Senior Technical Program Manager, Security & GRC

Join Human Interest on our mission to provide accessible retirement benefits to all workers.With over half of working Americans lacking sufficient savings for retirement, many are hindered by employers who do not offer retirement plans. Human Interest is transforming this landscape by making it feasible and accessible for small to medium-sized businesses to provide their employees with a route toward financial independence through retirement savings.As a rapidly growing fintech company, we are revolutionizing the retirement industry with substantial backing from notable investors, including BlackRock, TPG (The Rise Fund), SoftBank, Glynn Capital, NewView Capital, USVP, Wing, Uncork, and others.About the RoleAs the Senior Technical Program Manager for Security & GRC, you will collaborate closely with our Information Security and Governance, Risk, and Compliance teams. Your goal will be to enhance our security measures while maintaining our commitment to addressing America's retirement savings challenges. This strategic role bridges software engineering, corporate risk management, and business operations. You will ensure that our security and risk teams are well-organized, coordinated, and equipped with effective backlogs, focusing on building a technical environment where security and compliance are seamlessly integrated into the software development lifecycle.

Company OverviewID.me is an innovative digital identity wallet designed to simplify how individuals securely verify their identity online. By allowing consumers to authenticate their identity once, ID.me facilitates seamless logins across various websites, eliminating the need for multiple logins and verifications. Over 152 million users benefit from a streamlined login and identity verification experience at more than 20 federal agencies, 45 state government entities, and over 70 healthcare organizations. Additionally, more than 600 consumer brands leverage ID.me to authenticate communities and user segments, fostering genuine relationships and honoring service. Our technology complies with federal consumer authentication standards as set by the Commerce Department and is recognized as a NIST 800-63-3 IAL2/AAL2 credential service provider by the Kantara Initiative. ID.me is dedicated to the mission of 'No Identity Left Behind,' ensuring everyone has access to a secure digital identity. For more information, visit https://network.id.me/.Role OverviewID.me is looking for a highly skilled Technical Program Manager – Security Assurance to act as the operational backbone of our external compliance initiatives. You will co-manage the complete lifecycle of controls, policies, and program-specific documentation for frameworks such as FedRAMP, ISO 27001, and SOC 2, while also contributing to our Kantara accreditation efforts.In this role, you will independently drive cross-functional alignment, prioritizing outcomes over tasks. A distinctive requirement is a high level of proficiency with AI tools; our team employs specially designed AI agents for evidence validation, control assessment, and findings management. Fluency in AI-assisted workflows is a necessity.This position requires full-time, in-office attendance at our Mountain View, CA or McLean, VA locations.

True Anomaly develops technology to address the engineering, manufacturing, and operational needs of space security and sustainability. The team works where spacecraft, software, and artificial intelligence meet, supporting the United States, its allies, and commercial partners in maintaining secure and sustainable access to space. With a focus on peaceful use of space, True Anomaly's work influences communications, finance, navigation, and logistics around the globe. The company aims to protect global security by advancing sustainable practices and capabilities in space operations. The team values creativity, challenging assumptions, and the strength of its people. These principles guide efforts to create unique advantages and reach ambitious goals. Role overview The Senior Technical Program Manager, Security & Infrastructure, is part of the Security & Infrastructure PMO and plays a central role in the organization. Based in Denver, CO or Long Beach, CA, this position leads the execution of a diverse portfolio that includes industrial, application, platform, and enterprise security programs. The role covers both complex project delivery and the operational routines that keep security and infrastructure functions running smoothly at scale. What you will do Lead and coordinate projects across secure facilities, network infrastructure, application and product security, vulnerability management, cloud and platform security, and identity and access management. Work closely with technical leaders to align on strategy and execution, ensuring teams stay clear and motivated. Quickly adapt to new technical areas, building credibility and delivering results regardless of the domain. Support and improve processes that form the foundation of security and infrastructure operations. Who thrives in this role This position fits someone who can quickly grasp new situations, collaborate with technical leaders, and achieve results across different domains. Deep expertise in every area is not required, but the ability to adapt, build trust, and drive progress is essential.

