Audit Remediation Project Manager

About The Position

Requirements

• This position is restricted to U.S. citizens only. Applicants must not hold dual citizenship with any other country to be eligible for work under this contract.
• Ability to obtain and maintain SEC Public Trust.
• Bachelor's degree in a relevant field (e.g., Information Technology, Computer Science, Engineering). In lieu of degree, additional experience may be required.
• 8+ years of professional experience, including at least 7 years of related experience managing and overseeing project details and deliverables.
• 3+ years of experience managing projects performing vulnerability assessment for the federal government.
• Demonstrated experience managing and overseeing audit remediation project tasks and deliverables.
• Managing and overseeing audit remediation team tasks and deliverables.
• Supporting vulnerability identification and remediation activities in federal environments.
• Creating and establishing standards and procedures for project execution.
• Translating high-level work plans into detailed assignments for team members.
• Monitoring and tracking project and work-plan progress.

Nice To Haves

• Experience supporting SEC or another federal financial regulatory agency environment.
• Experience managing enterprise vulnerability and remediation programs across endpoint and infrastructure domains.
• Familiarity with KEV requirements and POA&M reporting and closure practices in federal environments.
• Experience developing executive reporting for remediation progress, risk posture, and audit readiness.
• PMP, CISSP, CISM, or ITIL certification with practical application in federal IT operations.
• PMP, CISSP or CISM, ITIL 4 Foundation.

Responsibilities

• Manage and oversee the audit remediation team executing project tasks and contract deliverables across ISS security and infrastructure support areas.
• Lead triage of new audit findings, assign accountable resources, and establish corrective action plans with defined closure criteria.
• Coordinate remediation activities for internal and external audits, including iCFR, FISMA, GAO, and OIT Security assessments.
• Ensure remediation evidence, status updates, and supporting documentation are complete, timely, and audit-ready for SEC review.
• Oversee identification, tracking, prioritization, and resolution of vulnerabilities across endpoints and infrastructure.
• Direct teams in reviewing vulnerability reports, assessing severity and impact, and sequencing remediation to reduce mission risk.
• Monitor closure activities and enforce remediation timelines, including KEV remediation within required timelines.
• Drive proactive improvements in operational practices and standards to reduce reintroduction of vulnerabilities.
• Translate high-level work plans into detailed assignments, milestones, dependencies, and execution schedules.
• Monitor and track project progress, risks, issues, and performance deficiencies; provide recurring status reporting to stakeholders.
• Create and mature standards, SOPs, and governance procedures aligned with SEC policy, change control, and federal compliance expectations.
• Maintain management reporting that provides clear visibility into remediation progress and risk posture.
• Provide day-to-day leadership for cross-functional remediation efforts involving engineers, security teams, and federal stakeholders.
• Facilitate collaboration sessions to align technical decisions, priorities, and deliverables before implementation.
• Set quality expectations for work products and ensure consistency, accountability, and continuous improvement across workstreams.
• Coach team members on execution discipline, documentation quality, and escalation practices to meet contract objectives.

Benefits

• competitive compensation
• Health and Wellness programs
• Income Protection
• Paid Leave
• Retirement