Skip to content
Grow TherapyGrow TherapyNew York, NY

Staff TPM, Security Risk

The Staff TPM, Security Risk will build and mature Grow Therapy's enterprise security risk management program, focusing on AI risk, vendor security, and audit readiness. This role involves developing executive-level risk reporting and partnering with various teams to embed security awareness.

152k – 190k
HybridTechnical Program Management

About the role

The Opportunity

We are looking for a Security Risk Program Manager to take Grow Therapy's security risk program to the next level of maturity. Reporting directly to the Head of Security, you'll be part of a team focused on protecting Grow's patients, providers, employees, and business by embedding risk awareness into everyday decision-making. Your work will directly support Grow's mission to expand access to high-quality mental healthcare—safely, responsibly, and at scale. Your responsibilities will include building and maturing our enterprise risk management framework, driving audit readiness, shaping executive risk reporting, and partnering closely with teams across Legal, Compliance, Engineering, and Product.

What You'll Be Doing

  • Build and mature Grow's enterprise security risk management program, including risk identification, assessment, prioritization, remediation tracking, and maintaining a comprehensive risk register that informs business decisions.
  • Lead the charge on AI risk management: Security sits within Grow’s Internal Foundations pillar, which is building company-wide infrastructure to support AI adoption. You’ll be in an incredible position to influence safe and thoughtful adoption of AI tooling at the enterprise level.
  • Own the third-party/vendor security risk management program, streamlining review workflows to support business velocity while ensuring robust security oversight of partners and vendors.
  • Drive audit readiness and external certifications (SOC 2, HIPAA-aligned assessments, HITRUST readiness) in close partnership with Legal and Compliance, reducing repeat findings and improving remediation timelines.
  • Develop and deliver executive-level risk reporting and readouts that translate technical and security risks into clear business impact, enabling leadership to make informed, risk-aware tradeoffs as the company scales.
  • Partner proactively across Security Engineering, Product, Engineering, and Operations to embed security and risk awareness into planning and decision-making cycles—positioning security as a strategic enabler rather than a gatekeeper.

You'll Be a Good Fit If

  • You have deep experience building and operating security or enterprise risk management programs (not just managing projects) and a strong bias toward execution in fast-paced environments.
  • You bring strong knowledge of healthcare security, privacy, and compliance frameworks (HIPAA, SOC 2, HITRUST) and can navigate regulatory obligations without sacrificing speed or innovation.
  • You have exceptional stakeholder management and communication skills, including a track record of influencing senior leaders and translating complex risk concepts into actionable business guidance.
  • You are a strong program manager with a structured approach to prioritization, documentation, and cross-functional alignment.
  • Bonus: Experience scaling risk programs at high-growth or pre-IPO tech companies, prior ownership of vendor risk programs, or familiarity with GRC tooling and automation.

Full Time Employee Benefits:

  • Comprehensive Health Coverage: Medical, dental, and vision insurance, plus life and disability coverage.
  • Parental Leave & Family Support: Up to 18 weeks paid leave and a new child stipend.
  • Financial Wellness: 401(k) program and equity opportunities.
  • Meals & Home Office Support: Stipends for home office setup and ongoing funds for meals, with tailored perks for both remote and in-office employees.
  • Time Off to Recharge: Flexible PTO, 12 paid holidays, and a full winter break week.
  • Wellness & Development: Annual stipends to put towards personal & professional growth.
  • Mental & Physical Health Support: No-cost access to therapy through the Grow platform, weekly flexible hours for self-care (“Mental Health Mornings/Afternoons”) and memberships to leading wellness apps (such as One Medical, Headspace, and Talkspace).
  • Extra Perks: Pet insurance discounts, commuter benefits, and global travel assistance.

Skills

Security Risk ManagementEnterprise Risk ManagementAi Risk ManagementThird-Party Risk ManagementVendor SecuritySOC 2HIPAAHitrustGRCStakeholder Management
Duolingo

Staff Program Manager Brand Campaigns

DuolingoNew York, NY +1

Lead complex, multi-quarter cross-functional programs at Duolingo, turning strategy into scalable execution while aligning senior stakeholders and managing a bench of freelancers. Requires 10+ years of program management experience in consumer tech.

152k – 228k
On-site10+ YOETechnical Program Management
Benchling

Global Program Manager

BenchlingBoston, MA +1

Experienced customer-facing Global Program Manager to oversee post-sale experience for largest Enterprise biotech customers, coordinating implementation, success, and support to drive adoption and growth. Requires 10+ years in client-facing program leadership with deep Life Sciences R&D expertise.

152k – 242k
Hybrid10+ YOETechnical Program Management
MongoDB

Staff Technical Program Manager, Queryable Encryption

MongoDBPalo Alto, CA

Own delivery of MongoDB's Queryable Encryption program, partnering with Engineering, Product, and Cryptography teams to drive complex cross-functional technical initiatives. Requires 10+ years leading technical programs in security, privacy, or distributed systems domains.

151k – 297k
On-site10+ YOETechnical Program Management
Shield AI

Staff Technical Program Manager, Propulsion (R4727)

Shield AIDallas, TX

Coordinates propulsion development for aircraft systems, driving schedules, cross-functional teams, suppliers, and risk mitigation to meet vehicle milestones in aerospace hardware programs. Requires engineering background and 7+ years TPM experience.

150k – 220k
On-site7+ YOETechnical Program Management
Pinterest

Staff Technical Program Manager, SOX Compliance

PinterestSan Francisco, CA

Lead strategic SOX compliance programs across engineering and finance, modernizing audit workflows with AI-driven automation and building scalable program mechanisms. Requires 7+ years TPM experience and deep SOX domain fluency.

146k – 300k
Remote7+ YOETechnical Program Management