Senior Program Manager - Governance, Risk, and Compliance

Senior Program Manager - Governance, Risk, and Compliance

Mongo

DB 22 May 2025

Information Security Program Management Compliance Governance Risk

We are seeking a Program Manager - Governance, Risk, and Compliance to join our security team. In this role, you will analyze, document, and monitor our risk and compliance posture, aligning our practices with multiple compliance frameworks to support customer needs. You will create and maintain comprehensive public sector compliance documentation, arrange meetings, liaise with internal stakeholders, prepare data for analysis and reporting, track meeting minutes, and provide administrative support to enhance our Governance, Risk, and Compliance Program.

• Assisting with the development of the annual roadmap.
• Managing program timelines and communicating obstacles.
• Facilitating productive meetings and following up on action items.
• Leading engagements with external auditors.
• Leading compliance efforts for frameworks like FedRAMP High, IL-4 & IL-5.
• Supporting assessment activities for compliance certifications.
• Planning and performing internal gap analyses and maturity assessments.
• Managing findings and coordinating remediation efforts.
• Analyzing program data to develop informative presentations.
• Utilizing ticketing systems to monitor Governance, Risk, and Compliance activities.
• Developing and maintaining documentation for public sector cloud customers.
• Providing guidance and training to team members.
• Educating employees on cybersecurity best practices and compliance requirements.
• Addressing inquiries regarding security attestations and compliance.
• Acting as a trusted advisor to stakeholders and customers.
• Guiding stakeholders through regulatory landscapes.

• Bachelor's degree or equivalent experience.
• Understanding of cloud security compliance, risk management, and information security principles.
• Experience with security and compliance standards such as ISO 27001, SOC 2, PCI NIST 800-53.
• Experience in internal governance, risk, and compliance functions.
• Experience performing gap analysis, maturity assessments, and risk assessments.
• Experience managing projects and work streams at the enterprise level.
• Experience implementing compliance technology and associated tools.
• Knowledge of compliance and regulatory processes.
• Strong attention to detail and organizational skills.
• Strong presentation, communication, analytical, and critical thinking skills.
• Excellent verbal, written and interpersonal communication skills.
• Ability to navigate uncertainties and formulate clear plan of actions
• Proactive ownership of tasks

• Experience with FedRAMP revision 5 Moderate, experience with FedRAMP High, IL-4, and IL-5 frameworks
• Experience working with Jira
• Experience reviewing and editing SSPs, IRPs, ISCPs, and other FedRAMP related documentation
• Project management experience including:
  • process, metrics and dashboard reporting
  • drafting communications
  • drafting meeting minutes
  • rollout of information security training and awareness program
  • project management support and reporting
  • An understanding of the common and fundamental project management processes e.g. scoping, planning, risk management, change control, communication etc.

Mongo

DB is committed to developing a supportive and enriching culture for everyone. Benefits include: equity, participation in the employee stock purchase program, flexible paid time off, 20 weeks fully-paid gender-neutral parental leave, fertility and adoption assistance, 401(k) plan, mental health counseling, access to transgender-inclusive health insurance coverage, and health benefits offerings.

Interested in this position? Please submit your resume and cover letter through the application portal.