Docusign
Overview
Join to apply for the
Sr. Security GRC Product Manager
role at
Docusign . What you'll do: Docusign is hiring a Senior Security GRC Product Manager to own the strategy, roadmap, and delivery of governance, risk, and compliance (GRC) platforms and capabilities. You will partner with engineering, security, compliance, and business stakeholders to design and scale automation-first solutions that simplify and modernize risk and compliance processes across the enterprise. This is a senior individual contributor role requiring strategic vision, product management expertise, and deep understanding of security and compliance frameworks. You will own the full product lifecycle—from gathering requirements and prioritizing features to driving adoption and delivering measurable outcomes. This position is an individual contributor role reporting to the Senior Director of Security Governance, Risk Management and Compliance. Responsibilities
Define and execute the product strategy and roadmap for GRC platforms (e.g., ServiceNow IRM, OneTrust, Archer, LogicGate, or custom tools) Partner with Security, Engineering, Compliance, and business teams to translate regulatory, audit, and business requirements into scalable workflows and automation Collaborate with GRC Engineering to deliver integrations, dashboards, and reporting that provide real-time visibility into risk, compliance and control posture Act as product owner in agile ceremonies: prioritize backlogs, define user stories, and ensure delivery against roadmap commitments Drive the design and continuous improvement of workflows for risk assessments, control testing, policy exceptions, issues management, and evidence collection Drive adoption and continuous improvement of GRC tools by engaging with users across engineering, business, and compliance teams Ensure GRC platforms are integrated with cloud, SaaS, and enterprise systems to support automated evidence and monitoring Deliver dashboards, KPIs, and reporting logic that provide executives with actionable insights Engage stakeholders across security, engineering, and business functions to drive adoption, usage, and measurable business impact What you bring
Basic
8+ years of experience in product management, security GRC, or related domains Bachelor’s degree in Information Security, Risk Management, Computer Science, or related field Experience with security, risk, compliance, and control frameworks (ISO 27001, SOC 2, NIST CSF, FedRAMP, GDPR, DORA, HIPAA) Experience with GRC platforms such as ServiceNow IRM, Archer, OneTrust, or LogicGate Proven ability to translate regulatory and security requirements into business and technical specifications Experience delivering automation-enabled workflows for GRC use cases Preferred
Excellent stakeholder management skills, with the ability to influence across engineering, compliance, and executive teams Certifications such as CISM, CRISC, CISSP, CTPRP, or PMP Experience building dashboards and reporting with tools like Tableau, Power BI, or Looker Track record of scaling enterprise-wide GRC programs with automation and integrations Strong communication and executive presence, with experience briefing senior leadership Wage Transparency
Pay for this position is based on a number of factors including geographic location and may vary depending on job-related knowledge, skills, and experience. California: $140,000 - $225,075 base; Illinois, Colorado, Massachusetts and Minnesota: $133,800 - $189,000 base; Washington, Maryland, New Jersey and New York (including NYC metro area): $133,800 - $197,750 base. This role is eligible for additional compensation as described by company policy. Benefits
Paid Time Off: earned time off and paid company holidays based on region Paid Parental Leave: up to six months for birth, adoption, or foster care Full Health Benefits Plans: employer-paid options and minimum employee contribution health plans from day one Retirement Plans: retirement and pension programs with potential employer contributions Learning and Development: coaching, online courses and education reimbursements Compassionate Care Leave: paid time off following the loss of a loved one Life at Docusign
Working here: Docusign is committed to building trust and providing equal opportunity. We strive to ensure every team member has an equal opportunity to succeed, be heard, exchange ideas openly, and do the work of their life. Accommodation
Docusign is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. If you need an accommodation, please contact accommodations@docusign.com. For application process issues, contact taops@docusign.com. EEO and Privacy
Applicant and Candidate Privacy Notice; This position is not eligible for employment in certain states. Docusign is an Equal Opportunity Employer and does not discriminate based on protected characteristics. EEO Know Your Rights poster. Job metadata
Seniority level: Mid-Senior level Employment type: Full-time Job function: Product Management and Marketing Industries: Software Development
