Redwood Materials
Staff Program Manager, Information Security
Redwood Materials, San Francisco, California, United States, 94199
Staff Program Manager, Information Security
Join to apply for the
Staff Program Manager, Information Security
role at
Redwood Materials Staff Program Manager, Information Security
Join to apply for the
Staff Program Manager, Information Security
role at
Redwood Materials Get AI-powered advice on this job and more exclusive features. About Redwood Materials
Redwood Materials was founded in 2017 to create a circular supply chain for electric vehicles and clean energy products, making them more sustainable and driving down the cost for batteries. We're doing this by developing and deploying new technologies to increase the scope and scale of recycled and sustainable materials in the global battery supply chain. About Redwood Materials
Redwood Materials was founded in 2017 to create a circular supply chain for electric vehicles and clean energy products, making them more sustainable and driving down the cost for batteries. We're doing this by developing and deploying new technologies to increase the scope and scale of recycled and sustainable materials in the global battery supply chain.
Staff Program Manager, Information Security
Essential Duties:
We are seeking an experienced Senior Information Security Program Manager for Governance, Risk and Compliance, to lead the preparation and ongoing audit readiness of the Information Security program to ensure the organization's compliance with industry standards. In collaboration with the IT, Enterprise Risk and Compliance, and Quality Assurance teams, and as a representative of the Information Security program, you will drive the maturity of our Information Security Compliance Program, focusing on control ownership and risk management while providing pragmatic, risk-centric advisory services to stakeholders.
This role offers the opportunity to shape the security posture of a rapidly growing organization while contributing to our mission of sustainable technology innovation.
Responsibilities Will Include:
Design and execute the strategic vision for our Information Security GRC program Develop and maintain the Information Security Governance, Risk, and Compliance program, creating policies, procedures, and extending organizational capabilities while ensuring alignment with industry best practices Drive cross-functional collaboration with IT, Enterprise Risk and Compliance, and other operational teams to implement secure, consistent patterns and expand observability Identify and prioritize opportunities for improving organizational risk posture Create and maintain comprehensive Information Security documentation, including a knowledge base, compliance reports, risk registers, and policy documentation Serve as a subject matter expert in: Developing and managing the Compliance Program Coordinating Audit Evidence Gathering Overseeing User Access Reviews Developing Policies and Processes Managing Change Management Processes Conducting Risk Assessments and Mitigation Leading Security Awareness and Training Programs Own and maintain Third Party Risk Management evaluation practices Maintain the Information Security policy portfolio Manage operational capabilities including GRC tools and platforms Oversee the security lifecycle of compliance initiatives and audit preparations Represent Information Security in partnerships with internal teams and third-party organizations Develop and maintain a reporting framework to keep stakeholders informed of risks, compliance status, and program progress Establish and own the Information Security change management review process
Desired Qualifications:
7+ years of hands-on experience in Information Security Governance, Risk, and Compliance programs developing risk-centric solutions, leveraging industry standard controls frameworks and implementations. 5+ years of direct ownership in at least 3 of the following: Compliance Program Management Audit Evidence Gathering User Access Reviews Policy and Process Development Change Management Risk Assessment and Mitigation Security Awareness and Training Programs Proficiency with 4 or more industry-standard compliance programs (e.g., ISO 27001, CISv8.1, NIST 800-53/88/171, CMMC, TISAX, SOC 2, Sarbanes-Oxley) Extensive experience overseeing IT compliance initiatives in mixed on-premises and cloud-based environments (e.g., AWS, GCP, Azure, Entra, Active Directory etc), ensuring adherence to industry standards and regulatory requirements Advanced knowledge of Governance, Risk, and Compliance frameworks and best practices, demonstrable experience in: Developing and implementing IT security policies and procedures Conducting risk assessments and managing risk mitigation initiatives Preparing for and managing internal and external IT audits Leading security awareness and training programs Third Party Risk Management Evaluations Strong understanding of regulatory requirements and industry standards Familiarity with GRC tools and technologies Relevant professional certifications such as PMP, CISSP, CIPM, CIPT, CISM, CISA, CRISC, CGEIT, GSEC, GSNA or GCCC Excellent communication and interpersonal skills, including: Ability to influence and collaborate with stakeholders at all levels Strong presentation and report-writing skills Effective leadership and mentoring abilities Demonstrated experience in managing complex programs and projects, including developing project plans, and leading cross-functional teams to deliver results on time and within scope. Excellent attitude, team collaboration, communication, and self-motivation A passion for sustainability and making the world a better place!
