CrawlJobs Logo

Senior Security Risk & Compliance Program Manager

163400.00 - 192000.00 USD / Year · Job Posted April 05, 2026
Apply Position
Job Link Share

Job Description

We’re not just building better tech. We’re rewriting how data moves and what the world can do with it. With Confluent, data doesn’t sit still. Our platform puts information in motion, streaming in near real-time so companies can react faster, build smarter, and deliver experiences as dynamic as the world around them. As a Security Technical Program Manager in the Trust & Security organization, you will play a critical role in fulfilling the vision to secure Confluent’s platform and cloud offerings through a combination of technical expertise, security experience, and excellent program management skills.

Job Responsibility

  • Mentor other Security Program Managers on execution and delivery
  • Work with stakeholders to drive critical security initiatives for the company
  • Manage and scale security programs by defining milestones and success criteria, resource allocation, and successful on-time delivery
  • Proactively identify and resolve roadblocks/challenges affecting projects
  • Drive automation and process improvements for security programs
  • Explain technical architecture, decisions, and tradeoffs to both engineering and other functions
  • Work with Engineering, Product, and Security leadership to streamline and drive our projects on a predictable schedule
  • Participate in operational security work, including incident response and vulnerability management

Requirements

  • 5+ years of relevant industry experience
  • Strong foundational knowledge in security domains with expertise in at least one
  • Experience in running long-term security programs that deliver iterative improvements and risk reduction over time
  • Experience in operational security work, such as incident response and vulnerability management
  • Experience driving complex and large programs across organizations
  • Strong communication, interpersonal, and leadership skills to work with both engineering and non-technical stakeholders
  • Experience managing end-to-end lifecycle of technical projects
  • Bachelor's degree in Computer Science, a related field, or equivalent practical experience

Nice to have

  • Experience in areas such as release management, cost modeling, and capacity planning
  • Strong technical skills
  • Experience in actual design and development of software programs
  • Experience in leveraging artificial intelligence to manage programs at scale

What we offer

  • Remote-First Work
  • Robust Insurance Benefits
  • Flexible Time Away
  • The Best Teammates
  • Experience Ambassadors
  • Open and Honest Culture
  • Well-Being and Growth
  • Offers Equity

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Security Risk & Compliance Program Manager

8 matching positions

Senior Program Manager, AV Compliance - International Vehicle and Driver Compliance

Waymo is an autonomous driving technology company with the mission to be the wor...
Location
Location
United Kingdom , London
Salary
Salary:
103000.00 - 108000.00 GBP / Year
waymo.com Logo
Waymo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 5-6 years of experience in a regulatory compliance role, on a legal team, or in a dedicated partnership capacity, preferably within a safety-focused or transportation organization
  • Proven track record of managing complex vendor engagements or projects, including holding partners accountable to rigorous compliance and performance metrics
  • Exceptional communication skills, with the ability to distill complex regulatory requirements into actionable guidance for diverse audiences
  • Advanced gap-finding and risk-assessment abilities, with experience proactively mitigating issues before they impact operations
  • High-level organizational and project management skills, with a demonstrated ability to lead initiatives from concept to completion
  • Systems-thinking mindset, with the ability to transform manual, repetitive tasks into sophisticated, automated workflows at scale
Job Responsibility
Job Responsibility
  • Build relationships with regulators and lead the strategy to identify and secure contracts with potential vendors for scalable international vehicle compliance
  • Manage vehicle and driver compliance activities such as permitting and registration
  • Oversee vendor partnerships for autonomous vehicles and operators, monitoring the health and compliance of operations through high-level program management
  • Architect and scale internal vehicle and driver compliance frameworks and automated processes to meet regulatory requirements in rapidly evolving global markets, including through the use of artificial intelligence (AI) tools
  • Design and implement comprehensive KPI frameworks and reporting structures to monitor, assess, and drive improvements in operational and vendor performance
  • Establish documentation standards for compliance processes and lead communication strategies for vendors and executive stakeholders
  • Drive cross-functional collaboration with internal software development teams to build consistent, scalable technical solutions for evolving regulatory requirements
What we offer
What we offer
  • Discretionary annual bonus program
  • Equity incentive plan
  • Generous Company benefits program
  • Health and wellness
  • Financial wellness
  • Flexibility and time off
  • Top-notch medical, dental and vision insurance
  • Mental wellness support
  • Gym membership
  • Special wellness programs
  • Fulltime
Read More
Arrow Right