Join CoreWeave as a Technical Program Manager specializing in Security Compliance. In this pivotal role, you will oversee and drive security compliance initiatives across our technical programs. Your expertise will ensure that we adhere to industry standards and best practices, thereby safeguarding our infrastructure and data integrity.

Join CoreWeave as a Security Technical Program Manager, where you will play a pivotal role in ensuring the integrity and security of our cloud infrastructure. Collaborate with cross-functional teams, including security, engineering, product, and operations, to deliver exceptional performance while maintaining privacy and compliance. If you are driven by innovation in cloud technologies and have a knack for managing large-scale programs, we want to hear from you!

Join our dynamic team at rula as a Security Technical Program Manager, where you will play a pivotal role in overseeing security projects and ensuring the successful execution of our technical programs. This remote position allows you to be part of a collaborative environment while making a significant impact in the field of security management.

Aurora Innovation seeks a Staff Security Technical Program Manager based in Mountain View, California. This role leads major security projects and works closely with teams throughout the organization to enhance security measures and ensure compliance with industry expectations. Key Responsibilities Plan and execute security strategies to protect Aurora’s technology and customer information. Work with engineering, product, and other internal groups to put security programs in place and track their effectiveness. Maintain alignment with current security standards and regulatory requirements. Role Impact This position plays a central part in shaping Aurora’s approach to security and safeguarding the company’s critical assets.

Join Outreach as a Technical Program Manager - Security and play a pivotal role in safeguarding our innovative platform. In this position, you will lead cross-functional teams to ensure the highest standards of security are integrated into our product offerings. Your expertise will help shape our security strategy, and you will work closely with engineering, compliance, and product management to identify and mitigate risks.

Join the 1Password Team and Shape the Future of Digital Security! 1Password is experiencing rapid growth, surpassing $400M in ARR and securing a place on the Forbes Cloud 100 for four consecutive years. Our partnerships with renowned brands, including Oracle Red Bull Racing and the Utah Mammoth, highlight our forward momentum.About 1PasswordAt 1Password, we are committed to creating a secure and productive digital ecosystem. Our mission is to enhance employee productivity while maintaining top-notch security by ensuring that every identity is verified, every application login is secure, and every device is trusted. As pioneers in the cybersecurity landscape, we introduced the market-leading enterprise password manager and developed Extended Access Management, a groundbreaking cybersecurity category tailored for modern workflows involving both people and AI. Over 180,000 businesses, from Fortune 100 giants to cutting-edge AI innovators, rely on 1Password to enable their teams to securely utilize the SaaS and AI tools necessary for peak performance.If you are passionate about enhancing digital safety for millions, eager to collaborate with a motivated team, and excited to tackle complex challenges in a dynamic environment, we want to hear from you. Join us in contributing to a safer and simpler digital future.We are on a mission to build trust at scale, and we’re looking for a Senior Security Engineer – GRC to design and implement automation, dashboards, and integrations that empower our Governance, Risk, and Compliance (GRC) operations.In partnership with the Senior Manager of GRC, you will develop robust automation solutions that scale our security and privacy initiatives—from audit preparedness to policy enforcement and customer trust workflows. A significant focus will be on operationalizing our newly selected GRC platform, seamlessly integrating it with our internal systems, and ensuring it facilitates automated, scalable assurance processes throughout the organization.This hands-on technical position is ideal for those passionate about embedding GRC into the company’s operational fabric. It sits at the intersection of security engineering, compliance, and platform operations, making it perfect for candidates with a solutions engineering or DevSecOps background who thrive in impactful and fast-paced environments.This position is fully remote and available to candidates located in the US or Canada.

Join astra as a Governance, Risk, and Compliance (GRC) Program Manager and play a pivotal role in ensuring our organization's adherence to regulatory requirements and best practices. You will lead initiatives that enhance our risk management framework, develop compliance strategies, and foster a culture of accountability across the organization. Your expertise will be instrumental in guiding cross-functional teams in risk assessment and mitigation. This is a unique opportunity to contribute to a forward-thinking company committed to excellence and integrity.

