Back to Job Search

Technical Program Manager – Information Security

Posted 11 days ago

Primary Purpose
Maintaining confidentiality, security and integrity of data and IT systems is our core and
fundamental responsibility. In this role, you will report directly to the Chief Information Security
Officer and in collaboration with an external security consulting team and internal engineering and
process teams will lead and manage our information security program.
You will enhance our processes and controls to assess risk, classify data and systems, and detect
potential intrusion for our data assets across the organization. You will be responsible for scope,
budget, planning, communication, risk management, and project management for security
engineering tools program and key projects within this program. Programs span multiple teams,
projects, deliverables, and involve complex technologies.
You are a team player who can thrive in a fast-paced environment with attention to detail and has an
ability to take a strong and effective stance on security of our technology platform and data systems.

Responsibilities
• Develop and execute agile project plans with an impact across the organization to drive security
excellence across multiple security domains, such as access control, vulnerability management, and
secure software development.
• Proactively report program status and planning regularly to senior leadership.
• Coordinate the development, maintenance, and presentation of information security awareness
training and testing and the reports of its ongoing effectiveness.
• Ensures all enterprise data and ML engineering activities are in conformance with security policies
and objectives.
• Demonstrate the ability to communicate effectively at multiple levels of management, building trust
across the organization, and demonstrating discretion with sensitive information.
• Manage HIPAA and other various cybersecurity related risk assessments.
• Enhance security risk management functions to enable the effective management of risks across the
enterprise.
• Research and recommend appropriate security framework/certification (HITRUST, NIST,
SOC2 etc.) and lead the project for attaining (or refreshing) the certification

Education:
Bachelor's degree in Information Security, Computer Science, Risk Management, Engineering, Math,
Statistics or related discipline, or equivalent technology experience.

Experience
• 5+ years working in a technical role with a solid grasp of networking and security fundamentals
• 3+ years of experience managing the deployment of information security solutions at scale.
• 3 years assessing or implementing security frameworks such as NIST CSF or HITRUST CSF
• Experience in generating automated metrics to measure IT security effectiveness and consistency.
• Familiarity with web services, multi-tiered systems, complex architectures, workflow modeling and
enterprise application integration
• Expert level experience with cloud security, platforms, and services to include understanding of
current security offerings from leading cloud service providers (AWS, Azure, GCP) and their
applicability to securing a SaaS enterprise security environment
• Experience with Azure products and services

Equivalent Education and/or Experience
• May have an equivalent combination of education and/or experience in lieu of specific education
and/or experience as stated above.

Certification/Registration/Licensure
• Security-related certifications (i.e., CISSP, CISA, CISM).

Skills or Special Abilities
• Demonstrate the ability to provide both structured and creative thinking in a dynamic, evolving,
multi team-based environment.

Job Accountabilities
1. Identifies ways to improve work processes and improve customer satisfaction. Makes
recommendations to supervisor, implements, and monitors results as appropriate in support of
the overall goals of the department 
2. Stays abreast of the latest developments, advancements, and trends in the field by attending
seminars/workshops, reading professional journals, actively participating in professional
organizations, and/or maintaining certification or licensure. Integrates knowledge gained into
current work practices.
3. Maintains knowledge of applicable rules, regulations, policies, laws and guidelines that impact
the area. Develops effective internal controls designed to promote adherence with applicable
laws, accreditation agency requirements, and federal, state, and private health plans. Seeks
advice and guidance as needed to ensure proper understanding.

 

Candidates will be responsible for following the client's COVID-19 protocols. Please refer to your MATRIX representative for specifics.

About Us

At MATRIX, we expertly match talented professionals with job opportunities to elevate careers. Since 1983, we have placed thousands of professionals at innovative clients across every industry ranging from small startups to Fortune 50 companies. It’s why we’re consistently in the top 25 of all U.S. IT staffing firms and why our consultants rate us well above the industry average, earning us ClearlyRated's Best of Staffing awards year after year. People come to us for a job, and stay with us because of our top-notch consultant care.

MATRIX is and Equal Employment Opportunity employer and provides reasonable accommodations for qualified individuals.  Supporting medical or religious documentation will be required where applicable. If you are a qualified individual with a disability, you may request a reasonable accommodation under the American Disability Act (ADA) by emailing MATRIX_HR@MatrixRes.com. To ensure a quick response to your request, please use the words “Accommodation request” as the subject line of your email.