Job Description

We are currently seeking a Principal Technical Compliance Program Manager, Public Sector Security, that will play an instrumental role delivering the Procore Public Sector Security Strategy inclusive of FedRAMP, TexRAMP, UK Cyber Essentials and others.

As the Principal Technical Compliance Program Manager, Public Sector Security, your primary role is that of an end-to-end delivery leader coordinating with departments at multiple levels across multiple areas of responsibility to ensure business objectives within FedRAMP scope are achieved. Track solution efforts and advise executive leadership as required on a variety of topics related to FedRAMP. 

The successful Principal Technical Compliance Program Manager, Public Sector in this role will oversee and coordinate assigned high impact, complex projects and programs with various team members and departments across the enterprise, providing guidance and direction to Procore team members to support successful completion. Must establish and maintain effective communications, reporting, and metrics to provide progress reports to stakeholders on open projects and programs. 

What you’ll do:

• This role will support public sector project management, inclusive of FedRAMP, TexRAMP, UK Cyber Essentials and others

• Participate in FedRAMP planning, tracking, and execution. Leveraging Agile best practices, sprint planning and execution

• Act as program, product and project manager for high impact security related projects to assure cross-functional engagement, timelines are aligned, and deadlines are managed appropriately 

• Provide the single point of contact for resolution of project related issues while communicating overall project status on a regular basis 

• Collaborate with teams to ensure delivery per plan, remove blockers, resolve dependencies and drive prioritization discussions 

• Continuously assess our delivery practices, surfacing areas of opportunity or misalignment and drive actions to address them 

• Defines the metrics required to measure program performance, compares actual data to forecasted values, and develops the process for identifying and addressing performance gaps.

• Lead high impact program meetings, establish and support working groups, and contribute to the growth of required documentation and guidance to increase maturity across Procore

• Works with cross-functional teams across the entire span of program management activities.

• Contributes to priority projects with complex analyses and assists in developing recommendations.

• Works closely with leaders to drive program management initiatives.

• Develops point of view documents on projects.

What we’re looking for:

• 8+ years of experience as a Technical Program Manager leading and delivering the most complex technical programs in an Agile software development environment with a focus on engineering cloud services.

• 3+ years of experience in establishing FedRAMP cloud services in a large-scale environment.

• Proven experience of implementing FedRAMP across large organizations starting from package development, retrieving sponsorship, and receiving approval.

• Thorough understanding of enterprise software development and/or infrastructure processes and lifecycle.

• Strong technical aptitude, and experience with both application and platform components.

• Outstanding organizational, communication, interpersonal, relationship building skills conducive to collaboration.

• Proficiency using Jira to monitor, track, and report on work plans, execution, and delivery.

• One or more related certifications such as Project Management Professional (PMP), Agile Certified Practitioner (PMI-ACP), Program Management Professional (PgMP), Certified Scrum Master (CSM) or Certified Scrum Practitioner (CSP).

• Proven experience managing compliance programs

• Preferred experience managing FedRamp and FIPS type programs

• Well versed in Agile methodologies including Agile at Scale 

• A skilled collaborator, communicator, and problem solver, with experience managing relationships through internal and external escalations 

• Track record of leading and inspiring high performing matrix teams 

Nice to Have:

• Knowledge of FedRAMP, NIST 800-53 Rev4 or Rev5 security controls, CMMC or NIST 800-37 risk management framework. 

• Experience working with Federal Agencies and/or stakeholders in highly-regulated verticals 

• Experience working with security governance, risk & compliance programs and projects. 

•  management, process improvement, finance and budgeting, problem escalation 

• Desired certifications & Trainings: ISO certifications, CISSP, CRISC, CISA, CISM, or related GIAC 

Qualifications