ABOUT THE ROLE: Rightway Healthcare is seeking a Senior Security Governance, Risk, and Compliance (GRC) Analyst who is eager to elevate their career within a dynamic healthcare setting. If you have experience managing GRC programs in a fast-paced or startup culture, this is your opportunity to leverage that agility while contributing to a pioneering organization in healthcare. You will play a pivotal role in addressing emerging concerns related to AI risk and governance as we integrate cutting-edge technologies into our platform. In this position, reporting to the Security GRC Manager, you will be responsible for essential deliverables that ensure the seamless operation of our security and compliance initiatives. Your work will bolster customer assurance, facilitate vendor risk assessments, and manage ongoing governance processes. This role is perfect for someone who thrives in hands-on GRC environments and aspires to grow as a senior individual contributor in a mission-driven organization that is transforming pharmacy benefit management and care navigation. WHAT YOU’LL DO: Core GRC Operations Oversee and execute regular GRC tasks, including quarterly access reviews, audit evidence collection, and risk register reconciliation. Document and monitor the completion of control activities while escalating issues as necessary. Support internal and external audits, ensuring timely and comprehensive evidence collection and review. Customer Assurance Collaborate with Sales, Legal, and Product teams to lead responses to customer security inquiries and RFPs, progressively managing more complex requests as your expertise grows. Continuously enhance a centralized repository of frequently requested security documentation and artifacts (e.g., SOC 2, SIG, CAIQ). Vendor Risk Management Engage with various business leaders to conduct initial and periodic vendor risk assessments, ensuring third parties align with Rightway's security and compliance standards. Track and follow up on remediation and risk treatment plans for vendors that present unacceptable risk. Facilitate and promote the automation and optimization of the vendor risk assessment lifecycle using both AI and traditional tools. AI Governance Assist in the implementation and operationalization of AI risk and governance controls in accordance with ISO/IEC 42001 (AI Management System) and newly emerging regulatory standards such as the CAIA (Colorado AI Act). Monitor AI systems to ensure compliance with ethical and legal standards.

The Chan Zuckerberg Initiative, established in 2015 by Priscilla Chan and Mark Zuckerberg, is dedicated to tackling some of society's most pressing challenges, ranging from disease prevention and cure to enhancing education and meeting community needs. We offer robust operational support across our diverse initiatives.The TeamOur work spans Science, Education, and community engagement, where we integrate technology with grantmaking, impact investing, and collaborative efforts to expedite progress toward our mission. The Operations organization is pivotal in driving this work forward.Our Operations encompass teams in Brand & Communications, Central Tech, Finance, People, Real Estate/Workplace/Events/Facilities/Security (REWFS), Strategy & Operations, and Ventures. These teams deliver essential services, strategies, and operational support needed for CZI to fulfill its mission of creating a better future for all.The OpportunityWe are looking for a talented Technical Program Manager with a focus on Application Security, particularly in identifying vulnerabilities and developing innovative solutions to mitigate those risks at scale. Your role will extend beyond merely fixing security vulnerabilities; you will be instrumental in creating secure frameworks to preemptively address potential issues. You will collaborate closely with developers and engineers across large organizations, utilizing your deep technical knowledge in security and development to establish secure foundations for the application and infrastructure teams supporting the CZI Enterprise.This role will significantly shape product and application security, safeguarding scientific and educational innovation at the Chan Zuckerberg Initiative, Biohub, and Learning Commons. You will partner with a dynamic team of engineers, Product Managers, and Security Professionals to build shared tools and platforms that support a diverse collection of Research Scientists, Data Scientists, AI Researchers, and Engineers working on some of the world’s most intricate challenges. As part of the Information Security team, your contributions will directly influence all of CZI’s initiatives by ensuring the security and scalability of the technological solutions fueling our mission.What You'll DoConceive, design, develop, and improve...

FluidStack is seeking a dynamic and skilled Technical Program Manager for Security to drive the security initiatives across our organization. In this pivotal role, you will collaborate with cross-functional teams to ensure the successful delivery of security programs while maintaining a focus on innovative solutions to enhance our security posture.

