Technical Program Manager Governance Risk & Compliance - Platform

Onebrief is collaboration and AI-powered workflow software designed specifically for military staffs. By transforming this work Onebrief makes the staff as a whole superhuman - meaning faster smarter and more efficient.

We take ownership seek excellence and play to win with the seriousness and camaraderie of an Olympic team. Onebrief operates as an all-remote company though many of our employees work alongside our customers at military commands around the world.

Founded in 2019 by a group of experienced planners today Onebrief’s team spans veterans from all forces and global organizations and technologists from leading-edge software companies. We’ve raised $320m+ from top-tier investors including Battery Ventures General Catalyst Sapphire Ventures Insight Partners and Human Capital and today Onebrief is valued at $2.15B. With this continued growth Onebrief is able to make an impact where it matters most.

We are seeking an experienced Technical Program Manager with a strong background in cybersecurity cloud governance and compliance to lead Onebrief’s governance risk and compliance efforts. This role is pivotal in maintaining and scaling our security posture across regulated environments (FedRAMP DoD IL5/6 JWICS NIST RMF) while supporting fast-moving product development.

You will work cross-functionally with security engineers infrastructure engineers product engineers product teams and executive leadership to operationalize security frameworks manage risk and guide the organization through audit and authorization processes. This is a highly collaborative and strategic role with an emphasis on program execution and continual improvement.

You are a technically fluent program management leader with deep experience supporting federal cybersecurity compliance efforts. You understand both the structure of frameworks like NIST SP 800-53 and the operational realities of engineering teams.

You excel at translating compliance requirements into clear execution plans measurable milestones and cross-team deliverables. You are organized proactive and comfortable driving accountability across stakeholders. Most importantly you understand that GRC is a continuous operational discipline — not a one-time audit event.

• Accelerate Onebrief’s execution of GRC programs supporting NIST RMF FedRAMP High CMMC and SOC2 authorizations

• Develop and manage integrated project plans for control implementation remediation and continuous monitoring

• Coordinate cross-functional teams (Infrastructure Engineering Product) to ensure timely delivery of compliance requirements

• Track control implementation status POA&Ms and remediation efforts to closure

• Support preparation and coordination of Security Control Assessments (SCAs) 3PAOs and Federal Customer audits

• Coordinate and track development of SSP updates control narratives and authorization artifacts in partnership with GRC Architects

• Track risk assessment outputs and ensure identified risks are translated into actionable remediation plans

• Drive the implementation of secure CI/CD practices that meet evolving compliance requirements without blocking velocity.

• Support the development and operationalization of scalable governance processes defined by GRC leadership

• Ensure configuration management vulnerability management and change control activities align with compliance requirements

• Identify program risks dependencies and blockers and proactively escalate when necessary

• Coach teams on security best practices and contribute to a culture of secure product development.

• Bachelor’s degree in Cybersecurity Information Systems Computer Science or related field

• 8+ years of experience in cybersecurity compliance or technical program management roles

• Demonstrated experience supporting systems under NIST RMF FedRAMP or DoD RMF

• Experience managing cross-functional technical programs in cloud-native environments and technologies

• Familiarity with eMASS or similar authorization management systems

• Experience maintaining or coordinating SSPs POA&Ms and authorization packages

• Strong understanding of:

  • AWS Cloud Technologies

  • NIST SP 800-53 control families

  • Risk management and continuous monitoring practices

  • CI/CD and modern DevSecOps workflows

• Experience supporting Security Control Assessments or 3PAO audits

• CISSP

• CISM

• CGRC

• PMP or equivalent program management certification

• Security+ or equivalent

• Proven ability to drive complex compliance-focused technical programs across multiple stakeholders

• Experience operating within DoD or federal compliance frameworks (e.g. RMF FedRAMP)

• Experience supporting Security Control Assessments external audits and Federal Customers

• Experience managing POA&Ms and remediation efforts in dynamic cloud-based environments

• Excellent communication skills with the ability to brief engineers leadership and federal stakeholders

• Secret Clearance TS/SCI Eligible

Notice to Third Party Recruitment Agencies
Please note that Onebrief does not accept unsolicited resumes from recruiters or employment agencies. In the absence of an executed Recruitment Services Agreement there will be no obligation to any referral compensation or recruiter fee. In the event a recruiter or agency submits a resume or candidate without an agreement Onebrief explicitly reserves the right to pursue and hire those candidate(s) without any financial obligation to the recruiter or agency. Any unsolicited resumes including those submitted to hiring managers shall be deemed the property of Onebrief.

What We Do

Before Onebrief military planning and collaboration was slow inefficient and resource-intensive. Building slides with no version control as partners collaborated would have staffs spend weeks or months on a single product or document. With Onebrief these workflows are now simple and collaboration between large commands is efficient. Staff optimization is the key to building a more resilient more effective military. Today Onebrief users report at least 2x time savings - and growing. Onebrief is a first of its kind software for the military. While many others have tried to build a solution for this problem Onebrief’s “card” structure for reusing data and enabling real time updates is what makes this possible. Core features and attributes that make this platform powerful include: - Global Collaboration - Real-Time Updates - AI Automation - Interoperability + Integrations - Deployable across Secret and Top Secret Networks Mission Driven Onebrief is composed of professionals from backgrounds of all kinds - spanning veterans across forces and organizations and technologists from leading-edge software giants. Onebrief is more than just a software platform; it's a mission-driven company dedicated to improving the efficiency and effectiveness of military planning. By joining the team you'll contribute to solutions that directly support national security and the work of service members. Your work directly addresses critical challenges that military planners and operators face daily. Every line of code and every design decision contributes to real-world outcomes. The software was designed and built by a team of experienced planners - lending a nuanced perspective on the challenges our partners face. Our team embeds alongside users - from the Pentagon to the Indo-Pacific - to build a platform that meets their unique needs. Rapid Strategic Growth Our users love the platform and growth is scaling most recently reporting operational usage growth at a 19600% annualized rate. Stronger utilization is underway and we’re at an exciting period of advancement. As a rapidly growing organization you'll directly influence its direction and long-term success. Over the past year we’ve seen exciting growth metrics: First our headcount has grown 150% YoY to keep pace with our product advancement and customer growth. Our funding has skyrocketed most recently raising our Series C led by top-tier venture investors who have deep expertise in defense tech.

Why Work With Us

Impactful Transformation At Onebrief we believe optimizing the military staff is the most impactful thing - on a per-dollar basis - in defense tech right now. This has the potential to save the department of defense billions of dollars and save users countless hours. It’s a longstanding problem that we’re uniquely positioned to solve.

Gallery