GSD&M is seeking a driven, detail-oriented, and dedicated Technology Program Manager to join our U.S. Air Force Total Force (USAF) and U.S. Space Force (USSF) agency team. In this role, you will provide Risk Management, Security Compliance, and Technical support across complex projects, including all client web, experiential, and leads related work. This position is client-facing and will work directly with a managed services provider, cloud services provider, and client Cyber Security teams. As a Technology Program Manager, you will be a subject matter expert for all USAF/USSF web and Personally Identifiable Information (PII) data collection and transfer projects. This includes ensuring that all environments meet client requirements across various websites such as airforce.com, spaceforce.com, afrotc.com, academyadmissions.com, airforceads.com, and data collection integrations for USAF/USSF mobile tours, as well as Salesforce leads management and any web/native applications. The role requires you to provide Information Assurance, Cybersecurity, and Risk Management support to the production, account leadership, and development teams across projects. You will ensure real-time compliance for secure operations across all digital properties and support the scoping, creative, and development process by participating in the assessment of feasibility of proposed solutions, ensuring all FedRAMP Authority to Operate (ATO) requirements are met. This includes reviewing Vulnerability Disclosure Program (VDP) reports, running and interpreting site security scans, and assisting in Security Technical Implementation Guide (STIG) implementation. You will also be responsible for developing accurate and thorough requirements documentation and specifications as needed, reviewing site security policies, and communicating remediation plans with production, account, and development teams. Additionally, this role may involve managing hosting and Content Management System (CMS) partners, email web accounts, DNS, secure password storage, server-related updates, and SSL certificate renewals.