Figma is seeking a Technical Program Manager to focus on security across its products and data. This position plays a key role in organizing and driving security projects, ensuring that teams work together to address risks and maintain high standards. Key responsibilities Coordinate security initiatives with multiple teams to help safeguard Figma’s products and data. Apply technical expertise to guide projects that improve security protocols. Collaborate with engineering, product, and other groups to address and solve security challenges. Location This role is based in San Francisco, CA, New York, NY, or can be located elsewhere within the United States.

Who We AreAt Verkada, we are revolutionizing the way organizations safeguard their personnel and assets through an integrated, AI-driven platform. As a frontrunner in cloud-based physical security, Verkada empowers organizations to enhance safety and operational efficiency via a unified software platform, offering solutions such as video surveillance, access control, air quality monitoring, alarms, intercoms, and visitor management.With over 30,000 organizations globally, including more than 100 Fortune 500 companies, Verkada is recognized as a trusted partner for physical security, providing seamless management, intelligent oversight, and scalable solutions. Established in 2016, we have experienced rapid growth, boasting 15 offices and a workforce of over 2,200 dedicated professionals.About the RoleWe are in search of an enthusiastic Senior Manager of Technical Programs who will spearhead impactful technical initiatives and strategically expand our channel partner ecosystem. This role intricately blends extensive technical program management prowess with a strong emphasis on partner development, enablement, and success. The ideal candidate will demonstrate exceptional skills in data reporting and analytics, possess significant experience in optimizing processes, and lead a team of technical program managers and operations specialists.What You'll DoOversee a technical program from inception to completion: define strategy, requirements, scope, timelines, resources, and success metrics, while managing communications with both internal and external stakeholders.Execute with precision: manage dependencies, foresee and mitigate technical and operational risks, and create or refine processes for scalability.Lead a compact team of program and operations specialists; foster cross-functional alignment with sales, channel partners, and solutions engineering, ensuring visibility at the executive level.Develop and refine channel partner processes including qualification requirements, onboarding, compliance, and offboarding; represent Verkada at partner events and promote thought leadership.Make informed decisions based on data: construct reporting and automation, analyze extensive data sets to derive Business Intelligence (BI), and translate partner insights into actionable go-to-market feedback and investment priorities, acting as the liaison between engineering and partners.

True Anomaly, Inc. develops technology to address the engineering, manufacturing, and operational challenges of space security and sustainability. Based in Denver, the company works at the intersection of spacecraft, software, and artificial intelligence to support the United States, its allies, and commercial partners. The mission centers on keeping space accessible and secure for all. Role overview The Senior Technical Program Manager - Mission Security leads the Security & Infrastructure organization’s program delivery portfolio. This role is responsible for making sure the security team meets its commitments across all programs. A primary focus is achieving Authorization to Operate (ATO) and ensuring key program milestones are reached on schedule. What you will do Oversee program delivery for the Security & Infrastructure team Coordinate the security team’s work to fulfill commitments to multiple programs Drive progress toward Authorization to Operate (ATO) and major milestones Values Be the offset. Creativity and ingenuity guide the search for unique advantages. What would it take? Challenging assumptions leads to ambitious outcomes. It’s the people. The team is the company’s greatest strength.