Senior Security Program Manager

The Microsoft Windows Security team is responsible for protecting billions of Wi...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 3+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 4+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection
  • OR equivalent experience
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 6+ years experience in security or related field
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 8+ years experience in security or related field
  • OR equivalent experience
  • Ability to create clarity, energy, and cohesion across the team
  • Ability to influence and drive security initiatives across groups
  • 10+ years of experience in a software engineering or security-related engineering
  • Demonstrated experience in security research, especially around vulnerability discovery
Job Responsibility
Job Responsibility
  • Drive the Windows EnS security risk assessment framework by executing systematic identification, prioritization, and tracking of security risks across OS, firmware, silicon, drivers, and ecosystem dependencies
  • Partner deeply with engineering, architecture, and threat intelligence teams to translate emerging threats, vulnerability trends, and attacker techniques into clear, actionable insights and platform improvements
  • Execute and evolve the security assurance process for Windows teams, enabling a scalable, risk-based approach that supports shared responsibility while ensuring consistent security review coverage and compliance
  • Lead cross-team security initiatives and coordination by driving planning, aligning stakeholders, and ensuring effective PM coverage across key areas of the team’s charter
  • Influence without authority by building solid partnerships across EnS security engineering and partner teams, ensuring alignment on priorities, risks, and mitigation strategies
  • Deliver end-to-end execution on high-impact security efforts, from problem definition through implementation, tracking measurable outcomes and continuously improving processes
What we offer
What we offer
  • Certain roles may be eligible for benefits and other compensation
  • Fulltime
Read More
Arrow Right

Senior Security Program Manager

We are seeking a skilled and detail-oriented Senior Security Program Manager, Pu...
Location
Location
United States , New York
Salary
Salary:
160400.00 - 259150.00 USD / Year
ramp.com Logo
Ramp
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in information security or compliance, with a focus on government and public sector regulatory frameworks (e.g., FedRAMP, GovRAMP, FISMA, NIST RMF)
  • Knowledge of NIST SP 800-53 and experience mapping controls across frameworks
  • Experience with cloud environments like AWS GovCloud or Azure Government, including implementation of compliant architectures
  • Proven ability to manage large-scale compliance programs across diverse stakeholder groups
  • Demonstrated success developing and maintaining regulatory documentation and audit evidence
  • Experience leading engagements with internal teams, assessors, and government partners
  • Strong written and verbal communication skills, including translating between technical and executive audiences
  • Excellent organizational skills and the ability to manage multiple initiatives with competing priorities
  • Self-starter with strong problem-solving abilities in ambiguous, fast-moving environments
Job Responsibility
Job Responsibility
  • Lead all aspects of the compliance lifecycle across multiple public sector frameworks (e.g., FedRAMP, GovRAMP), including risk assessments, continuous monitoring, audits, and authorization management
  • Drive complex cross-functional program management efforts involving teams across security, legal, engineering, infrastructure, and product functions
  • Serve as a subject matter expert on risk management and regulatory compliance for federal, state, and local government environments
  • Develop and maintain comprehensive security documentation aligned with applicable frameworks, including System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and data flow diagrams
  • Monitor compliance with control requirements (e.g., NIST 800-53, GovRAMP Baselines) and coordinate the implementation of technical and procedural safeguards
  • Engage with third-party assessors (3PAOs or independent assessors), government sponsors, and internal teams to support assessments and audits
  • Lead readiness assessments and support the prioritization of remediation activities across teams
  • Manage timely tracking and closure of vulnerabilities and findings
  • ensure reporting and documentation obligations are met
  • Provide risk-informed compliance recommendations that influence infrastructure and product development decisions
What we offer
What we offer
  • 100% medical, dental & vision insurance coverage for you
  • Partially covered for your dependents
  • One Medical annual membership
  • 401k (including employer match on contributions made while employed by Ramp)
  • Flexible PTO
  • Fertility HRA (up to $10,000 per year)
  • Parental Leave
  • Unlimited AI token usage
  • Pet insurance
  • Centralized home-office equipment ordering for all employees
  • Fulltime
Read More
Arrow Right

