We are seeking a strategic Information Security Program Manager to oversee the planning, execution, and delivery of security programs protecting our data, systems, and infrastructure. You will lead cross-functional teams, ensure regulatory compliance, and manage security initiatives aligned with business goals.
Roles and Responsibilities
- Develop and manage security programs to protect data and ensure regulatory compliance (e.g., GDPR, HIPAA, PCI-DSS).
- Lead security initiatives, including risk assessments, compliance audits, and incident response planning.
- Monitor the effectiveness of security controls and track program performance metrics.
- Manage relationships with IT, legal, compliance, and third-party vendors.
- Oversee policy development, security training, and stakeholder communication.
- Ensure alignment with frameworks (e.g., NIST, ISO 27001, CIS Controls).
- Oversee the lifecycle of security projects, including budgeting, resources, and timelines.
- Provide executive-level reporting on program status and emerging risks.
- Stay current with cybersecurity trends and emerging threats.
Required Qualifications
- Bachelor’s in Information Security, Computer Science, or related field (Master’s preferred).
- 3-5 years in information security, with 3+ years in program management.
- CISSP, CISM, PMP, or CRISC preferred.
- Strong understanding of cybersecurity, risk management, and compliance.
- Proficient in GRC tools (e.g., Archer, ServiceNow, Jira).
- Excellent communication and leadership skills.