About StravaStrava is the premier application for active individuals. With a vibrant community of over 180 million athletes across more than 185 countries, Strava goes beyond mere workout tracking; it fosters collective progress, helping users form new habits and achieve personal bests. Regardless of your chosen sport or tracking method, Strava is your complete companion. Connect with your peers, surpass your goals, and ensure every effort counts. Embark on your journey with Strava today.Our mission is straightforward: to inspire individuals to embrace their best active lives. We harness the transformative power of movement to forge connections and propel people forward.Role OverviewWe are on the lookout for a Senior Technical Program Manager to spearhead intricate, high-priority security initiatives that intersect with Engineering, Infrastructure Product, Legal, Operations, and other cross-functional teams. This position will deliver dedicated program management support for security endeavors, ensuring transparent communication, efficient processes, and structured execution throughout the organization.The successful candidate will possess a robust background in managing complex technical programs, a thorough grasp of security principles, and the capacity to collaborate effectively with engineering and product teams to deliver secure, scalable solutions. You will excel in a dynamic, sophisticated atmosphere, overseeing programs from conception to delivery, mitigating risks, and ensuring alignment among various stakeholders.We embrace a flexible hybrid work model, which typically requires you to spend more than half your time on-site at our SF office — three days each week.Your ResponsibilitiesLead the end-to-end execution of multi-quarter security initiatives—including IAM upgrades, vulnerability management enhancements, compliance readiness projects, and security architecture modifications—from proposal to launch, operational rollout, and post-launch refinement.Facilitate collaboration among Engineering, IT, Product, Legal, and GRC, acting as the central point of alignment across time zones to eliminate ambiguity, streamline decision-making, and sustain progress.Manage program communications, creating clear status updates, designing and pulling key metrics, executive briefings, risk logs, and decision records to provide stakeholders at all levels with timely, actionable insights.Proactively identify and mitigate risks by executing structured assessments of dependencies, resources, and requirements.

Oscar Health builds technology-driven health insurance with a focus on personal, supportive experiences. Since 2012, the company has aimed to make insurance feel as approachable as working with a trusted family doctor. Role overview The Senior Security Engineer I, GRC joins Oscar’s Security Team to design and operate systems that deliver ongoing security assurance, actionable risk insights, and scalable compliance. This position focuses on engineering infrastructure and automation that enable the organization to demonstrate security and compliance in practice, not just through documentation or audit preparation. What you will do Design and maintain systems that automate security assurance and compliance processes Integrate governance and control validation into system architecture Connect operational telemetry, engineering workflows, and risk signals to create a feedback loop for security intelligence Identify patterns and relationships that traditional GRC programs may overlook Collaborate closely with the Senior Manager of GRC Requirements Background in security engineering, platform engineering, risk management, and regulatory assurance Ability to combine technical and compliance expertise to create scalable solutions Experience with automation, telemetry, and self-evidencing controls Work location This role is based in Oscar’s New York City office. The hybrid schedule requires three days per week in the office. Thursdays are mandatory in-office days for team meetings and events; the other two days are flexible. Compensation and benefits Base salary: $163,944 to $215,176 per year Eligibility for equity grants and annual performance bonuses Access to Oscar’s unlimited vacation program Comprehensive employee benefits

Thea.energy is seeking a dynamic and experienced Senior Technical Program Manager to join our innovative team. In this pivotal role, you will lead cross-functional teams to drive the successful execution of technical projects that align with our strategic goals. Your expertise in program management will be essential in ensuring that projects are completed on time, within scope, and within budget.As a Senior Technical Program Manager, you will collaborate closely with engineering, product, and operations teams to facilitate project planning, risk management, and stakeholder communication. You will utilize your strong analytical skills to monitor project performance and implement improvements as necessary.

Become a Catalyst for Positive Change at Axon.At Axon, our mission is to Protect Life. We are innovators, tackling society's most pressing safety and justice challenges with our advanced ecosystem of devices and cloud-based software. Our collaborative culture thrives on open communication and diverse perspectives from our customers, communities, and each other.Working at Axon is dynamic, rewarding, and impactful. Here, you will take charge and initiate meaningful change while continuously developing your skills at a company that values your contributions.Your Role and ImpactAs a Senior Technical Program Manager (TPM) focused on Axon Cloud Trust & Security, you will lead the execution of critical security compliance and government authorization projects (such as FedRAMP, GovRAMP, CJIS, and FIPS). Collaborating closely with teams across Cloud Engineering, Infrastructure, Product Security, and Compliance, you will convert requirements into actionable engineering tasks, expedite control implementations and remediation efforts, and enhance audit readiness through automation.This role is a builder position: you will bring clarity to complex issues, align multiple engineering teams, and ensure Axon delivers secure and compliant cloud services without compromising speed.