Senior Security Program Manager

Join Microsoft’s Specialized Clouds Security Fundamentals team! We are at the fo...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 3+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 4+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check
Job Responsibility
Job Responsibility
  • Partner with engineering and product teams to ensure security requirements are met at scale, leveraging automation and scalable solutions
  • Translate requirements into actionable product requirements and security controls
  • Drive programs focused on deep security engagements, scalable security enforcement, scenario ownership, and integrated scanning solutions
  • Collaborate across teams to align priorities, deliverables, and milestones, ensuring security is embedded throughout the product lifecycle
  • Build trusted relationships with internal and external stakeholders
  • Effectively manage expectations, communicate clearly, and follow through on commitments to drive alignment and build confidence in security outcomes
  • Demonstrate strong organizational skills, clarity in communication, and reliability in execution
  • Stay current on security trends, regulatory changes, and best practices, and advocate for innovation and continuous improvement in security programs
  • Drive cross-division alignment among product teams to improve security posture of platform and services
  • Effectively communicate the security strategy with partners in Microsoft
  • Fulltime
Read More
Arrow Right

Senior Security Program Manager

We’re hiring a senior Sr Security Program Manager to contribute to and mature an...
Location
Location
United States , Buffalo
Salary
Salary:
155000.00 - 195000.00 USD / Year
acvauctions.com Logo
ACV Auctions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years experience building and operating security programs in SaaS / marketplace / fintech / large data platforms
  • Demonstrable ownership across AppSec, SecOps, and Corporate Security domains
  • Experience optimizing and helping vulnerability management and incident response programs mature with measurable SLAs (MTTR, remediation windows)
  • Track record of influencing engineering/product leadership and delivering security as a business enabler (not a blocker)
  • Strong program management skills: roadmap creation, cross-functional timelines, budget stewardship, vendor selection and contract negotiation
  • Excellent written + verbal communication
  • experience preparing executive risk briefings and board-level security summaries
  • Bachelor’s degree in CS, Engineering, Information Security, or commensurate experience (5+ years) working in a similar role
Job Responsibility
Job Responsibility
  • Work with stakeholders to create a unified security program roadmap covering Product Security, SecOps, and Enterprise Security
  • Translate risk appetite into prioritized initiatives, funding opportunities, and measurable outcomes
  • Define and publish security KPIs/OKRs as dashboards to various internal audiences
  • Use data to support visibility and continuous improvement
  • Work with security teammates to collectively drive programs partnering with Product, Engineering, and DevOps to embed AppSec into the SSDLC
  • Partner with Operational leads to drive maturity through the creation of requirement frameworks including documented procedures, incident response playbooks, and runbooks
  • Collaborate with Legal, Privacy, and GRC teams to ensure enterprise controls align with SOC 2 and other industry standard framework requirements
  • Partner directly with the CISO to ensure top initiatives are well-planned, resourced, and delivered
  • Identify gaps, improve processes, and support the development of scalable frameworks
  • Drive cybersecurity initiatives from planning through delivery
What we offer
What we offer
  • Multiple medical plans including a high deductible, low cost health plan
  • Company-sponsored (paid) Short-Term Disability, Long-Term Disability, and Life Insurance
  • Comprehensive optional benefits such as Dental, Vision, Supplemental Life/AD&D, Legal/ID Protection, and Accident and Critical Illness Insurance
  • Generous paid time off options, including uncapped vacation days, the greater of 3 paid sick days or in accordance with the applicable state or local paid sick leave law, 6 paid company holidays, 2 floating holidays, parental leave, bereavement leave, jury duty leave, voting leave, and other forms of paid leave as required by applicable law or regulation
  • Employee Stock Purchase Program with additional opportunities to earn stock in the Company
  • Retirement planning through the Company’s 401(k)
  • Fulltime
Read More
Arrow Right

Senior Security Technical Program Manager

Glean is seeking a Senior Security Technical Program Manager (TPM) to lead large...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
glean.com Logo
Glean
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS/MS in Computer Science, Engineering, Cybersecurity, or related technical field
  • 8-10+ years of experience in technical program management, engineering, or security operations
  • at least 3-5 years managing security or compliance-related programs
  • proven success delivering cross-functional security programs in B2B or enterprise software environments
  • strong understanding of security principles, including network security, cloud security, identity and access management, encryption, vulnerability management, and incident response
  • familiarity with cloud service providers (AWS, GCP, Azure) and modern SRE practices
  • ability to structure complex, multi-phase security programs with clear milestones, metrics, and accountability
  • excellent written and verbal communication
  • demonstrated ability to manage through ambiguity, anticipate risks, and drive alignment in high-stakes security decisions
  • builder mindset with the ability to automate workflows to improve operational efficiency
Job Responsibility
Job Responsibility
  • Lead and deliver end-to-end security programs, spanning application security, infrastructure hardening, identity and access management, data protection, and compliance initiatives
  • partner with Security Engineering and Infrastructure teams to define secure-by-design practices and ensure consistent application across the SDLC
  • drive security reviews for our customers and product launches
  • coordinate vulnerability and incident management workflows
  • develop and track program metrics, including risk reduction, vulnerability remediation timelines, and compliance maturity progress
  • partner with Engineering leaders to build scalable processes for threat modeling, code reviews, and dependency management
  • communicate effectively with technical and executive stakeholders
  • continuously improve security operations, identifying process gaps, automating manual workflows, and improving visibility and accountability
Read More
Arrow Right

