Onit

Technical Program Manager – Security & Compliance

Technology - Pune, Maharashtra, India - Full Time

About Onit

We're redefining the future of legal operations through the power of AI. Our cutting-edge platform streamlines enterprise legal management, matter management, spend management and contract lifecycle processes, transforming manual workflows into intelligent, automated solutions.

We’re a team of innovators using AI at the core to help legal departments become faster, smarter, and more strategic. As we continue to grow and expand the capabilities of our new AI-centric platform, we’re looking for bold thinkers and builders who are excited to shape the next chapter of legal tech.

If you're energized by meaningful work, love solving complex problems, and want to help modernize how legal teams operate, we’d love to meet you.

Position Summary

Onit is seeking a Technical Program Manager to lead the delivery of world-class security and compliance solutions across our SaaS platforms. This role will collaborate closely with Security & Compliance, Infrastructure, and Product teams to drive initiatives that ensure our systems and services meet the highest standards of security and regulatory compliance

Key Responsibilities
  • Project Leadership: Drive cross-functional initiatives to deliver security and compliance solutions, including resource planning, timeline management, and coordination with external vendors. 
  • Remediation Tracking: Monitor and manage remediation efforts across applications and infrastructure for issues identified via scans, assessments, and customer feedback. 
  • Managed Security and Compliance BAU activities: Manage and track the execution of key security and compliance such as access reviews, WAF reviews, and other quarterly and yearly BAU activities required by our security and compliance certifications and customer contracts.  
  • Security Champion Program: Facilitate the rollout and adoption of the program across teams to level up security knowledge for security champions, increase security visibility with tooling, and other key practices. 
  • Vanta Adoption and Implementation: Oversee the continued adoption and integration of Vanta for automated compliance monitoring. 
  • Vendor Management: Support selection, onboarding, and coordination of vendors for penetration testing, audits, and other security services. 
  • Security Reviews: Facilitate and participate in technical discussions and evaluate system designs for security strengths and weaknesses. 
  • Product Ownership: Act as product owner for security and compliance initiatives. This includes creating user stories, prioritizing work, and guiding teams through grooming and delivery. 
  • Global Collaboration: Work with teams across India, the U.S., and other regions to define, design, and deliver secure SaaS solutions. 
  • Process Improvements: Assist with process improvements with incident response, training, runbook definition, and other key areas of the security and compliance program.  
  • Security and Compliance Reporting: Maintain, track and report key performance indicators/metrics for various activities in security and compliance.  
  • Documentation and Training: Assist with documenting key practices within the security and compliance function to improve visibility and adoption 
 

Required Skills

  • 10+ years in technical project management or similar leadership roles. 
  • 5+ years in security and compliance domains. 
  • Strong technical background in the cybersecurity domain which includes experience with security tooling, vulnerability management, 3rd party penetration testing, incident response, thread detection, etc.  
  • Proven track record executing security and compliance projects for Enterprise SaaS solutions. 
  • Extensive experience managing the security of cloud-based applications (AWS preferred) 
  • Ability to navigate trade-offs and prioritize across multiple teams. 
  • Proficiency in agile methodologies and tools (e.g., Jira, Scrum, Kanban). 
  • Experience with security and compliance frameworks such as SOC2, NIST, and ISO 27001. 
  • Strong communication, problem-solving, and collaboration skills. 
  • Experience with EDR, CSPM, and SEIM security tooling   
  • Relevant certifications (CISSP, CCSP, CISM, AWS Security Specialty) are a plus 
  • Regulatory, compliance, or legal experience   is a plus 
  • Experience with containerized applications is a plus 
Apply: Technical Program Manager – Security & Compliance
* Required fields
First name*
Last name*
Email address*
Location
Phone number*
Resume*

Attach resume or Paste resume

Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or paste resume

Paste your resume here or attach resume file

Are you open for relocation?*
How many years of professional experience do you have?*
How many years of relevant experience do you have in managing technical programs or similar technical leadership role?*
How many years of experience do you have delivering AWS cloud / infrastructure solutions?*
Which DevOps tools and technologies are you familiar with?*
Please select the database that you have worked on.*
Tick the Cloud platforms that you have worked on*
Describe the most challenging/complex technical problem that you solved for a project or that you worked on.*
What is the size of the last operation / team that you managed? (Direct and indirect report headcount)*
What is your thought principle when it comes to building high performing teams? How do you ensure you build one?*
What is your current annual CTC?*
What is your expected annual CTC?*
What is your notice period?*
Do you have a current non-compete agreement in places that would prevent you from working for either Onit or SimpleLegal Or AXDRAFT OR BusyLamp OR SecureDocs?*
Human Check*