Agile Programming Methodologies, Automation, Backlog Prioritization, Business Processes, Category Management, Communication Skills, Continuous Improvement, Cross-Functional, DevOps, Establish Priorities, FISMA - Federal Information Security Management Act, Information/Data Security (InfoSec), Maintain Compliance, Privacy Controls, Privacy Regulations, Process Improvement, Product Development, Product Management, Product Planning, Product Support, Regulatory Requirements, Requirements Management, Risk, Risk Management, Security Compliance, U.S. National Institute of Standards and Technology (NIST)
Title: Product Manager
Location: Washington DC, on-site.
We are seeking a Product Manager to support the Governance, Risk and Compliance (GRC) team within the IT division at the Board of Governors of Client. This team is responsible for defining, implementing and managing processes that support compliance, policy, outreach, and privacy related work across the organization.
REQUIREMENTS:
The candidate shall possess the knowledge and skills set forth in the Technical Services Client, Section 3.2.4.2 for labor category Senior Product Manager.
The candidate shall also demonstrate the below knowledge and experience:
• 5+ years of product management experience, with at least 2 years focused on working with security, compliance, or risk management teams
• Demonstrated experience gathering requirements, managing backlogs, and delivering roadmaps
• Demonstrated experience streamlining and automating business processes through technology solutions
• Knowledge of federal security compliance frameworks like FISMA, NIST, FedRAMP etc.
• Strong understanding of Federal information security principles and privacy regulations
• Experience with Agile development methodologies and collaborating closely with engineering and DevOps teams
• Excellent communication skills with the ability to translate complex security concepts for various audiences
• Track record of successful cross-functional collaboration and stakeholder management
The Contractor shall deliver, but not limited to, the following:
• Gather and synthesize requirements from technical and non-technical stakeholders to inform strategy and prioritization decisions.
• Support enhanced understanding and availability of policy and process requirements across the organization
• Translate regulatory requirements, policy and stakeholder needs into well-defined product/process requirements and user stories
• Develop product roadmaps for GRC automation tools and help drive measurable improvements in efficiency and risk reduction
• Manage and prioritize the team backlog, balancing short term needs with long term strategy
• Partner closely with engineering and delivery teams to integrate security and privacy controls into agile and DevOps workflows, enabling continuous compliance.
• Manage stakeholder communication, alignment and transparency about roadmap and outcomes
• Measure outcomes and use feedback and data to inform continuous improvement of processes and services.
E
Expert In Recruitment Solutions