GRC Program Manager

About The Position

Requirements

• 5+ years of program and/or project management experience in technology or cybersecurity-related roles.
• At least 5 years exposure to GRC or compliance environments.
• PMP (Project Management Professional) certification
• Proven experience managing certification initiatives involving commercial or public/government sector cloud certifications such as DoD IL5, IL6, CMMC, ISO, etc.
• Demonstrated ability to manage multi-disciplinary teams and complex project interdependencies across business and technical stakeholders.
• Strong proficiency in program management and documentation tools:
• Jira and Confluence (Atlassian suite)
• MS Project or similar software
• MS Visio, Lucid Chart or similar software
• Excellent communication and stakeholder management skills, with a strong ability to simplify complexity and drive results across all levels of the organization.
• Ability to maintain or obtain TS/SCI clearance
• To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.

Nice To Haves

• Professional certifications such as:
• Certified Information Systems Auditor (CISA)
• Certified in Risk and Information Systems Control (CRISC)
• Certified ScrumMaster (CSM) or similar Agile certification
• Certified Information Systems Security Professional (CISSP)
• GIAC/SANS
• Experience with cloud environments (e.g., Azure Government) and understanding of government cloud authorization processes.
• GRC platforms (e.g. Diligent or similar software)
• Familiarity with Agile/Scrum and hybrid project delivery models.

Responsibilities

• Support GRC-related program tracking from inception through delivery across multiple frameworks (e.g. DoD IL5, IL6, ISO, CMMC).
• Build and maintain program dashboards and executive reports using tools such as Jira, Confluence, GRC platforms (e.g. Diligent), and MS Project to provide transparency across teams and to leadership.
• Coordinate and manage timelines, resources, and deliverables across security operations, product compliance, IT operations, and external consultants.
• Track program status against milestones, identify risks, issues, and dependencies, communicate assumptions and key decisions, and drive timely mitigation plans and course corrections as needed.
• Define and monitor Key Performance Indicators (KPIs) for compliance programs and team performance, ensuring successful execution of tasks and ongoing audit readiness.
• Serve as the primary point of contact for internal stakeholders, executive leadership, and external partners, assessors or certification bodies.
• Support compliance readiness activities including pre-assessment readiness, evidence collection, audit facilitation, and post-audit remediation planning.
• Continuously improve program and project workflows, team coordination, and reporting processes for scalable, reliable, repeatable, and consistent program management.

Benefits

• Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave