Project Manager, IT Security & GRC

About The Position

Requirements

• 5+ years of project coordination or project management experience, ideally within IT, security, risk, or compliance.
• Demonstrated ability to support complex, cross-functional initiatives.
• Working knowledge of information security and GRC concepts (frameworks, audits, risk management).
• Strong organizational and follow-through skills.
• Clear, concise communicator—especially with executive and partner audiences.
• Ability to manage multiple workstreams without direct authority.
• Execution-focused and detail-oriented.
• Comfortable operating in a support/enablement role rather than a leadership role.
• Strong collaborator who works effectively with senior functional leaders.
• Discreet and trustworthy with sensitive information.

Nice To Haves

• Experience in a law firm or professional services environment preferred.
• PMP, CAPM, or equivalent project management certification preferred
• Exposure to security/compliance frameworks (e.g., ISO, NIST, SOC 2) is a plus.

Responsibilities

• Coordinate the execution of security and GRC initiatives (e.g., risk assessments, compliance efforts, security tool implementations, policy updates).
• Develop and maintain project plans, timelines, and task tracking in alignment with direction from Security and GRC leadership.
• Track progress, manage dependencies, and ensure follow-through on deliverables.
• Work directly with the Director of Security and Director of GRC to translate priorities into actionable plans.
• Support intake, prioritization, and sequencing of work across both functions.
• Ensure alignment between project activities and leadership direction.
• Provide clear, concise status updates, including progress, risks, and issues.
• Coordinate communication across IT, legal, risk, and administrative teams.
• Prepare materials for leadership reporting and governance forums.
• Assist in coordinating audit activities, evidence collection, and remediation tracking.
• Support the rollout and tracking of policies, standards, and control implementations.
• Maintain documentation related to compliance initiatives and project artifacts.
• Apply consistent project management practices across security and GRC initiatives.
• Maintain centralized tracking of milestones, deliverables, and dependencies.
• Identify risks and escalate appropriately to Security and GRC leadership.

Benefits

• Health insurance
• Dental insurance
• Vision insurance