Program Manager, Governance and Controls

Job Description

Serve as the primary point of contact and collaborate closely with our Infosec team to identify and prioritize vulnerabilities. Work with Engineering, Infrastructure, and IT teams to address vulnerabilities, provide guidance, and ensure timely remediation. Execute and enhance vulnerability management strategy, implementation, and operationalization. Establish policies, procedures, and standards for vulnerability identification, assessment, and remediation. Facilitate focus group meetings to discuss vulnerability remediation strategies and hold weekly steering committee meetings with leadership to review remediation progress. Collaborating with support teams to compile evidence and measure service level agreement (SLA) performance using analytical tools. Creating and sharing intuitive dashboards with clients to enhance transparency and exceed SLA compliance goals. Accumulate, monitor, and report on vendor performance metrics (SLAs & KPIs) to internal stakeholders. Partner with the Security Operations Center (SOC) to examine and communicate data loss prevention (DLP) incidents involving confidential or personal data to relevant business units and senior management. Define program controls, processes, procedures, reporting cadence, decision governance structures and ways of working with key stakeholders. Monitor the execution of defined task through tracking of program milestones and their statuses, developing program plans and measuring progress against ongoing key performance indicators. Analyze, evaluate, and overcome program, risks, and produce program reports for leadership and stakeholders. Sets stakeholder and program team expectations and ensures that the deliverables are aligned with business goals. Establishes the program KPIs measurements and quality control points and align reporting to track progress against the measurements. Proactively anticipates and mitigates issues through validations. 10+ years of total experience with 3+ years in project/ program management Candidate should have familiarity with Information Security and Vulnerability concepts. Any related certification in Information Security will be