Project Manager/Infosec/ Patch Management
Hybrid at Wilmington, DE or Urbandale/Des Moines, IA (4 days onsite) - Locals Only
12+ months contract
USC/GC
A senior (10+ years) Program/Project Manager with experience leading IT Security INFRASTRUCTURE PROJECTS FROM A NETWORK AND CLOUD SECURITY PERSPECTIVE, NOT GOVERNANCE. Candidate will oversee the enterprise-class information technology and security vulnerability management experience with the capabilities in elevating a vulnerability program with proper reporting in place and ability to identify enhancements. They also need Strong hands-on experience and knowledge with Cloud Technologies: (e.g., related to Fundamentals, Security, Amazon AWS, Microsoft Azure, Google Cloud Platform).
- How many years working with: Project Management -
- How many years working with: Infrastructure security -
- How many years working with: Certifications -
- How many years working with: Infrastructure -
- How many years working with: Cloud Security -
Our client is looking for positive, self-motivated professionals with expertise in agile project to drive alignment, collaboration, and communication within our organization. The Program Manager will work with IT and Security teams to execute strategic projects within the
Vulnerability & Patch Management Program. The ideal candidate is an expert at managing large, complex projects with many cross-functional teams, effectively driving processes to keep teams productive.
Responsibilities
Lead and manage IT and security-related programs and initiatives, ensuring alignment with cross-functional stakeholders, organizational goals, industry best practices, and regulatory requirements.
- Collaborate with cross-functional teams, including IT, engineering, product, legal, and compliance, to integrate security requirements into business processes and the product development lifecycle.
- Manage the planning, execution, and delivery of IT and security projects, ensuring adherence to timelines, budgets, and quality standards.
- Define and track key security metrics and performance indicators to measure the effectiveness of security programs and initiatives, such as vulnerability management, incident management, change management and others.
- Quantitatively manage the completion of security objectives based on the analysis of data and indicators.
- Partner with Sales, Customer Success, Engineering and Product teams to manage customer-driven IT and Security requirements, including the coordination of requirements identification and intake, work assignment and scheduling, and integration and delivery.
Preferred Knowledge, Skills, And Abilities - Three (3) years of enterprise-class information technology and security vulnerability management experience with the capabilities in elevating a vulnerability program with proper reporting in place and ability to identify enhancements.
- Three (3) years of relevant experience in a supervisory capacity managing small to medium sized teams in a large IT enterprise environment.
- Strong hands-on experience and knowledge with Cloud Technologies: (e.g., related to Fundamentals, Security, Amazon AWS, Microsoft Azure, Google Cloud Platform).
- Strong knowledge and experience evaluating, designing, testing, and supporting hardware and software-based security.
- Strong knowledge and experience with information security and network communications practices and principles, technologies, and systems.
- Proficient knowledge and experience with vulnerability scanning plus risk and mitigation best practices.
- Ability to stay knowledgeable of cybersecurity trends and emerging threats.
- Proficient knowledge and proven experience with the following skillsets:
- Networking/Data Communications
- Risk Management
- Operating Systems (e.g., Windows/Linux)
- Vulnerability management tools such as Tenable and Palo Alto Xpanse
- Other Security Tool sets/categories (e.g., Firewalls, Routers/switches, Database, Web Servers, Applications); Common vulnerabilities, CVEs, and CWEs; Encryption and cipher technologies
- Experience with security frameworks such as NIST (e.g., NIST 800-53) and CIS.
- Demonstrated experience and success with development and promulgation of enterprise-class security policy and standards.
- Demonstrated experience and success with completion of risk assessments and vulnerability assessments.
- LAN/WAN operational experience, including networking, OS, web/application/Database servers, storage, hardware, firewalls, and monitoring and detection tools.
- Excellent people management, communication, and customer interaction skills.
- Ability to work independently, manage projects, and exercise judgement in reaching solutions.
- Ability to quickly grasp how new technologies work and how they might be applied to achieve business goals.
- Demonstrated ability to communicate effectively, both orally and in writing.
- Experience in scrum, kanban and SAFe.
Certification(s)
- CISSP, A+, Security+, CEH, CISA, CRISC, or other IT security operations/vulnerability management certifications is a plus, but not required.