Sr Project Manager - Information Security

About The Position

Requirements

• BA/BS Degree (4-year) Information Systems, Computer Science, Cybersecurity, Business Administration, or a related field.
• 8-10 years Project management experience within cybersecurity, information technology, or technology risk environments.
• Understanding of security domains such as Security Operations (SOC), Incident Response, Vulnerability Management, Governance Risk & Compliance, Data Protection, and regulatory frameworks (NIST, PCI-DSS, ISO 27001).
• Experience managing cross-functional technical initiatives in a matrixed enterprise environment.
• Experience coordinating technical implementations such as security tools, cloud security initiatives, or enterprise technology deployments.
• Foundational understanding of information security principles, technologies, and industry standards.
• Proven ability to manage multiple initiatives and prioritize under pressure.
• Exceptional organizational and analytical skills, with attention to detail.
• Ability to influence without authority and drive cross-functional alignment.
• Strong interpersonal skills and emotional intelligence for working in a politically nuanced environment.
• Experience using project management and collaboration tools such as Jira, MS Project, Smartsheet, Confluence, or similar platforms.

Nice To Haves

• Certified Project Management Professional (PMP)-PMI highly preferred
• Certified Information Security Manager (CISM) highly preferred
• CISSP Certified Information Systems Security Professional highly preferred
• Certified Information Systems Auditor (CISA) highly preferred
• Security+ highly preferred

Responsibilities

• Lead and oversee the end-to-end delivery of complex cybersecurity initiatives, such as SIEM implementations, advanced vulnerability remediation programs, identity and access management deployments, data protection frameworks, and strategic security technology integrations.
• Drive alignment between security domain leaders, senior stakeholders, and cross-functional teams, ensuring that projects are executed according to security, regulatory, and organizational requirements.
• Develop and implement project strategies that reflect the organization's risk appetite and long-term security goals.
• Ensure projects are delivered on time, within scope, and in compliance with applicable standards, adjusting project scope as necessary to align with evolving business priorities.
• Act as the strategic bridge between Information Security, the PMO, external vendors, and business units, ensuring clear communication and alignment of objectives, milestones, and risks across the enterprise.
• Collaborate at the executive level with Information Security, Governance, Risk & Compliance (GRC), and other cross-functional leaders to anticipate and mitigate risks, address dependencies, and align cybersecurity projects with broader organizational priorities.
• Lead the integration of cybersecurity initiatives into business processes and technology roadmaps, ensuring that strategic security objectives are realized at the enterprise level.
• Own and manage the integration of security program updates into risk and compliance reporting, ensuring executive leadership has a comprehensive view of project risks, milestones, and security posture.
• Lead governance efforts by overseeing project reporting, tracking, and risk management activities across complex, multi-team security initiatives.
• Ensure that security projects contribute to the overall risk reduction strategy, aligning with the organization’s broader risk management framework and cybersecurity policies.
• Prepare and present detailed, executive-level briefings and status reports on cybersecurity project initiatives, highlighting progress, risks, and mitigation strategies.
• Communicate project outcomes, security posture, and strategic recommendations to C-level executives and other senior leadership, ensuring a clear and concise understanding of the project’s impact on business operations.
• Provide strategic oversight in vendor selection, contract negotiation, and third-party service management for InfoSec projects, ensuring alignment with enterprise security objectives and high-level SLAs.
• Manage vendor relationships throughout the project lifecycle, ensuring security platform implementations, integrations, and service engagements meet defined quality standards and timelines.
• Lead cross-functional teams in vendor evaluations and product selections, ensuring that vendor solutions meet the organization’s evolving security requirements.
• Champion continuous improvement initiatives within the cybersecurity project management process, focusing on the refinement of methodologies, tools, and practices to enhance project delivery efficiency and security outcomes.
• Lead cross-functional post-project reviews and “lessons learned” exercises to identify and implement improvements for future security projects.
• Drive the maturity of the cybersecurity program, integrating feedback loops and optimizing processes to ensure that security initiatives are both scalable and sustainable.

Benefits

• medical insurance benefits