Physical Requirements:
Ability to perform essential job functions in compliance with ADA, FMLA, and other relevant federal, state, and local regulations, including meeting both qualitative and quantitative productivity standards Ability to maintain regular and punctual attendance in line with ADA, FMLA, and applicable standards Ability to wear personal protective equipment (PPE), including safety gloves, helmets, and eyewear, or additional PPE when required Ability to lift and carry up to 50 lbs Ability to communicate clearly and effectively on the telephone, including listening and speaking
Working Conditions:
Office setting, manufacturing floor, outdoor job site, or remote work Exposure to loud noise, extreme heat or cold, dust, fumes, or hazardous chemicals Required to work weekends, evenings, on-call shifts, or extended hours on a regular basis Seniority level
Seniority level Mid-Senior level Employment type
Employment type Full-time Job function
Job function Project Management and Information Technology Industries Technology, Information and Internet Referrals increase your chances of interviewing at Redwood Materials by 2x Sign in to set job alerts for “Staff Program Manager” roles.
Senior Engineering Manager - Confluence Databases
San Francisco, CA $186,300.00-$269,075.00 2 weeks ago Senior Engineering Manager - Database Platform (REMOTE)
San Francisco, CA $125,000.00-$300,000.00 9 hours ago Senior Machine Learning Engineering Manager -- Teamwork Graph
San Francisco, CA $209,700.00-$303,150.00 2 weeks ago San Francisco, CA $192,000.00-$246,000.00 2 weeks ago San Francisco, CA $183,600.00-$265,550.00 2 weeks ago San Francisco, CA $130,000.00-$260,000.00 21 hours ago Foster City, CA $130,000.00-$260,000.00 2 days ago Staff Technical Program Manager, Search Signals
Engineering Program Manager, Machine Learning
National Program Director (Central Regions)
Oakland, CA $87,690.00-$109,613.00 2 weeks ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Join to apply for the
Staff Program Manager, Information Security
role at
Redwood Materials Staff Program Manager, Information Security
Join to apply for the
Staff Program Manager, Information Security
role at
Redwood Materials Get AI-powered advice on this job and more exclusive features. About Redwood Materials
Redwood Materials was founded in 2017 to create a circular supply chain for electric vehicles and clean energy products, making them more sustainable and driving down the cost for batteries. We're doing this by developing and deploying new technologies to increase the scope and scale of recycled and sustainable materials in the global battery supply chain. About Redwood Materials
Redwood Materials was founded in 2017 to create a circular supply chain for electric vehicles and clean energy products, making them more sustainable and driving down the cost for batteries. We're doing this by developing and deploying new technologies to increase the scope and scale of recycled and sustainable materials in the global battery supply chain.
Staff Program Manager, Information Security
Essential Duties:
We are seeking an experienced Senior Information Security Program Manager for Governance, Risk and Compliance, to lead the preparation and ongoing audit readiness of the Information Security program to ensure the organization's compliance with industry standards. In collaboration with the IT, Enterprise Risk and Compliance, and Quality Assurance teams, and as a representative of the Information Security program, you will drive the maturity of our Information Security Compliance Program, focusing on control ownership and risk management while providing pragmatic, risk-centric advisory services to stakeholders.
This role offers the opportunity to shape the security posture of a rapidly growing organization while contributing to our mission of sustainable technology innovation.
