Position Overview:
I am seeking an experienced Cyber Security Program Manager for my client in the technology sector to lead their cybersecurity initiatives and enhance their organization’s security posture. The ideal candidate will possess a deep understanding of cybersecurity frameworks, risk management, and program development, with a proven track record of successfully managing security programs in a highly regulated environment.
Key Responsibilities:
- Program Development: Design, implement, and manage comprehensive cybersecurity programs tailored to meet the specific regulatory and operational needs of clients in the finance sector, aligning with industry standards and organizational goals.
- Risk Management: Conduct regular risk assessments and audits for both internal operations and client environments to identify vulnerabilities, ensuring compliance with financial regulations such as PCI DSS, GLBA, and others.
- Stakeholder Collaboration: Work closely with cross-functional teams, including IT, legal, compliance, and client-facing teams, to ensure effective communication and alignment of security initiatives.
- Client Engagement: Serve as the primary point of contact for client cybersecurity inquiries, providing guidance and recommendations to enhance their security posture in accordance with financial sector requirements.
- Incident Response: Lead the development and execution of incident response plans, ensuring preparedness for potential security breaches that could impact client operations and sensitive financial data.
- Policy and Governance: Develop, review, and update security policies, standards, and procedures that address both internal and client-specific requirements within the finance sector.
- Training and Awareness: Create and deliver cybersecurity training programs tailored for employees and clients to enhance awareness of security best practices and regulatory obligations.
- Performance Metrics: Establish and monitor key performance indicators (KPIs) to evaluate the effectiveness of security programs and initiatives for both the organization and clients in the finance sector.
- Vendor Management: Assess and manage relationships with third-party vendors and security service providers to ensure client security needs and compliance requirements are met.
Qualifications:
- Bachelor’s degree in Computer Science, Information Technology, Cyber Security, or a related field; a Master’s degree is preferred.
- 10+ years of experience in cybersecurity, with at least 4+ years in a program management role..
- Strong knowledge of cybersecurity frameworks, risk management principles, and compliance regulations relevant to finance (e.g., PCI DSS, GLBA).
- Proven experience in leading cross-functional teams and managing complex projects, especially those involving client interactions.
- Excellent analytical, problem-solving, and decision-making skills.
- Strong communication and interpersonal skills, with the ability to present technical information to non-technical stakeholders and clients.
- Relevant certifications (e.g., CISSP, CISM, CISA, PMP) are highly desirable.