REMOTE IT Security Project Manager
United States of America
Full Time
2 hours ago
Visa Sponsor
Key skills
IT ComplianceGRCAudit supportProject Management in regulated environmentsITGCSOX controlsControl ownership modelsAudit remediationMAP closureEvidence collectionServiceNowExcelControl documentation interpretationFollow-up disciplineExecution mindsetwork across technical and non-technical teamsLeadershipProject Management
About this role
Kelly Science, Engineering, Technology & Telecom is seeking a Hybrid or Remote IT Security Compliance and Remediation Project Manager. This role is responsible for driving the execution and accountability of IT General Controls and Management Action Plans across Information Security and IT teams, ensuring audit readiness and effective project management.
Responsibilities:
- Maintain and drive the ITGC execution plan and tracker
- Ensure all controls:
- Have clearly assigned owners
- Follow standardized procedures, narratives, and evidence expectations
- Track execution against milestones:
- Ownership & documentation completeness (Day 0–30)
- Evidence quality & execution discipline (Day 31–60)
- Sustainment & automation readiness (Day 61–90)
- Own end-to-end tracking of MAP remediation activities from open → closure
- Ensure all MAPs:
- Have clear scope, owners, and timelines
- Progress updates are consistently collected (Implemented / Partial / Not Started format)
- Drive closure readiness by ensuring:
- Complete documentation
- Clear mapping of actions to original findings
- Coordinate with teams when:
- Evidence is incomplete or unclear
- MAPs are stalled due to dependencies (e.g., vendor deliverables)
- Ensure all controls and MAPs meet audit-ready evidence standards
- Organized, explainable, and mapped to control requirements
- Validate that:
- Evidence is submitted in ServiceNow as system of record
- Documentation supports walkthroughs and testing expectations
- Identify gaps early to prevent:
- Re-testing failures
- Audit escalations
- Act as central coordination point across:
- Control owners
- Application teams
- InfoSec/GRC
- Internal Audit
- Schedule and run:
- Weekly ITGC follow-ups
- MAP status reviews
- Control walkthrough readiness sessions
- Drive accountability:
- Follow up aggressively on overdue actions
- Escalate risks to leadership when needed
- Maintain consistent reporting across ITGC and MAP programs:
- Status dashboards
- Executive summaries
- Risk visibility
- Standardize:
- Status reporting formats
- Evidence expectations
- Meeting cadences
- Help transition from:
- Manual tracking → structured, repeatable workflows → automation
- Identify and implement improvements in:
- Evidence collection workflows
- Owner guidance and training
- Control documentation and standardization
- Support long-term goals:
- Automation of ITGC execution and MAP tracking
- Reduction of manual reconciliation and ad hoc follow-ups
Requirements:
- 5+ years in: IT Compliance / GRC / Audit support OR Project Management in regulated environments
- Strong understanding of: ITGC / SOX controls and Control ownership models and governance
- Experience with: Audit remediation / MAP closure and Evidence collection and audit support
- Experience working with: ServiceNow (preferred for tracking and evidence management) and Excel-based trackers and reporting tools
- Ability to: Interpret control documentation (narratives, procedures, evidence standards)
- Translate audit findings into actionable remediation steps
- Strong follow-up discipline and execution mindset
- Ability to: Work across technical and non-technical teams and Push back when evidence is insufficient
- Comfortable operating in: Ambiguous, rapidly evolving remediation environments
- Detail-oriented with: High standards for 'audit-ready' output