Prowess ConsultingRemote
Project Manager (security assessments)
United States of America
Contract
2 weeks ago
$95,000 - $105,000 USD
No H1B
Key skills
BIPower BISDLCLeadershipRisk ManagementCommunication
About this role
Prowess Consulting is a consulting firm that specializes in helping large enterprises in the technology industry. They are seeking a security compliance manager to drive the development and compliance of key features for their client’s products, collaborating with cross-functional teams to ensure all features meet necessary security and compliance standards.
Responsibilities:
- Drive end to end execution of security assessments that include:
- Creating assessment questionnaires
- Conduct kickoffs, review assessment responses, and identify risks/control gaps from a risk management perspective
- Perform risk scoring exercise and maintain risks in the risk register
- Track implementation (and adherence) of security requirements across engineering groups/teams
- Collaborate with partner teams to build continuous monitoring capabilities/reports for security requirements
- Validate compliance to security requirements and drive compliance sign off process for upcoming releases
- Coordinate with partner teams on security scope and finalize implementation requirements
- Support strategy and roadmap development for existing and emerging cybersecurity certification and/or regulatory requirements for internal/external audit needs
- Support risk management process enhancements
- Support the development and ongoing maintenance of Standard Operating Procedures (SOPs)
- Work with assigned groups to ensure security compliance
- Create and maintain risk dashboards using Power BI or similar tools and report to leadership
- Socialize risks/control gaps with service owners
- Support certification and audit preparation efforts for internal and external regulatory requirements
- Drive execution of Security Compliance frameworks (NIST, SDLC, etc.)
Requirements:
- 3-4+ years of Program Management experience necessary
- Strong interpersonal and written communication skills
- Demonstrated ability to own and drive programs and initiatives by working through ambiguity
- Familiarity with cybersecurity, risk management and audit best practices desirable
- Strong understanding of security and supply chain concepts, standards, and control frameworks
- Strong understanding of regulatory frameworks and the ability to interpret requirements into actionable workstreams
- Good track record of working collaboratively and effectively with senior leaders and teams across organizational boundaries
- Experience influencing others without authority
- Experiences building PowerBI dashboards or producing dashboard specifications
- Experience using a variety of tools to manage compliance such as S360, ADO are desired
- Must have stellar organizational skills and be able to work well with multiple technical groups and stakeholders in multiple areas