Senior Cybersecurity Program Manager (Contractor)
Operations
Remote
Senior Cybersecurity Program Manager
Overview
Serve as the primary delivery leader for Global Cybersecurity Services (GCS), driving project and program execution across all CISO towers. Report directly to the CISO and act as the connective layer between strategy, planning, and delivery. Ensure initiatives move forward with clear ownership, defined scope, managed dependencies, and transparent reporting. Support the build‑out of a Security PMO by establishing governance, cadences, and standardized delivery practices that improve predictability without adding unnecessary processProgram Scope
Security Engineering & Operations: Coordinate delivery of security tooling, detection and response initiatives, and operational improvements
Governance & Risk: Maintain momentum on risk assessments, policy work, and governance activities with clear deliverables and remediation plans
Compliance: Drive timelines for regulatory and contractual compliance programs, including PCI; coordinate evidence collection, milestones, and audit readiness
Application Security: Manage delivery of application and product security initiatives; integrate security milestones into engineering and SDLC workflows
Security Architecture: Coordinate architecture‑driven modernization efforts; track design milestones and technical dependencies
Key Responsibilities
Lead end‑to‑end project and program execution, including planning, scheduling, milestone tracking, and delivery against committed timelines
Maintain integrated project plans, roadmaps, and RAID logs
Drive initiatives from initiation through closure with defined scope, owners, and measurable outcomes
Run delivery routines such as stand‑ups, working sessions, and steering reviews
Cross‑Tower Coordination
Identify and manage dependencies across security towers
Sequence work to prevent delays between teams
Facilitate alignment between security groups and partner organizations
Escalate blockers with clear options and recommended paths to resolution
PMO Development
Establish intake, prioritization, planning, and reporting practices for a maturing Security PMO
Implement standardized templates, cadences, and delivery standards including charters, status reports, stage gates, and closeout processes
Maintain a consolidated portfolio view across all towers
Introduce lightweight governance that improves consistency without slowing execution
Reporting & Communication
Produce executive‑ready reporting on program health, milestones, risks, and outcomes
Translate delivery details into concise narratives for technical and non‑technical audiences
Maintain transparency around progress, effort, and timeline changes
Risk, Issue & Change Management
Proactively identify and track risks, issues, and mitigation plans
Manage scope changes and change control processes
Support audit‑ready documentation of decisions, milestones, and program artifacts
Qualifications
8+ years of program and project management experience delivering cybersecurity, IT, or technology programs
Proven ability to coordinate multiple concurrent workstreams across diverse technical teams
Working familiarity with key cybersecurity domains: Security Operations, Governance & Risk, Compliance (including PCI DSS), Application Security, and Security Architecture
Experience establishing or maturing a PMO or portfolio governance function strongly preferred
Program & PMO Skills
Strong command of Agile, Waterfall, and hybrid delivery methodologies
Ability to apply program management practices pragmatically
Proficiency with Jira, Azure DevOps, Microsoft Project, Microsoft Planner, Confluence, and SharePoint
Experience creating and managing integrated plans, RAID logs, portfolio dashboards, and executive reporting
Preferred Certifications
PMP, PgMP, PMI‑ACP, CISSP, CISM, Security+
Communication & Delivery
Exceptional written and verbal communication skills
Ability to produce clear, decision‑ready reporting for executive audiences
Skilled facilitator capable of aligning stakeholders and driving accountability without direct authority
Strong organizational, prioritization, and judgment skills
Delivery‑focused, pragmatic approach
Key Stakeholders
Security Engineering & Operations
Governance & Risk
Compliance
Application Security
Security Architecture