Sr. Technical Program Manager, Governance, Risk, and Compliance (GRC)

A new space race has begun. True Anomaly seeks those with the talent and ambition to build innovative technology that solves the next generation of engineering, manufacturing, and operational challenges for space security and sustainability.

OUR MISSION

The peaceful use of space is essential for continued prosperity on Earth—from communications and finance to navigation and logistics. True Anomaly builds innovative technology at the intersection of spacecraft, software, and AI to enhance the capabilities of the U.S., its allies, and commercial partners. We safeguard global security by ensuring space access and sustainability for all.

OUR VALUES

• Be the offset. We create asymmetric advantages with creativity and ingenuity
• What would it take? We challenge assumptions to deliver ambitious results
• It’s the people. Our team is our competitive advantage and we are better together

YOUR MISSION

We are seeking an experienced Sr. Technical Program Manager (TPM) of Governance, Risk, and Compliance (GRC) to join our GRC team at True Anomaly. The Sr. TPM will be a crucial asset in ensuring the security and compliance of our products. The ideal candidate should possess a minimum of 7 years of experience implementing RMF (DoD IL5 and IL6), and CMMC. Additionally, the Sr. TPM must have experience with coordinating internal/external assessments, policy development, and cloud security best practices.  

RESPONSIBILITIES

• Conduct information technology compliance assessments across various frameworks to include, but not limited to:  
• NIST SP 800-53 Rev. 5, RMF (DoD IL5, IL6) 
• NIST SP 800-171 Rev. 2 and 3, CMMC Level 3
• Framework for Improving Critical Infrastructure Cybersecurity - NIST Cybersecurity Framework (CSF) 
• STIG development and review experience
• Strong AWS and Azure architecture background
• Review and maintain System Security Plans (SSPs)
• Manage Plans of Actions and Milestones (POA&Ms) for IL5 and IL6 environments
• Develop new, and mature existing information security and enterprise risk policies. 
• Initiate and lead ongoing information security maturity assessment processes and training, using industry accepted frameworks and implement into the overall cyber security posture. 
• Conduct internal audits to ensure unwavering adherence to DoD compliance standards. 
• Collaborate with software engineers to fortify software and resolve vulnerabilities. 

QUALIFICATIONS

• 7+ years of directly related experience in IT security assessment
• Demonstrated understanding of NIST SP 800-171, NIST SP 800-53 (RMF IL5 and IL6)
• Verify and document the implementation of security controls necessary to achieve compliance. 
• Experience building and rolling out compliance policies  
• At least 5 years of experience developing security standards, guidelines, and remediation planning based on best practices and industry  
• Comprehensive understanding of incident response, system configuration, vulnerability management, and hardening guidelines within the DoD context 

Position requires an active security clearance. While all clearances levels will be considered, TS/SCI clearance holders are preferred


PREFERRED QUALIFICATIONS:

• Experience as an ISSO/ISSM
• Working knowledge of container security, vulnerability management (Continuous Monitoring)
• Basic people leadership experience, including mentoring or technical guidance responsibilities.
• Industry certifications such as CISSP, CCSP, Azure Security Engineer, or relevant compliance certs (e.g., CMMC RP).
  
  

COMPENSATION

• Colorado Base Salary: $145,000 to $195,000
• California Base Salary: $150,000 to $205,000
• Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave 

Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, location, and experience. 

ADDITIONAL REQUIREMENTS

• Work Location—Successful candidates will be located near Denver, Colorado or Long Beach, California. While we observe a hybrid work environment, some work must be done on site.
• Work environment—the work environment; temperature, noise level, inside or outside, or other factors that will affect the person's working conditions while performing the job.
• Physical demands—the physical demands of the job, including bending, sitting, lifting and driving.

This position will be open until it is successfully filled. To submit your application, please follow the directions below. #LI-Onsite

To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.

True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation, please do not hesitate to let us.