Senior Product Manager
Washington DC, DCSYSCOM’s client is seeking a Senior Product Manager to support the Governance, Risk, and Compliance (GRC) team within the enterprise Information Technology organization of a highly regulated institution.
The GRC team is responsible for defining, implementing, and managing processes that support compliance, policy, outreach, privacy, and security-related initiatives across the organization. This role will drive strategy, roadmap development, and automation initiatives that enhance compliance effectiveness, risk reduction, and operational efficiency.
Work Location: Hybrid role with some onsite presence required in Washington, DC
Work Authorization: U.S. Citizenship required
Role Overview
The Senior Product Manager will lead product strategy and execution for GRC-related platforms, automation initiatives, and compliance enablement capabilities. This individual will translate regulatory requirements, federal security frameworks, and stakeholder needs into scalable technology solutions that integrate seamlessly into Agile and DevOps environments.
The role requires deep collaboration with engineering, DevOps, security, privacy, and business stakeholders to enable continuous compliance and measurable risk reduction. Ideal candidate will have been a Product Manager embedded within GRC or IT security teams; GRC analyst or security compliance professional who transitioned into Product Management and experience leading compliance automation or security platform modernization initiatives
Minimum Qualifications (Required)
- 5+ years of Product Management experience
- Experience serving as Product Manager, Product Owner, or Technical Product Manager
- Demonstrated experience:
- Developing and managing product roadmaps
- Managing and prioritizing product backlogs
- Writing and refining user stories
- Translating business and regulatory requirements into actionable development tasks
- At least 2 years focused on security, compliance, risk management, or GRC-related initiatives
- Proven experience streamlining and automating business processes through technology solutions
Strong working knowledge and applied experience with federal security and compliance frameworks, including:
- NIST 800-53, FISMA, FedRAMP, and Risk Management Framework (RMF)
- Policy interpretation and implementation
- Authority to Operate (ATO) processes
- POA&M management
- Federal information security principles
- Privacy regulations and controls
Federal / Government Experience
- Experience working within federal agencies or as a federal contractor
- Strong understanding of federal security compliance environments
- U.S. Citizenship required
Agile, DevOps & Continuous Compliance
- Experience working in Agile/Scrum environments
- Proficiency with Jira or similar backlog management tools
- Close collaboration with engineering and DevOps teams
- Experience integrating security and privacy controls into Agile and DevOps workflows
- Familiarity with compliance automation and continuous compliance enablement
- Experience balancing short-term delivery needs with long-term product strategy
GRC Tooling Experience (Preferred but Strongly Valued)
Experience with one or more enterprise GRC platforms, such as:
- ServiceNow GRC
- Archer
- OneTrust
- LogicGate
Key Skills & Competencies
- Strong stakeholder management and cross-functional collaboration skills
- Excellent written and verbal communication skills
- Ability to translate complex security and regulatory concepts for technical and non-technical audiences
- Strategic prioritization and decision-making capabilities
- Ability to synthesize diverse requirements into cohesive product strategies
- Data-driven mindset with focus on measurable outcomes
- Experience managing transparency and alignment around product roadmaps
Job duties and responsibilities will include, but not be limited to the following:
- Gather and synthesize requirements from technical and non-technical stakeholders to inform strategy and prioritization decisions
- Develop and maintain product roadmaps for GRC automation tools and related capabilities
- Manage and prioritize team backlogs, ensuring alignment with strategic objectives
- Translate regulatory requirements, policy mandates, and stakeholder needs into well-defined product requirements and user stories
- Support enhanced understanding and accessibility of policy and process requirements across the organization
- Partner closely with engineering and delivery teams to embed security and privacy controls into system design and DevOps workflows
- Enable measurable improvements in operational efficiency, risk reduction, and compliance posture
- Drive compliance automation initiatives
- Manage stakeholder communications, alignment, and roadmap transparency
- Measure outcomes and leverage data and feedback to drive continuous improvement of processes and services
SYSCOM, Inc. provides specialized information technology resources that possess the requisite skills and capabilities to deliver enterprise level solutions that help our client’s achieve their objectives. At SYSCOM, we have a proven process that brings the best and brightest resources into our organization. Our teammates have excellent verbal and written communication skills as well as coordination and organization skills. The objective of our approach is to ensure a high level of customer satisfaction.
Headquartered in Baltimore, Maryland, SYSCOM, Inc. is a US-based company whose mission is to create and deliver the right technology solutions, by teaming with our customers to understand their business needs and empower them to achieve their goals. Since 1982, SYSCOM, Inc. has been providing enterprise-wide solutions for a variety of private and public sector clients.
SYSCOM, Inc. is an equal opportunity employer.Bottom of Form
Bottom of Form
Bottom of Form