Kforce Inc
Information Security Program Manager
Kforce Inc, Minneapolis, Minnesota, United States, 55400
Base Pay Range
$42.00/hr - $43.00/hr
Responsibilities
Develop, implement, and manage comprehensive information security programs aligned with business objectives and regulatory requirements
Coordinate cross‑functional teams to execute security initiatives, including risk assessments, compliance audits, and incident response planning
Monitor and report on the effectiveness of security controls and program performance metrics
Lead governance activities including policy development, awareness training, and stakeholder communication
Manage relationships with internal and external stakeholders, including IT, legal, compliance, and third‑party vendors
Ensure alignment with frameworks such as NIST, ISO 27001, CIS Controls, and applicable regulations (e.g., GDPR, HIPAA, PCI‑DSS)
Oversee the lifecycle of security projects, including budgeting, resource allocation, and timeline management
Facilitate executive‑level reporting and presentations on program status, risks, and mitigation strategies
Stay current with emerging threats, technologies, and best practices in cybersecurity
Requirements
Bachelor's degree in Cybersecurity, Information Technology, Risk Management, or a related discipline
5+ years of experience in IT or cybersecurity risk management, with specific experience in third‑party or vendor risk
Strong knowledge of third‑party risk management frameworks and control standards (e.g., NIST, ISO 27001, SIG, SOC 2, CSA)
Hands‑on experience reviewing third‑party security assessments, risk questionnaires, and due diligence documentation
Familiarity with GRC or third‑party risk platforms (e.g., Onspring, OneTrust, Archer, ServiceNow, Prevalent, BitSight, Panorays)
Excellent communication and negotiation skills to work with internal and external stakeholders
Preferred Skills
Industry certifications (e.g., CRISC, CTPRP, CISA, CISSP) are a plus
Experience in cloud security and hybrid environments (AWS, Azure, GCP)
Familiarity with data privacy regulations and enterprise risk management
Ability to influence and drive change across diverse teams
Strong analytical and problem‑solving capabilities
Benefits Kforce offers comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
This job is not eligible for bonuses, incentives, or commissions.
Equal Opportunity Statement Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
Additional Details
Seniority level: Associate
Employment type: Contract
Job function: Project Management and Information Technology
Industries: Financial Services, Investment Banking, and Investment Management
#J-18808-Ljbffr
Responsibilities
Develop, implement, and manage comprehensive information security programs aligned with business objectives and regulatory requirements
Coordinate cross‑functional teams to execute security initiatives, including risk assessments, compliance audits, and incident response planning
Monitor and report on the effectiveness of security controls and program performance metrics
Lead governance activities including policy development, awareness training, and stakeholder communication
Manage relationships with internal and external stakeholders, including IT, legal, compliance, and third‑party vendors
Ensure alignment with frameworks such as NIST, ISO 27001, CIS Controls, and applicable regulations (e.g., GDPR, HIPAA, PCI‑DSS)
Oversee the lifecycle of security projects, including budgeting, resource allocation, and timeline management
Facilitate executive‑level reporting and presentations on program status, risks, and mitigation strategies
Stay current with emerging threats, technologies, and best practices in cybersecurity
Requirements
Bachelor's degree in Cybersecurity, Information Technology, Risk Management, or a related discipline
5+ years of experience in IT or cybersecurity risk management, with specific experience in third‑party or vendor risk
Strong knowledge of third‑party risk management frameworks and control standards (e.g., NIST, ISO 27001, SIG, SOC 2, CSA)
Hands‑on experience reviewing third‑party security assessments, risk questionnaires, and due diligence documentation
Familiarity with GRC or third‑party risk platforms (e.g., Onspring, OneTrust, Archer, ServiceNow, Prevalent, BitSight, Panorays)
Excellent communication and negotiation skills to work with internal and external stakeholders
Preferred Skills
Industry certifications (e.g., CRISC, CTPRP, CISA, CISSP) are a plus
Experience in cloud security and hybrid environments (AWS, Azure, GCP)
Familiarity with data privacy regulations and enterprise risk management
Ability to influence and drive change across diverse teams
Strong analytical and problem‑solving capabilities
Benefits Kforce offers comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
This job is not eligible for bonuses, incentives, or commissions.
Equal Opportunity Statement Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
Additional Details
Seniority level: Associate
Employment type: Contract
Job function: Project Management and Information Technology
Industries: Financial Services, Investment Banking, and Investment Management
#J-18808-Ljbffr