Security Programme Manager

Summary: The Security Programme Manager role involves leading a comprehensive security improvement initiative within a hospitality organization, focusing on transforming the digital security environment. This contract position requires coordination between internal teams and external consultants to implement a multi-faceted security enhancement program over a 12-month period. The successful candidate will drive the development of a Zero Trust security architecture and oversee various security improvement initiatives. Strong technical programme management experience, particularly in IT/security transformation, is essential for this role.

Key Responsibilities:

• Lead and coordinate a comprehensive security improvement programme spanning multiple workstreams
• Manage and synchronize efforts between internal teams and external security consultants
• Conduct planning workshops and sessions with stakeholders, developing detailed implementation roadmaps
• Create and maintain programme backlogs and prioritize workstreams based on risk assessment and business impact
• Coordinate resource allocation across multiple concurrent initiatives
• Develop and maintain detailed programme plans with clear milestones, dependencies, and resource requirements
• Establish effective metrics and reporting mechanisms to track security posture improvements
• Apply security frameworks (such as NIST) to assessments and reporting, surfacing actionable insights
• Oversee specific security improvement initiatives including device management, Microsoft 365 tenant architecture redesign, and data governance processes
• Lead the retirement of Active Directory and transition to modern, cloud-native identity infrastructure
• Remediate penetration testing findings and transition to a zero-trust network architecture
• Design and establish a new Unified Security Operations Centre (SOC)

Key Skills:

• Proven experience (7+ years) in technical programme management with a focus on IT/security transformation initiatives
• Demonstrated success delivering large-scale, complex security programmes
• Strong planning and facilitation skills with experience leading cross-functional planning sessions
• Experience managing programmes in multi-site environments, preferably in the hospitality industry
• Deep understanding of Zero Trust, IAM, endpoint management, and network segmentation
• Strong understanding of infrastructure security, risk management, and compliance requirements
• Practical knowledge of key security domains including endpoint management, identity management, and security operations
• Experience with Microsoft 365 security features implementations
• Strong stakeholder management skills and effective communication with technical and non-technical audiences
• Excellent documentation, reporting, and presentation skills
• Experience managing external security consultants and vendors

Salary (Rate): £700

City: Putney

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: Senior

Industry: IT