Ursus Inc
JOB TITLE: Cyber Security Program Manager
LOCATION: 100% remote ( West coast preferred (Bay Area specifically))
DURATION: 6 month contract
PAY RANGE: $87 - $97/hr
TOP 3 SKILLS:
10+ years of experience in program management (for IC6, 8 years for IC5) and 3+ years of cybersecurity or information security Cybersecurity certifications, e.g., Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) In-depth experience of one or more project and/or product management methodologies (for example: agile, PMI, product execution)
COMPANY: Our client is a Fortune 500 multi-national technology company headquartered in Menlo Park, CA.
Job Description:
Our client is looking for a Program Manager to join the Security Delivery Management team. The Security Delivery Management team is responsible for scaling and sustaining long-term initiatives in service of our mission - to protect the company, our community, and its data while empowering safe innovation. As a delivery manager on this function you will lead portfolios and workstreams driving security goals across client.
The ideal Delivery Manager is someone who has knowledge or experience in running large scale portfolios of work, rapidly building cross functional relationships, and risk management. They will be key partners in helping to ensure client has premier security delivery capabilities so we can understand and mitigate threats to our users today and prepare for those tomorrow. Specifically, the Security Delivery Management team will: (1) Evaluate existing and future problem spaces through a comprehensive client lens to ensure Security solution development is universal and de-duplicated. (2) Build playbooks and process channels to help Security scale across client and the multiple ever-expanding surfaces with minimal friction for partner teams. (3) Drive playbook adoption and application to hit clear quantifiable-wide Security goals, managing budget and vendors where necessary. (4) Scale playbooks by constantly driving efficiencies (e.g. reduce overhead, increase speed to execute, develop automation, develop quality assurance).
RESPONSIBILITIES
Evaluate existing and future problem spaces through a comprehensive lens, auditing similar problems in multiple places, to ensure Security solution development is universal and deduplicated. Build playbooks and process channels to help security scale across and the multiple ever-expanding dimensions with minimal friction for partner teams. Connect dots by understanding/auditing where people are solving the similar problems in multiple different places and deduping. Drive standardized frameworks for identifying and closing gaps for new products, regulation, external audits and compliance, third parties, internal tools, etc. Develop ***-wide playbooks for steady state delivery of security services, including operational measurement. Scale playbooks by constantly driving efficiencies (e.g. reduce overhead, increase speed to execute, automate). Responsible for managing multiple Security portfolios and workstreams using Agile best practices. This includes planning, coordinating with cross-functional teams, tracking status and reporting, communicating to the project team and key stakeholders, and creating the appropriate documentation. Lead vendor selection, manage vendor performance, and enforce contractual obligations to ensure high quality, consistent delivery. Build close relationships with other highly cross-functional teams within *** including, but not limited to Legal, Communications, Finance, Sourcing & Procurement, and Engineering. Demonstrate subject matter experience of understanding of the supported domain, design measurement methodology, and conduct through analysis of the problem space. Select appropriate security metrics to measure the success of the portfolio and analyze data to identify trends and patterns.
MINIMUM QUALIFICATIONS
Bachelor's degree in a directly related field, or equivalent practical experience. 10+ years of experience in program management (for IC6, 8 years for IC5) 3+ years of cybersecurity or information security In-depth experience of one or more project and/or product management methodologies (for example: agile, PMI, product execution) Track record of making risk based decisions using data to understand trends and support decision making Track record of consistently working under your own initiative, demonstrating experience of resourcefulness and pivoting in changing situations, being detail-oriented and a proactive problem solver, and delivering results at a large scale Experience influencing and driving alignment amongst a wide stakeholder base, including: executive leaders, peers, technical, and non-technical stakeholders across roles across the company
PREFERRED QUALIFICATIONS
Cybersecurity certifications, e.g., Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) Product Development related project management certifications, e.g., Certified Scrum Master (CSM) Experience understanding proprietary in-house built systems, information security, corporate systems (e.g., ServiceNow, Salesforce, Workday), and driving complex projects with process and technology changes. Experience managing projects related to cybersecurity and information security operations, including projects on improving and demonstrating the maturity of repeatable operations (i.e. compliance issue remediation, process maturity enhancements, developing runbooks to run repeatable processes , etc.) Track record of building cybersecurity / information security programs that stand up to rigor of external legal and regulatory compliance with eye toward developing efficiencies (e.g. reduced overhead, increased speed to execute, automation features, etc).
Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Los Angeles Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, qualified applicants will be considered for assignment with arrest and conviction records. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, meet client expectations, standards, and accompanying requirements, and safeguard business operations and company reputation.
BENEFITS SUMMARY: Individual compensation is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base hourly rate or annual salary only, unless otherwise stated. In addition to base compensation, full-time roles are eligible for Medical, Dental, Vision, Commuter and 401K benefits with company matching.
