Government Services Program Manager

Stephen Gould Corporation•Duluth, GA

About The Position

Stephen Gould is seeking a Government Services Program Manager to lead and support regulatory compliance, cybersecurity governance, government contracting activities, and cross-functional operational initiatives within a highly regulated aerospace and defense environment. This role serves as a key internal advisor to both Gould Southern and the broader Stephen Gould organization by evaluating business opportunities involving government or defense-related work and determining whether specialized regulatory oversight is required. The ideal candidate will have strong experience with ITAR, FAR/DFARS, export controls, CMMC, and cybersecurity compliance frameworks, along with the ability to communicate complex regulatory requirements clearly across technical and non-technical teams. Gould Southern is a 40-person, AS9100-certified, ITAR-compliant, GSA-registered subsidiary of Stephen Gould. Built specifically to operate within the defense supply chain, and over 18 years it has become a trusted partner on advanced U.S. defense and aerospace programs including next-generation stealth bomber platforms, multirole fighter aircraft, airborne early warning and command-and-control aircraft, and a high-profile executive transport aircraft program owned by the U.S. Government. Its core capabilities include turnkey tool kitting, RFID-based tool control and asset tracking, warehouse automation, and on-site program execution for major aerospace and defense contractors. The organization partners with major aerospace and defense contractors and operates within a highly regulated environment requiring rigorous compliance, cybersecurity, and operational controls.

Requirements

Bachelor’s degree in Business, Compliance, Government Contracting, Cybersecurity, Supply Chain, or related field preferred
5+ years of experience in government contract compliance, regulatory affairs, program management, or related defense industry environment
Strong working knowledge of ITAR, FAR/DFARS, export controls, and government contracting regulations
Experience supporting or implementing CMMC Level 1 and/or Level 2 requirements
Experience developing or managing compliance programs, policies, and internal controls
Experience interacting directly with regulatory agencies, including filings, registrations, audits, or compliance inquiries
Experience maintaining or supporting System Security Plans (SSPs) and cybersecurity governance documentation
Working knowledge of NIST SP 800-171 security requirements and related compliance assessment methodologies
Strong communication skills with the ability to explain regulatory requirements to non-compliance stakeholders
Ability to manage multiple priorities in a fast-paced, highly regulated environment

Nice To Haves

Experience evaluating regulatory applicability for new business opportunities or contract types
Familiarity with GSA contracting and government procurement processes
Experience designing and delivering compliance or cybersecurity training programs
Knowledge of ISO and AS9100 quality systems
Background in aerospace, defense, manufacturing, supply chain, kitting, or industrial distribution
Experience supporting incident response and remediation processes
Understanding of data privacy and information security frameworks
Strong analytical, organizational, and problem-solving skills

Responsibilities

Evaluate incoming business opportunities to determine applicability of ITAR, FAR/DFARS, export controls, CMMC, and other government contracting requirements
Support bid/no-bid decisions related to compliance obligations and organizational capability.
Review solicitations, RFQs, and contractual flow downs for regulatory and compliance implications.
Serve as an internal advisor to Stephen Gould agents and leadership regarding regulatory applicability and compliance obligations
Prepare, submit, and manage regulatory applications including permits, licenses, registrations, certifications, and authorizations
Act as the primary point of contact with regulatory agencies and maintain ongoing agency relationships
Review contracts and identify compliance obligations associated with government-related work
Support regulatory audits, assessments, and compliance inquiries
Monitor changes in regulatory requirements and communicate impacts to the business
Manage ITAR compliance programs, export control initiatives, cybersecurity governance, and data privacy requirements
Maintain and update the IT Privacy and Security Program Strategy and Gould Southern’s System Security Plan (SSP)
Support CMMC implementation activities, including risk assessments, remediation planning, and compliance tracking
Evaluate and improve processes related to incident response, unauthorized access reporting, and sensitive information protection
Coordinate cybersecurity compliance initiatives with internal teams and external IT stakeholders; this role emphasizes cross-functional collaboration and compliance oversight rather than hands-on systems administration
Partner with IT, legal, and governance teams to maintain cybersecurity and compliance standards
Develop and deliver compliance and cybersecurity training programs, including phishing awareness and export control education
Conduct risk assessments and oversee mitigation activities related to cybersecurity and regulatory compliance
Support operational and program execution activities as needed across client, supplier, manufacturing, and internal teams
Assist in coordinating delivery timelines, compliance requirements, quality standards, and process improvement initiatives
Identify and escalate risks impacting compliance, schedule, scope, or operational performance
Promote continuous improvement initiatives across workflows and operational processes
Support adherence to ISO, AS9100, and internal quality standards