Gravity Payments is hiring a Technical Program Manager-Trust and Reliability

Gravity Payments is hiring a Technical Program Manager for Trust and Reliability to own critical initiatives that ensure our platform is secure, compliant, and resilient. In this pivotal role, you will maintain customer trust by managing incident response, driving compliance maturity, and architecting recovery plans within our collaborative environment.

What You'll Do

• Lead and manage the end-to-end incident response process as the on-call Incident Manager, ensuring swift resolution and clear communication.
• Own the post-incident lifecycle by facilitating blameless post-mortems and Root Cause Analyses (RCAs), then driving follow-up actions.
• Own and advance the company's Business Continuity and Disaster Recovery (BC/DR) program, including planning, testing, and reporting.
• Drive the maturity of PCI DSS and SOC2 compliance programs by translating requirements into actionable engineering work and managing audit evidence collection.
• Act as a primary stakeholder for follow-up actions affecting trust and reliability, ensuring remediation tasks and reliability improvements are prioritized and executed.
• Architect and implement a detailed, service-by-service technical recovery plan leveraging established RTOs/RPOs.

What We're Looking For

• Direct experience with cloud-native architectures (AWS preferred), including containerization, serverless applications, managed databases, and encryption.
• Demonstrated experience leading or coordinating incident response efforts during technology incidents or outages, including triage, stakeholder communication, and post-incident analysis.
• Proven experience leading at least one full audit cycle for a major compliance framework (PCI DSS Level 1 or SOC2 Type II), including direct interaction with external auditors.
• Expertise in using compliance automation software (e.g., Drata, Vanta) to continuously monitor controls and streamline evidence collection.
• Expert-level proficiency in configuring and managing incident management platforms (e.g., PagerDuty, Opsgenie), including escalation policies and on-call schedules.
• Advanced ability to query and analyze data in observability platforms (e.g., Datadog, Splunk) to create dashboards, define SLOs, and identify trends.
• Working knowledge of secure SDLC practices, with ability to participate in architecture reviews and identify risks within CI/CD pipelines and infrastructure-as-code.
• Must have access to a wired internet connection with at least 25 mbps download and 20 mbps upload speed.

Nice to Have

• Experience working within or closely with Engineering teams in small or midsize companies structured as multiple focused pods or teams.
• Experience in the credit card payment services industry (credit card processing, acquiring, and merchant services).
• Exceptional leadership and communication skills, with ability to remain calm and authoritative under high-pressure situations.
• Talent for influencing without direct authority to align teams toward common goals.
• Deep understanding of risk management principles and how to apply them in a technical environment.
• Strong organizational skills with proven ability to manage multiple complex programs simultaneously.
• Ability to leverage AI to evaluate documents, reports, find gaps, evaluate readiness, and iterate on trust and reliability workflows.
• Continuous improvement mindset with experience delivering iterative value on long-term programs.
• Experience presenting complex technical and compliance topics to both executive and engineering audiences.

Technical Stack

• AWS, containerization, serverless/function-based applications, managed databases, encryption
• Compliance automation software (e.g., Drata, Vanta)
• Incident management platforms (e.g., PagerDuty, Opsgenie)
• Observability platforms (e.g., Datadog, Splunk)
• CI/CD pipelines, infrastructure-as-code (IaC)

Team & Environment

You'll join a collaborative team where cross-functional work is common. The environment is typical of a small or midsize company with multiple focused pods or teams.

Benefits & Compensation

• Compensation: $128,000 - $182,000
• Medical, dental, and vision coverage
• 401(k) retirement plan
• Voluntary life insurance
• Open PTO available after one year
• Training, mentorship, and development opportunities
• Short-term & long-term disability coverage
• Wellness resources
• Profit Sharing

Gravity Payments is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity/expression, age, disability status, protected veteran status, or any other characteristic protected by law.