Responsibilities Will Include:
Design and execute the strategic vision for our Information Security GRC program Develop and maintain the Information Security Governance, Risk, and Compliance program, creating policies, procedures, and extending organizational capabilities while ensuring alignment with industry best practices Drive cross-functional collaboration with IT, Enterprise Risk and Compliance, and other operational teams to implement secure, consistent patterns and expand observability Identify and prioritize opportunities for improving organizational risk posture Create and maintain comprehensive Information Security documentation, including a knowledge base, compliance reports, risk registers, and policy documentation Serve as a subject matter expert in: Developing and managing the Compliance Program Coordinating Audit Evidence Gathering Overseeing User Access Reviews Developing Policies and Processes Managing Change Management Processes Conducting Risk Assessments and Mitigation Leading Security Awareness and Training Programs Own and maintain Third Party Risk Management evaluation practices Maintain the Information Security policy portfolio Manage operational capabilities including GRC tools and platforms Oversee the security lifecycle of compliance initiatives and audit preparations Represent Information Security in partnerships with internal teams and third-party organizations Develop and maintain a reporting framework to keep stakeholders informed of risks, compliance status, and program progress Establish and own the Information Security change management review process
Desired Qualifications:
7+ years of hands-on experience in Information Security Governance, Risk, and Compliance programs developing risk-centric solutions, leveraging industry standard controls frameworks and implementations. 5+ years of direct ownership in at least 3 of the following: Compliance Program Management Audit Evidence Gathering User Access Reviews Policy and Process Development Change Management Risk Assessment and Mitigation Security Awareness and Training Programs Proficiency with 4 or more industry-standard compliance programs (e.g., ISO 27001, CISv8.1, NIST 800-53/88/171, CMMC, TISAX, SOC 2, Sarbanes-Oxley) Extensive experience overseeing IT compliance initiatives in mixed on-premises and cloud-based environments (e.g., AWS, GCP, Azure, Entra, Active Directory etc), ensuring adherence to industry standards and regulatory requirements Advanced knowledge of Governance, Risk, and Compliance frameworks and best practices, demonstrable experience in: Developing and implementing IT security policies and procedures Conducting risk assessments and managing risk mitigation initiatives Preparing for and managing internal and external IT audits Leading security awareness and training programs Third Party Risk Management Evaluations Strong understanding of regulatory requirements and industry standards Familiarity with GRC tools and technologies Relevant professional certifications such as PMP, CISSP, CIPM, CIPT, CISM, CISA, CRISC, CGEIT, GSEC, GSNA or GCCC Excellent communication and interpersonal skills, including: Ability to influence and collaborate with stakeholders at all levels Strong presentation and report-writing skills Effective leadership and mentoring abilities Demonstrated experience in managing complex programs and projects, including developing project plans, and leading cross-functional teams to deliver results on time and within scope. Excellent attitude, team collaboration, communication, and self-motivation A passion for sustainability and making the world a better place!
Physical Requirements:
Ability to perform essential job functions in compliance with ADA, FMLA, and other relevant federal, state, and local regulations, including meeting both qualitative and quantitative productivity standards Ability to maintain regular and punctual attendance in line with ADA, FMLA, and applicable standards Ability to wear personal protective equipment (PPE), including safety gloves, helmets, and eyewear, or additional PPE when required Ability to lift and carry up to 50 lbs Ability to communicate clearly and effectively on the telephone, including listening and speaking
Working Conditions:
Office setting, manufacturing floor, outdoor job site, or remote work Exposure to loud noise, extreme heat or cold, dust, fumes, or hazardous chemicals Required to work weekends, evenings, on-call shifts, or extended hours on a regular basis Seniority level
Seniority level Mid-Senior level Employment type
Employment type Full-time Job function
Job function Project Management and Information Technology Industries Technology, Information and Internet Referrals increase your chances of interviewing at Redwood Materials by 2x Sign in to set job alerts for “Staff Program Manager” roles.
Senior Engineering Manager - Confluence Databases
San Francisco, CA $186,300.00-$269,075.00 2 weeks ago Senior Engineering Manager - Database Platform (REMOTE)
San Francisco, CA $125,000.00-$300,000.00 9 hours ago Senior Machine Learning Engineering Manager -- Teamwork Graph
San Francisco, CA $209,700.00-$303,150.00 2 weeks ago San Francisco, CA $192,000.00-$246,000.00 2 weeks ago San Francisco, CA $183,600.00-$265,550.00 2 weeks ago San Francisco, CA $130,000.00-$260,000.00 21 hours ago Foster City, CA $130,000.00-$260,000.00 2 days ago Staff Technical Program Manager, Search Signals
Engineering Program Manager, Machine Learning
National Program Director (Central Regions)
Oakland, CA $87,690.00-$109,613.00 2 weeks ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr