Principal Program Manager, Public Sector Compliance

We’re hiring a Principal Program Manager, Public Sector Compliance to drive the strategy, coordination, and execution of Tines’ federal and public sector compliance initiatives. Reporting to the Director of GRC, this is a senior individual contributor role for someone who knows how to bring structure, momentum, and sound judgment to complex, cross-functional initiatives. This role is responsible for aligning regulatory priorities with business objectives.

You’ll own the program that drives Tines’ readiness across U.S. federal, Department of Defense, and SLED (State, Local, and Education) environments. That includes a wide range of requirements such as FedRAMP, CMMC, IL5 and related DoD requirements, NIST-based frameworks including NIST 800-53 and NIST 800-171, FISMA-related expectations, CJIS, GovRAMP, and other agency-, customer-, and procurement-driven security and compliance obligations.

This is a highly cross-functional program leadership role focused on strategic planning, stakeholder alignment, and execution coordination across Sales, Security, GRC, Engineering, Product, IT, and Tines’ public sector legal team. This role requires a broad, strategic view of public sector compliance and the ability to connect the dots across regulatory requirements, customer expectations, technical architecture, legal commitments, and go-to-market priorities into a scalable and actionable program roadmap.

Success in this role requires balancing regulatory obligations, customer demand, technical feasibility, operational readiness, and commercial priorities to help Tines make informed decisions about compliance initiatives and sequencing.

This role will operate at the program level, setting the roadmap, building the governance model, driving alignment across teams, managing risk and dependencies, and helping Tines execute in a scalable and sustainable way.

This role is remote and based in the United States. Applicants must be U.S. citizens and eligible to obtain and maintain a U.S. security clearance. Work must be performed from within the United States in accordance with customer and contractual requirements

What you will be doing:

• Own and drive Tines’ federal and public sector compliance program across U.S. federal, DoD, and SLED environments.
• Define and execute the program roadmap, governance model, and operating cadence, including aligning stakeholders, and driving progress against key milestones.
• Translate regulatory, security, contractual, and customer requirements into strategic program plans and coordinated cross-functional initiatives across Security, GRC, Engineering, Product, IT, Legal, Sales, and partner teams.
• Partner with Security, Product, and Engineering teams to ensure compliance iniatives align with system architecture, deployment strategy, operational scalability, and customer requirements.
• Drive prioritization and decision-making around public sector certifications, attestations, and regulatory initiatives, including evaluating business impact, customer demand, implementation complexity, and organizational readiness.
• Serve as a strategic partner and a central coordination point across Legal, Sales, Security, and GRC, helping navigate complex compliance scenarios and ensuring alignment between technical implementation, contractual commitments, and go-to-market strategy.
• Identify and actively manage program-level risks, gaps, dependencies, and tradeoffs, escalating with clear, actionable recommendations.
• Bring working knowledge of the broader public sector ecosystem, including DFARS, GSA schedules, agency-specific requirements, and flow-down obligations, and help connect those requirements to compliance, product, and commercial decisions.
• Monitor evolving federal and public sector regulatory, security, and procurement requirements, and translate new developments into actionable guidance for leadership and internal teams.
• Partner closely with Tines’ public sector legal team, which provides subject matter expertise on legal interpretation, contractual commitments, procurement requirements, and regulatory positioning, while you ensure those considerations are incorporated into program execution.

What you bring:

• Strong experience leading and coordinating complex public sector compliance and regulatory programs across multiple frameworks and stakeholders within cloud and SaaS environments.
• Strong experience across FedRAMP, NIST 800-53, NIST 800-171, CMMC, DoD Impact Levels (IL4/IL5), FISMA, CJIS, and GovRAMP, including an understanding of how these requirements are operationalized.
• Ability to connect regulatory and complaince requirements into real-world architecture, control implementation, documentation, and operational processes, including system boundary definition, inheritance models, and shared responsibility considerations.
• Strong understanding of how public sector requirements intersect with technical architecture, security controls, legal commitments, customer expectations, and commercial constraints.
• Working knowledge of the broader public sector regulatory and procurement landscape, including familiarity with DFARS, GSA schedules, agency procurement processes, and customer-specific flowdown requirements.
• Understanding of how legal, regulatory, contractual, and security requirements move through public sector environments, with the ability to identify issues early and partner effectively with Legal and other stakeholders.
• Demonstrated ability to operate strategically and drive scalable decisions across multiple regulatory frameworks, business priorities, and customer use cases.
• Demonstrated ability to influence and align senior stakeholders across technical and non-technical teams in fast-moving, high-growth environments.
• Proven ability to lead complex, cross-functional initiatives across Security, GRC, Engineering, Product, Legal, and Sales.
• Exceptional program leadership skills and prioritization skills, including roadmap development, dependency management, risk identification, prioritization, and executive communication.

Nice to have:

• Experience with international or regional compliance frameworks such as IRAP (Australia), UK OFFICIAL / NHS DSPT, or Protected B (Canada) environments.
• Experience supporting regional compliance, data residency, sovereignty, or regional deployment requirements within cloud and SaaS environments.
• Exposure to government cloud environments (e.g., AWS GovCloud, Azure Government, or similar).
• Experience working with public sector procurement processes, including RFPs, security questionnaires, and customer due diligence workflows.
• Familiarity with export controls, data handling restrictions, or government-specific data classification requirements.
• Experience scaling compliance programs across multiple geographies or regulatory regimes.

Target Annual Compensation: $245-260k + equity

Applicants for this opportunity must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.

#LI-JF1