GRC Program Manager

YOUR MISSION

We are seeking an experienced Program Manager to lead and coordinate cross-functional GRC initiatives across our organization. The ideal candidate will have demonstrated success in managing certification programs such as DoD IL5 and/or IL6, ISO, CMMC, and other certifications, while overseeing program delivery through structured KPI tracking, cross-team milestone management, and dashboard-driven reporting.

The candidate must be comfortable operating in fast-paced, regulated environments and be able to drive alignment across engineering, security, legal, compliance, and business operations teams. This is a critical role that ensures successful execution and continuous visibility of compliance initiatives for both internal leadership and external partners, including government and commercial stakeholders.

RESPONSIBILITIES:

• Support GRC-related program tracking from inception through delivery across multiple frameworks (e.g. DoD IL5, IL6, ISO, CMMC).
• Build and maintain program dashboards and executive reports using tools such as Jira, Confluence, GRC platforms (e.g. Diligent), and MS Project to provide transparency across teams and to leadership.
• Coordinate and manage timelines, resources, and deliverables across security operations, product compliance, IT operations, and external consultants.
• Track program status against milestones, identify risks, issues, and dependencies, communicate assumptions and key decisions, and drive timely mitigation plans and course corrections as needed.
• Define and monitor Key Performance Indicators (KPIs) for compliance programs and team performance, ensuring successful execution of tasks and ongoing audit readiness.
• Serve as the primary point of contact for internal stakeholders, executive leadership, and external partners, assessors or certification bodies.
• Support compliance readiness activities including pre-assessment readiness, evidence collection, audit facilitation, and post-audit remediation planning.
• Continuously improve program and project workflows, team coordination, and reporting processes for scalable, reliable, repeatable, and consistent program management.

QUALIFICATIONS:

• 5+ years of program and/or project management experience in technology or cybersecurity-related roles.
• At least 5 years exposure to GRC or compliance environments.
• PMP (Project Management Professional) certification
• Proficiency with Atlassian products, such as Jira administration and workflow development
• Proven experience managing certification initiatives involving commercial or public/government sector cloud certifications such as DoD IL5, IL6, CMMC, ISO, etc.
• Demonstrated ability to manage multi-disciplinary teams and complex project interdependencies across business and technical stakeholders.
• Strong proficiency in program management and documentation tools:
• MS Project or similar software
• MS Visio, Lucid Chart or similar software
• Excellent communication and stakeholder management skills, with a strong ability to simplify complexity and drive results across all levels of the organization.

Preferred Qualifications:

• Professional certifications such as:
• Certified Information Systems Auditor (CISA)
• Certified in Risk and Information Systems Control (CRISC)
• Certified ScrumMaster (CSM) or similar Agile certification
• Certified Information Systems Security Professional (CISSP)
• GIAC/SANS
• Experience with cloud environments (e.g., Azure Government) and understanding of government cloud authorization processes.
• GRC platforms (e.g. Diligent or similar software)
• Familiarity with Agile/Scrum and hybrid project delivery models.

COMPENSATION:

• Base Salary: $110K - $190K
• Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave

Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education and experience.

ADDITIONAL REQUIREMENTS:

• Ability to maintain or obtain TS/SCI clearance
• Work Location: this role will be fully onsite at our GravityWorks factory in Centennial, CO or Long Beach, CA.
• Work environment is in a standard office, working at a desk or in a production factory.
• Physical demands may include frequent standing, sitting, walking, bending, and lifting or carrying items up to 20lbs.

This position will be open until it is successfully filled. To submit your application, please follow the directions below. #LI-Remote #LI-Hybrid

To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.

We value diversity of experience, knowledge, backgrounds and perspectives and harness these qualities to create extraordinary impact. True Anomaly is committed to equal employment opportunity regardless of sex, race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, pregnancy, maternity or related condition (including breastfeeding) or any other basis as protected by applicable law. If you have a disability or additional need that requires accommodation, please do not hesitate to let us know.