paced environment. You will lead complex initiatives that strengthen security posture while enabling product innovation and scalability. Collaborating with engineering, infrastructure, and leadership teams, you’ll translate compliance frameworks into actionable plans and measurable outcomes. The position requires a balance of technical expertise and strategic thinking to ensure continuous compliance across cloud-native systems. You will play a critical role in audit readiness, risk management, and operational excellence. This is an opportunity to shape secure development practices while supporting mission-critical platforms at scale.

• Lead the execution of governance, risk, and compliance (GRC) programs aligned with frameworks such as NIST RMF, FedRAMP, CMMC, and SOC 2
• Develop and manage integrated program plans covering control implementation, remediation, and continuous monitoring activities
• Coordinate cross-functional teams across engineering, infrastructure, and product to deliver compliance initiatives on time
• Track and manage POA&Ms, control implementation status, and remediation efforts through to resolution
• Support audit readiness by coordinating Security Control Assessments (SCAs), third-party audits, and federal compliance reviews
• Oversee the creation and maintenance of key compliance documentation, including SSPs and control narratives
• Translate risk assessment outputs into actionable remediation plans and track progress against mitigation strategies
• Drive adoption of secure CI/CD and DevSecOps practices aligned with evolving regulatory requirements
• Establish scalable governance processes and ensure alignment with configuration, vulnerability, and change management standards
• Identify program risks, dependencies, and blockers, escalating as needed to ensure successful delivery
• Promote a culture of security awareness and best practices across engineering and product teams

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field
• 8+ years of experience in cybersecurity, compliance, or technical program management
• Proven experience working with federal compliance frameworks such as NIST RMF, FedRAMP, or DoD RMF
• Strong knowledge of NIST SP 800-53 controls, risk management, and continuous monitoring practices
• Hands-on experience managing compliance artifacts such as SSPs, POA&Ms, and authorization packages
• Familiarity with cloud platforms (e.g., AWS) and modern DevSecOps/CI/CD environments
• Experience coordinating Security Control Assessments (SCAs), audits, and third-party compliance reviews
• Proficiency with tools like eMASS or similar authorization management systems
• Strong program management capabilities with experience leading complex, cross-functional initiatives
• Excellent communication skills, with the ability to engage technical teams, executives, and external stakeholders
• Relevant certifications such as CISSP, CISM, CGRC, PMP, or Security+
• Eligibility for security clearance (Secret or higher) is highly preferred

• Competitive salary and performance-based incentives
• Flexible, fully remote work environment
• Comprehensive health coverage including medical, dental, and vision plans
• Generous paid time off and holidays
• Opportunities for professional development and certification support
• Collaborative, mission-driven culture with strong team alignment
• Exposure to cutting-edge technologies in cybersecurity, cloud, and AI-driven platforms
• Career growth opportunities within a fast-scaling organization