Technical Program Manager, Governance Risk & Compliance - Platform

Onebrief
4d
Match Resume

About The Position

We are seeking an experienced Technical Program Manager with a strong background in cybersecurity, cloud governance, and compliance to lead Onebrief’s governance, risk, and compliance efforts. This role is pivotal in maintaining and scaling our security posture across regulated environments (FedRAMP, DoD IL5/6, JWICS, NIST RMF) while supporting fast-moving product development. You will work cross-functionally with security engineers, infrastructure engineers, product engineers, product teams, and executive leadership to operationalize security frameworks, manage risk, and guide the organization through audit and authorization processes. This is a highly collaborative and strategic role with an emphasis on program execution and continual improvement. You are a technically fluent program management leader with deep experience supporting federal cybersecurity compliance efforts. You understand both the structure of frameworks like NIST SP 800-53 and the operational realities of engineering teams. You excel at translating compliance requirements into clear execution plans, measurable milestones, and cross-team deliverables. You are organized, proactive, and comfortable driving accountability across stakeholders. Most importantly, you understand that GRC is a continuous operational discipline — not a one-time audit event.

Requirements

  • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or related field
  • 8+ years of experience in cybersecurity, compliance, or technical program management roles
  • Demonstrated experience supporting systems under NIST RMF, FedRAMP, or DoD RMF
  • Experience managing cross-functional technical programs in cloud-native environments and technologies
  • Familiarity with eMASS or similar authorization management systems
  • Experience maintaining or coordinating SSPs, POA&Ms, and authorization packages
  • Strong understanding of:
  • AWS Cloud Technologies
  • NIST SP 800-53 control families
  • Risk management and continuous monitoring practices
  • CI/CD and modern DevSecOps workflows
  • Experience supporting Security Control Assessments or 3PAO audits
  • Certifications (one or more required)
  • CISSP
  • CISM
  • CGRC
  • PMP or equivalent program management certification
  • Security+ or equivalent
  • Proven ability to drive complex, compliance-focused technical programs across multiple stakeholders
  • Experience operating within DoD or federal compliance frameworks (e.g., RMF, FedRAMP)
  • Experience supporting Security Control Assessments, external audits, and Federal Customers
  • Experience managing POA&Ms and remediation efforts in dynamic, cloud-based environments
  • Excellent communication skills with the ability to brief engineers, leadership, and federal stakeholders
  • Secret Clearance, TS/SCI Eligible

Responsibilities

  • Accelerate Onebrief’s execution of GRC programs supporting NIST RMF, FedRAMP High, CMMC, and SOC2 authorizations
  • Develop and manage integrated project plans for control implementation, remediation, and continuous monitoring
  • Coordinate cross-functional teams (Infrastructure, Engineering, Product) to ensure timely delivery of compliance requirements
  • Track control implementation status, POA&Ms, and remediation efforts to closure
  • Support preparation and coordination of Security Control Assessments (SCAs), 3PAOs, and Federal Customer audits
  • Coordinate and track development of SSP updates, control narratives, and authorization artifacts in partnership with GRC Architects
  • Track risk assessment outputs and ensure identified risks are translated into actionable remediation plans
  • Drive the implementation of secure CI/CD practices that meet evolving compliance requirements without blocking velocity.
  • Support the development and operationalization of scalable governance processes defined by GRC leadership
  • Ensure configuration management, vulnerability management, and change control activities align with compliance requirements
  • Identify program risks, dependencies, and blockers, and proactively escalate when necessary
  • Coach teams on security best practices and contribute to a culture of secure product development.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Job Search Resources

Similar Technical Program Manager, Governance Risk & Compliance - Platform job opportunities

🔥 New JobGovernance Risk & Compliance Analyst
Baylor Scott & White Health
Baylor Scott & White Health • Dallas, TX1d
Specialist, Governance, Risk & Compliance
McDonald's Corporation
McDonald's Corporation • Chicago, IL10d • $84,051 - $105,064
🔥 New JobManager Autonomy & Automation - Governance Risk & Compliance
Caterpillar Inc.
Caterpillar Inc. • Peoria, IL1d • Onsite
🔥 New JobSenior Manager, Governance, Risk and Compliance
Metropolis
Metropolis • New York, NY19h • $175,000 - $220,000 • Onsite
Senior Governance, Risk & Compliance Expert
HP
HP • Houston, TX13d
Director, IT - Governance, Risk & Compliance
Zentalis
Zentalis • Island or Peninsula of San Diego, CA11d • $210,000 - $250,000 • Hybrid
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service