Enterprise Security Program Manager

About The Position

Requirements

• Bachelor’s degree in Information Systems, Computer Science, Cybersecurity, or a related field.
• 3-5 years of experience in a technical environment such as Security, IT, Engineering, Product Security, GRC, Technical Operations, or a related field.
• 3 years of experience managing or coordinating technical projects, programs, or cross-functional initiatives.
• Strong understanding of practical project/program management fundamentals, including planning, schedule tracking, stakeholder updates, and risk/issue follow-up.
• Excellent written communication skills, with the ability to create clear, structured documentation for both technical and non-technical audiences.
• Working knowledge of enterprise security concepts and controls.
• Ability to coordinate across teams, influence without direct authority, and drive follow-through in a fast-paced environment.
• Strong attention to detail and comfort organizing large volumes of documentation, decisions, action items, and evidence.

Nice To Haves

• PMP, CAPM, or formal project/program management training.
• Exposure to security or compliance frameworks such as NIST, ISO 27001, SOC 2, CIS Controls, or similar.
• Experience supporting GRC activities, internal controls, audit readiness, evidence collection, or compliance automation platforms.
• Experience partnering with an enterprise PMO or supporting cross-functional delivery teams.
• Experience coordinating product security reviews, security testing, vulnerability remediation, secure development initiatives, or engineering security intake.
• Familiarity with technology organizations that develop connected products, cloud services, networking products, IoT products, or consumer/enterprise software.
• Bilingual (English/Mandarin) written and verbal skills are a plus.

Responsibilities

• Plan, coordinate, and track Security and IT initiatives from kickoff through delivery, including scope, milestones, dependencies, risks, issues, and status reporting.
• Serve as an intake and coordination point for enterprise and product initiatives that require Security or IT participation.
• Drive execution through lightweight program rhythms, including meeting cadence, action items, decision logs, RAID tracking, follow-ups, and stakeholder updates.
• Maintain security program documentation systems, including structure, templates, version control, review cycles, ownership, and retirement of outdated content.
• Write, edit, and improve security policies, procedures, standards, runbooks, and operating documentation in partnership with subject matter experts.
• Support GRC program execution by maintaining evidence, control mappings, documentation, review schedules, and traceability to internal standards and applicable frameworks.
• Partner with Security, IT, Engineering, Product, Enterprise PMO, Legal, and business stakeholders to ensure security work is clearly documented and aligned to delivery timelines.
• Identify process gaps, documentation gaps, and coordination risks, and recommend practical improvements to improve visibility, accountability, and audit readiness.
• Prepare clear summaries, dashboards, or status updates for leadership and cross-functional stakeholders.

Benefits

• Fully paid medical, dental, and vision insurance (partial premium coverage for dependents)
• Employer quarterly contributions to 401k funds
• 15 days accrued vacation
• 11 paid holidays
• Bi-annual reviews, and annual pay increases
• Health and wellness benefits, including free gym membership
• Quarterly team-building event