Staff Program Manager #4421

Responsibilities:

• Serve as the primary point of contact and program owner for inbound RFPs, customer onboarding coordination, and diligence assessments.
• Facilitate the bid/no-bid evaluation process in collaboration with Commercial and Legal teams, ensuring alignment on prioritization and resourcing.
• Manage timelines, oversee dependencies, and ensure submission of complete, compliant, high-quality responses.
• Partner with internal teams—including Legal, Compliance, and Security—to review and escalate non-standard terms, risk findings, regulatory or contractual red flags, and proposed mitigations.
• Maintain and enhance an internal knowledge base/content library of approved responses, templates, certification statements, processes, and controls to streamline future responses.
• Establish and oversee a centralized intake process with standardized workflows, clear SLAs, gating criteria, and escalation paths.
• Drive automation, tooling, and data/metrics for efficiency (e.g., average cycle time, win rate, risk-closure timelines, accuracy and consistency of responses, customer satisfaction with diligence responsiveness).
• Coordinate across stakeholder teams to deliver clear, timely communication regarding status, issues, dependencies, and deliverables.
• Support the customer diligence lifecycle, including questionnaire responses and reviews, onboarding assessments, audit responses, and recertifications.
• Deliver training, documentation, and onboarding for internal teams (Commercial, Customer Success, Product, etc.) on RFP/diligence protocols and best practices.
• Report statuses, risks, KPIs, and trends to leadership, interpreting insights and driving recommendations for continuous process improvements.
• Lead continuous improvement initiatives to optimize RFP and diligence processes, identify bottlenecks, and increase organizational efficiency.
• Participate in external customer calls or clarification sessions as needed during RFP proposals or diligence review processes.

Required Qualifications:

• Bachelor’s degree in a relevant field (Business, Engineering, Computer Science, or related discipline) required.
• Minimum of 8 years of program/project management experience, with exposure to RFP/proposal management, vendor risk management, or security/diligence review.
• Certifications such as CISSP, CISA, CRISC, APMP, or PMP are strongly preferred but not required.
• Demonstrated background in security, privacy, or compliance operations (especially in healthcare, biotech, or SaaS) is strongly preferred.
• Familiarity with regulatory frameworks, standards, and audits—e.g., SOC 2, ISO 27001, HIPAA, GDPR, FDA/CLIA, NIST.
• Knowledge of customer and third-party risk management best practices, including due diligence, contract review, and ongoing compliance monitoring.
• Experience establishing or maturing security review protocols, risk assessment workflows, or RFP automation/response tools (e.g., RFPIO, Loopio, Archer, MetricStream, or similar).
• Strong interpersonal and stakeholder management skills, with a track record of influencing decision-makers across business units.
• Excellent written and verbal communication skills—able to translate technical or risk/security topics into clear, actionable messaging for varied audiences.
• Self-driven, detail-oriented, and proactive in problem identification and resolution.
• Adaptable and resilient in fast-paced, ambiguous, high-stakes environments.
• Proven experience engaging directly with customers during RFP or diligence processes is strongly preferred.
• Experience working in regulated or heavily audited industries (e.g., life sciences, healthcare, SaaS, or finance).