Technical Program Manager, Payments Vulnerability and Risk Management

Senior • On-site

$183,000 - $271,000/yr

Mountain View, CA

Minimum qualifications:

Bachelor's degree in a technical field, or equivalent practical experience.
8 years of experience in program management.
5 years of experience in leadership role with/without direct reports.
3 years of experience in security or risk management.

Preferred qualifications:

8 years of experience managing cross-functional/team projects.
Experience with various risk assessment methodologies (e.g., US CERT’s OCTAVE Allegro, NIST 800-30 framework).
Strong understanding of payments systems, infrastructure, and regulatory requirements (e.g., GLBA, PCI DSS, HIPAA, SSAE-16/18, FTC Consent Decree).
Familiarity with AI research and acceleration concepts, particularly in the context of security.

About the job

Google's projects, like our users, span the globe and require managers to keep the big picture in focus while being able to dive into the unique engineering challenges we face daily. As a Technical Program Manager at Google, you lead complex, multi-disciplinary engineering projects using your engineering expertise. You plan requirements with internal customers and usher projects through the entire project lifecycle. This includes managing project schedules, identifying risks and clearly communicating them to project stakeholders. You're equally at home explaining your team's analyses and recommendations to executives as you are discussing the technical trade-offs in product development with engineers.

Using your extensive technical and leadership expertise, you manage various Engineering-specific programs and teams.

We seek to foster a culture of collaboration and clarity in Payments products and stakeholders by enabling them to proactively identify, assess, and manage risks and vulnerabilities in areas of risk, vulnerability, incident, and access management and pen testing, all in line with industry best practices and regulatory mandates.

As the Technical Program Manager (TPM) you will join our Payments Vulnerability, Risk, Access, Incident Management, and Pentesting (VRAM) team. This role is critical in ensuring the continued protection of Payments products and users by maintaining high standards of security and privacy.

Whether it is paying online with Autofill, using tap and pay in stores, or using the Google Pay app, the Payments team at Google is focused on making payments simple, seamless, and secure. In addition to consumer payment technologies, the Payments team also powers the money movement between Google and its consumers and businesses.

The US base salary range for this full-time position is $183,000-$271,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

Own and lead vulnerability management efforts, including transitioning responsibilities and vendor relationships.
Drive incident management processes, focusing on improving operational effectiveness, particularly handoffs between core teams and Payments. Lead the PgM efforts to drive incident resolution.
Oversee exploratory pentesting projects, including managing relationships with external vendors like Mandiant. Collaborate with Security Engineering, Privacy, and other Payments teams to define scope, prioritize services, and ensure robust security practices.
Lead and manage the risk management program, including the implementation of tools like SPUR. Oversee Business Continuity and Resiliency Planning (BCP), Business Impact Analysis (BIA), and Disaster Recovery Testing, ensuring annual updates to the "GPC BCP" document.
Ensure compliance with regulatory requirements, including reviewing work for the European Central Bank and assisting with Enterprise Risk Assessments.

Google

Google LLC started as a PhD project by Larry Page and Sergey Brin in 1998 at Stanford University. Google LLC has blossomed into a behemoth of the tech world. With its mission to organize the world's information and make it universally accessible and useful, Google’s search engine is its crown jewel. Online advertising, via AdWords and AdSense, forms the backbone of its financial success. Beyond search, Google has ventured into cloud computing, hardware, and software development. The innovative PageRank algorithm revolutionized search engine technology, and surviving the dot-com bubble burst and going public in 2004 spurred its meteoric growth. Acquiring YouTube stands as a testament to Google’s strategic expansion.