Senior Technical Program Manager - Insider Risk Investigator

The Cloud & AI organization accelerates Microsoft's mission and bold ambitions t...
Location
Location
United States , Multiple Locations
Salary
Salary:
142800.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree AND 6+ years experience in engineering, product/technical program management, data analysis, or product development OR equivalent experience
  • 1+ year(s) project or people management experience
  • 3+ years of experience managing cross-functional and/or cross-team projects
  • Candidates must be able to meet Microsoft, customer and/or government security screening requirements are required for this role
  • The successful candidate must have an active U.S. Government Top Secret/SCI Security Clearance
  • This position requires verification of U.S. citizenship due to citizenship-based legal restrictions
  • This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter
Job Responsibility
Job Responsibility
  • Support end-to-end investigative execution, including evidence development, technical analysis, and documentation of findings aligned to established investigative standards
  • Ensure investigative work products are complete, defensible, and consistent with program expectations for rigor, evidentiary integrity, and due process
  • Contribute to translating technical investigative activity into clear, structured findings and insights for stakeholders
  • Partner with technical subject matter experts to identify, access, and interpret relevant data sources for investigative use
  • Contribute to the development and refinement of detection logic, investigative triggers, and signal quality to improve investigative outcomes
  • Apply technical expertise to support root cause analysis and evidence-based conclusions across complex investigations
  • Support the development and maturation of investigative processes, workflows, and documentation standards to scale with program needs
  • Identify patterns, gaps, and opportunities for incremental improvements in investigative processes and tooling
  • Document methodologies, lessons learned, and emerging best practices to drive consistency and program evolution
  • Collaborate closely with investigators, legal, HR, security, and compliance partners to support coordinated, cross-functional investigations
  • Fulltime
Read More
Arrow Right

Senior CAPPS Security & Technical Program Manager (PeopleSoft/ERP)

We are seeking an experienced Senior CAPPS Security & Technical Program Manager ...
Location
Location
United States , Austin
Salary
Salary:
Not provided
dutechsystems.com Logo
Dutech Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience supporting Texas state government agencies or public sector organizations
  • 10+ years of experience supporting CPA and CAPPS application systems
  • 10+ years of experience managing strategic technology initiatives and technical roadmaps
  • 10+ years of technical project management experience
  • 10+ years of experience with PeopleSoft FSCM or HCM 9.2 and related technologies
  • Strong experience with PeopleTools, PeopleCode, Application Designer, SQL, PS Query, SQR, Application Engine, and Oracle databases
  • Extensive knowledge of SDLC methodologies, data integration, and data quality management
  • Experience implementing and supporting IT security controls and governance processes
  • Experience with executive communications and stakeholder presentations
  • Experience interpreting contracts and managing vendor performance
Job Responsibility
Job Responsibility
  • Lead technical and security activities supporting CAPPS and CPA application systems
  • Develop and maintain strategic technology and security roadmaps aligned with organizational objectives
  • Manage technical project activities supporting CAPPS initiatives and enterprise application environments
  • Oversee Managed Service Providers and vendors, ensuring compliance with contractual obligations and service level agreements
  • Support CAPPS Central production and deployment activities serving multiple agencies and hub instances
  • Administer and support PeopleSoft FSCM/HCM 9.2 environments, including security, configuration, and technical troubleshooting
  • Ensure compliance with IT security standards, policies, controls, and risk management practices
  • Manage user access governance, Segregation of Duties (SoD), and role-based security frameworks within multi-tenant environments
  • Collaborate with business and technical teams to improve data integration, data quality, and system performance
  • Support IT service management processes utilizing ITIL methodologies and service desk best practices
Read More
Arrow Right