Key skills
Project ManagementStakeholder ManagementRisk ManagementResource PlanningCollaboration
About this role
Brooksource is seeking a highly skilled Security Project Manager to lead and coordinate vulnerability management and cybersecurity initiatives across the organization. This role will be responsible for driving risk-based mitigation strategies and overseeing vulnerability management processes while partnering with various teams to reduce organizational risk.
Responsibilities:
- Develop and drive risk-based mitigation strategies for networks, operating systems, and applications
- Compile, track, and report on vulnerabilities and mitigation outcomes to measure program effectiveness
- Create and maintain vulnerability management policies, procedures, and training materials
- Operate and oversee vulnerability scanning tools, including Nexpose and Tenable
- Review and analyze vulnerability data to identify trends, patterns, and risk exposures
- Improve organization-wide awareness of emerging threats and security risks
- Provide expert guidance to remediation teams on risk reduction and mitigation best practices
- Partner with infrastructure and security stakeholders to support application teams with remediation strategies and coordination
- Facilitate cross-functional collaboration to ensure vulnerabilities are prioritized and resolved efficiently
- Lead project management activities including: Resource Planning, Quality Management, Communications Management, Risk Management, Procurement Management
- Set clear, objective expectations and ensure team alignment and buy-in across initiatives
- Share best practices and provide subject matter expertise within the security and project teams
Requirements:
- Strong experience in Vulnerability Management and Vulnerability Analysis
- Solid background in Cybersecurity / Information Security
- Hands-on familiarity with vulnerability scanning platforms such as: Nexpose, Tenable, Qualys
- Proven Project Management experience (planning, execution, governance, reporting)
- Ability to interpret and communicate technical security risks to both technical and non-technical stakeholders
- Strong cross-functional coordination and stakeholder management skills
- Ability to work independently with minimal supervision