#J-18808-Ljbffr
Join to apply for the
Sr. Security GRC Product Manager
role at
Docusign . What you'll do: Docusign is hiring a Senior Security GRC Product Manager to own the strategy, roadmap, and delivery of governance, risk, and compliance (GRC) platforms and capabilities. You will partner with engineering, security, compliance, and business stakeholders to design and scale automation-first solutions that simplify and modernize risk and compliance processes across the enterprise. This is a senior individual contributor role requiring strategic vision, product management expertise, and deep understanding of security and compliance frameworks. You will own the full product lifecycle—from gathering requirements and prioritizing features to driving adoption and delivering measurable outcomes. This position is an individual contributor role reporting to the Senior Director of Security Governance, Risk Management and Compliance. Responsibilities
Define and execute the product strategy and roadmap for GRC platforms (e.g., ServiceNow IRM, OneTrust, Archer, LogicGate, or custom tools) Partner with Security, Engineering, Compliance, and business teams to translate regulatory, audit, and business requirements into scalable workflows and automation Collaborate with GRC Engineering to deliver integrations, dashboards, and reporting that provide real-time visibility into risk, compliance and control posture Act as product owner in agile ceremonies: prioritize backlogs, define user stories, and ensure delivery against roadmap commitments Drive the design and continuous improvement of workflows for risk assessments, control testing, policy exceptions, issues management, and evidence collection Drive adoption and continuous improvement of GRC tools by engaging with users across engineering, business, and compliance teams Ensure GRC platforms are integrated with cloud, SaaS, and enterprise systems to support automated evidence and monitoring Deliver dashboards, KPIs, and reporting logic that provide executives with actionable insights Engage stakeholders across security, engineering, and business functions to drive adoption, usage, and measurable business impact What you bring
Basic
8+ years of experience in product management, security GRC, or related domains Bachelor’s degree in Information Security, Risk Management, Computer Science, or related field Experience with security, risk, compliance, and control frameworks (ISO 27001, SOC 2, NIST CSF, FedRAMP, GDPR, DORA, HIPAA) Experience with GRC platforms such as ServiceNow IRM, Archer, OneTrust, or LogicGate Proven ability to translate regulatory and security requirements into business and technical specifications Experience delivering automation-enabled workflows for GRC use cases Preferred
Excellent stakeholder management skills, with the ability to influence across engineering, compliance, and executive teams Certifications such as CISM, CRISC, CISSP, CTPRP, or PMP Experience building dashboards and reporting with tools like Tableau, Power BI, or Looker Track record of scaling enterprise-wide GRC programs with automation and integrations Strong communication and executive presence, with experience briefing senior leadership Wage Transparency
Pay for this position is based on a number of factors including geographic location and may vary depending on job-related knowledge, skills, and experience. California: $140,000 - $225,075 base; Illinois, Colorado, Massachusetts and Minnesota: $133,800 - $189,000 base; Washington, Maryland, New Jersey and New York (including NYC metro area): $133,800 - $197,750 base. This role is eligible for additional compensation as described by company policy. Benefits
Paid Time Off: earned time off and paid company holidays based on region Paid Parental Leave: up to six months for birth, adoption, or foster care Full Health Benefits Plans: employer-paid options and minimum employee contribution health plans from day one Retirement Plans: retirement and pension programs with potential employer contributions Learning and Development: coaching, online courses and education reimbursements Compassionate Care Leave: paid time off following the loss of a loved one Life at Docusign
Working here: Docusign is committed to building trust and providing equal opportunity. We strive to ensure every team member has an equal opportunity to succeed, be heard, exchange ideas openly, and do the work of their life. Accommodation
Docusign is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. If you need an accommodation, please contact accommodations@docusign.com. For application process issues, contact taops@docusign.com. EEO and Privacy
Applicant and Candidate Privacy Notice; This position is not eligible for employment in certain states. Docusign is an Equal Opportunity Employer and does not discriminate based on protected characteristics. EEO Know Your Rights poster. Job metadata
Seniority level: Mid-Senior level Employment type: Full-time Job function: Product Management and Marketing Industries: Software Development
#J-18808-Ljbffr