IND123
TOP 3 SKILLS:
10+ years of experience in program management (for IC6, 8 years for IC5) and 3+ years of cybersecurity or information security Cybersecurity certifications, e.g., Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) In-depth experience of one or more project and/or product management methodologies (for example: agile, PMI, product execution)
COMPANY: Our client is a Fortune 500 multi-national technology company headquartered in Menlo Park, CA.
Job Description:
Our client is looking for a Program Manager to join the Security Delivery Management team. The Security Delivery Management team is responsible for scaling and sustaining long-term initiatives in service of our mission - to protect the company, our community, and its data while empowering safe innovation. As a delivery manager on this function you will lead portfolios and workstreams driving security goals across client.
The ideal Delivery Manager is someone who has knowledge or experience in running large scale portfolios of work, rapidly building cross functional relationships, and risk management. They will be key partners in helping to ensure client has premier security delivery capabilities so we can understand and mitigate threats to our users today and prepare for those tomorrow. Specifically, the Security Delivery Management team will: (1) Evaluate existing and future problem spaces through a comprehensive client lens to ensure Security solution development is universal and de-duplicated. (2) Build playbooks and process channels to help Security scale across client and the multiple ever-expanding surfaces with minimal friction for partner teams. (3) Drive playbook adoption and application to hit clear quantifiable-wide Security goals, managing budget and vendors where necessary. (4) Scale playbooks by constantly driving efficiencies (e.g. reduce overhead, increase speed to execute, develop automation, develop quality assurance).
RESPONSIBILITIES
Evaluate existing and future problem spaces through a comprehensive lens, auditing similar problems in multiple places, to ensure Security solution development is universal and deduplicated. Build playbooks and process channels to help security scale across and the multiple ever-expanding dimensions with minimal friction for partner teams. Connect dots by understanding/auditing where people are solving the similar problems in multiple different places and deduping. Drive standardized frameworks for identifying and closing gaps for new products, regulation, external audits and compliance, third parties, internal tools, etc. Develop ***-wide playbooks for steady state delivery of security services, including operational measurement. Scale playbooks by constantly driving efficiencies (e.g. reduce overhead, increase speed to execute, automate). Responsible for managing multiple Security portfolios and workstreams using Agile best practices. This includes planning, coordinating with cross-functional teams, tracking status and reporting, communicating to the project team and key stakeholders, and creating the appropriate documentation. Lead vendor selection, manage vendor performance, and enforce contractual obligations to ensure high quality, consistent delivery. Build close relationships with other highly cross-functional teams within *** including, but not limited to Legal, Communications, Finance, Sourcing & Procurement, and Engineering. Demonstrate subject matter experience of understanding of the supported domain, design measurement methodology, and conduct through analysis of the problem space. Select appropriate security metrics to measure the success of the portfolio and analyze data to identify trends and patterns.
MINIMUM QUALIFICATIONS
Bachelor's degree in a directly related field, or equivalent practical experience. 10+ years of experience in program management (for IC6, 8 years for IC5) 3+ years of cybersecurity or information security In-depth experience of one or more project and/or product management methodologies (for example: agile, PMI, product execution) Track record of making risk based decisions using data to understand trends and support decision making Track record of consistently working under your own initiative, demonstrating experience of resourcefulness and pivoting in changing situations, being detail-oriented and a proactive problem solver, and delivering results at a large scale Experience influencing and driving alignment amongst a wide stakeholder base, including: executive leaders, peers, technical, and non-technical stakeholders across roles across the company
PREFERRED QUALIFICATIONS
Cybersecurity certifications, e.g., Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) Product Development related project management certifications, e.g., Certified Scrum Master (CSM) Experience understanding proprietary in-house built systems, information security, corporate systems (e.g., ServiceNow, Salesforce, Workday), and driving complex projects with process and technology changes. Experience managing projects related to cybersecurity and information security operations, including projects on improving and demonstrating the maturity of repeatable operations (i.e. compliance issue remediation, process maturity enhancements, developing runbooks to run repeatable processes , etc.) Track record of building cybersecurity / information security programs that stand up to rigor of external legal and regulatory compliance with eye toward developing efficiencies (e.g. reduced overhead, increased speed to execute, automation features, etc).
Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Los Angeles Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, qualified applicants will be considered for assignment with arrest and conviction records. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, meet client expectations, standards, and accompanying requirements, and safeguard business operations and company reputation.
BENEFITS SUMMARY: Individual compensation is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base hourly rate or annual salary only, unless otherwise stated. In addition to base compensation, full-time roles are eligible for Medical, Dental, Vision, Commuter and 401K benefits with company matching.
IND123