WHO YOU ARE
Prowess Consulting is looking for a Program Manager to join our growing team.
In this role you will be supporting the security compliance efforts for our client’s scope of products and work with product management and engineering teams to support the product release cycle through security risk assessments and the risk management lifecycle to ensure that in scope products adhere to the security and compliance requirements.
Also, you will support the company’s Cyber Executive Order (EO) initiative and the common set of security controls (Unified Compliance Framework) that is derived from leading industry frameworks such as the NIST CSF, ISO 27001 etc.
This is a 100% remote position with primary working hours in the Pacific time zone.
No third-party agencies, please.
THE ROLE
Support ongoing updates and maintenance to the Unified Controls Framework (UCF)
Collaborate with partner teams to incorporate their security controls into the UCF
Periodically review controls and update UCF as needed
Drive end to end execution of remote security assessments that include:
Creating assessment questionnaires, conduct kickoffs, review assessment responses, and identify risks/control gaps from a risk management perspective
Perform risk scoring exercise and maintain risks in the risk register
Track implementation (and adherence) of security requirements across engineering groups/teams
Collaborate with partner teams to build continuous monitoring capabilities/reports for security requirements
Validate compliance to security requirements and drive compliance sign off process for upcoming releases
Coordinate with partner teams on security scope and finalize implementation requirements
Support strategy and roadmap development for Cyber Executive Order (EO) certification requirements and internal/external audit needs
Support risk management process enhancements
Support the development and ongoing maintenance of Standard Operating Procedures (SOPs)
Work with assigned groups to ensure security compliance
Create and maintain risk dashboards using Power BI or similar tools and report to leadership
Socialize risks/control gaps with service owners
Support certification and audit preparation efforts for ISO/SOC audits
Drive execution of NIST CSF assessments for critical services
QUALIFICATIONS
5+ years of Program Management experience necessary
Strong interpersonal and written communication skills
Demonstrated ability to own and drive programs and initiatives by working through ambiguity
Familiarity with cybersecurity, risk management and audit best practices desirable
Strong understanding of security and supply chain concepts, standards, and control frameworks (e.
g.
, NIST CSF, NIST 800-161, NIST 800-53, ISO 27001, ISO 27036)
Good track record of working collaboratively and effectively with senior leaders and teams across organizational boundaries
Experience influencing others without authority
Experiences building PowerBI dashboards or producing dashboard specifications
Experience using a variety of tools to manage compliance such as S360, ADO are desired
Must have stellar organizational skills and be able to work well with multiple technical groups and stakeholders
ADDITIONAL DETAILS
The offered base pay range for this specific positing is $100,000 to $113,000 per year, DOE
Base Pay ranges are different for different work locations within the U.
S.
, which allows for competitive pay and consistency
U.
S.
based employees, working 30 hours per week or more have access to medical, dental, and vision insurance, basic life insurance, a 401K plan with matching, well-being benefits, education benefits, among others.
U.
S.
based full-time employees receive 11 paid holidays, and accrue paid time off
Prowess is an equal opportunity employer and diversity is a core value for us.
We are passionate about building and sustaining an inclusive and equitable working and learning environments for all employees.
We provide a well-rounded benefits package including health insurance, flexible spending account, life and disability insurance, paid time off, and retirement plan investing.
For more information, please go to www.
prowesscorp.
com
0TN7e9I1Ek
Whatsapp
