Security Program Manager
Posted Today by 1766128681
Negotiable
Outside
Remote
USA
Summary: The role of Security Program Manager involves leading the Cyber Recovery Program to ensure the resilience of business operations against cyber threats. The manager will develop recovery plans, validate application readiness, and integrate efforts across stakeholders. This position requires a high level of expertise in program management and cyber recovery strategies. The role is fully remote and emphasizes collaboration with various teams to enhance security measures.
Key Responsibilities:
- Develop, maintain, and test cyber recovery documentation and playbooks; manage regular test events to validate recovery strategies.
- Oversee the vetting process for critical applications to ensure they meet protection criteria in collaboration with the ITDR Architecture team.
- Manage program documentation, governance records, and ensure compliance with regulatory standards.
- Coordinate with the Cyber Recovery Team to maintain vault operations and guide project managers through required projects.
- Provide regular updates to ITDR leadership on the Cyber Recovery program and ensure transparency in operations.
- Ensure integration and communication between cyber recovery efforts and broader IT disaster recovery processes.
- Act as the primary liaison for key partners, including the Enterprise Data Protection Team and Cyber Security Teams.
- Facilitate clear communication regarding recovery processes and program status to executive leadership and partners.
Key Skills:
- Extensive experience in program management, particularly in cyber recovery.
- Strong understanding of disaster recovery processes and documentation management.
- Ability to coordinate and engage with multiple stakeholders effectively.
- Excellent communication skills for reporting and transparency.
- Knowledge of regulatory compliance and risk management frameworks.
- Experience with application vetting and validation processes.
Salary (Rate): undetermined
City: undetermined
Country: USA
Working Arrangements: remote
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: IT
Duration: 6+ Months
Location: 100% Remote
Job Description:
A highly skilled and experienced Program Manager to lead the moving parts of the Cyber Recovery Program. This critical role is responsible for ensuring the resilience of our core business operations against sophisticated cyber threats by establishing robust recovery plans, validating application readiness, and ensuring seamless program integration across key internal and external stakeholders.
Responsibilities/Requirements:
- Recovery Plan Documentation and Testing: Develop, maintain, and rigorously test detailed cyber recovery documentation and playbooks. Coordinate and manage regular test events (e.g., table-top exercises and full operational simulations) to validate the effectiveness of recovery strategies and identify areas for continuous improvement. Define and assign test schedule with team and ensure test planning, execution and post test reporting and follow on is managed effectively.
- Application Vetting and Validation: Manage and continuously improve the process for vetting critical applications to ensure they meet stringent criteria for protection in partnership with the ITDR Architecture team. This includes confirming criticality and data integrity and ensuring readiness for restoration within an immutable, isolated recovery vault environment.
- Program Documentation Management: Oversee all aspects of program documentation, governance records, and audit artifacts. Ensure that all program activities are accurately documented, traceable, and compliant with regulatory and organizational standards.
- Program Team and Larger Org Engagement and Alignment:
- Cyber Recovery (CR) Team: Coordinate and verify that vault operations are maintained in accordance with agreed upon processes, practices and reporting. Ensure that CR architects are regularly reviewing security and operations of vault and clean room environments. Guide project manager through required projects ensuring scope, objectives, resources and project artifacts and managed to achieve expected outcomes
- ITDR Leadership: Provide regular check-ins and reporting on the Cyber Recovery program. Escalate as necessary when leadership support is required. Highlight wins, newly vetted candidates for final approval, current operations, etc. to ensure transparency and awareness
- Disaster Recovery (DR) Program: Guarantee seamless integration, communication, and transparency between cyber recovery efforts and broader IT disaster recovery processes, orchestration, and management.
- Stakeholder Engagement and Alignment: Serve as the primary liaison and engagement lead for crucial partners, including:
- Enterprise Data Protection Team (EDPT): Partner in the ordering of replication and subsequent replication commitment of vetted backups for vault protection.
- Cyber Security Teams: Ensure alignment with threat intelligence, incident response protocols, and security best practices.
- Risk Management: Integrate program activities with enterprise risk frameworks and reporting requirements.
- Communication and Transparency: Facilitate clear, consistent, and transparent communication regarding recovery processes, test results, and program status to executive leadership and all engaged partners.