Job Summary:
Scalence L.L.C. is seeking a Senior Cybersecurity Program Manager to lead the development and implementation of comprehensive IT security policies and programs. The role involves collaborating with various teams to ensure compliance with regulatory requirements and managing cybersecurity initiatives aligned with business objectives.
Responsibilities:
โข Lead the development, creation, and documentation of comprehensive IT security policies, standards, and procedures from scratch
โข Collaborate with IT and Security teams to identify policy and procedure gaps and requirements
โข Write and maintain enterprise-wide security policies covering access control, data protection, incident response, and other critical areas
โข Ensure all policies and procedures align with regulatory requirements, compliance frameworks, and industry best practices
โข Review, update, and maintain existing policies and procedures to reflect organizational changes and emerging threats
โข Establish clear, enforceable standards that are communicated and understood across technical and non-technical teams
โข Document procedures with step-by-step guidelines for consistent implementation across departments
โข Conduct periodic audits of policy compliance and recommend updates based on audit findings and lessons learned
โข Facilitate policy review cycles and stakeholder approval processes
โข Develop, establish, and maintain enterprise-wide cybersecurity programs aligned with business objectives and industry best practices
โข Create and execute multi-year cybersecurity roadmaps and strategic plans
โข Define program objectives, metrics, and key performance indicators (KPIs) to measure program effectiveness
โข Identify emerging cybersecurity threats and trends, and adjust program strategies accordingly
โข Manage program budgets and resource allocation to ensure optimal utilization
โข Lead and collaborate with IT, Security Operations, Risk Management, Compliance, and business unit leaders
โข Establish governance frameworks and decision-making processes for cybersecurity initiatives
โข Coordinate with external stakeholders, vendors, and third-party service providers
โข Facilitate communication between technical and non-technical teams to ensure program comprehension
โข Champion cybersecurity culture and awareness across the organization
โข Ensure compliance with applicable regulatory requirements (CCPA, CPRA, SOC 2, CMMC etc.)
โข Conduct and oversee risk assessments, vulnerability assessments, and penetration testing programs
โข Develop and maintain security policies, procedures, and standards
โข Monitor and report on security posture and compliance status to executive leadership and the Board
โข Lead incident response planning and coordination during security incidents
โข Oversee design, deployment, and optimization of security tools, technologies, and controls
โข Manage security architecture reviews and technology evaluations
โข Drive continuous improvement initiatives within the cybersecurity program
โข Document program processes, procedures, and operational guidelines
โข Ensure effective program documentation and knowledge management
โข Provide executive leadership with regular updates on program status, risks, and achievements
โข Develop and present compliance metrics, dashboards, and reports to senior management
โข Communicate compliance requirements and implications to business stakeholders
โข Escalate critical issues and risks appropriately
Qualifications:
Required:
โข 10+ years of experience in cybersecurity, with at least 5 years in a program management or leadership role
โข Proven experience writing, developing, and maintaining IT security policies, standards, and procedures from scratch
โข Demonstrated ability to collaborate with IT and security teams to create comprehensive policy documentation
โข Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or related field
โข Deep knowledge of cybersecurity frameworks and standards (NIST CSF, ISO 27001, CIS, SOC 2, CMMC Controls)
โข Experience with security governance and policy development
โข Expertise in risk management and compliance requirements across regulated industries
โข Strong understanding of security controls, threat modeling, and vulnerability management
โข Proficiency in program management methodologies (Agile, Waterfall)
โข PMP or similar project management certification
โข Excellent project management skills with ability to manage multiple complex initiatives simultaneously
Company:
In todayโs dynamic and competitive market, success hinges on mastering three key areas: Data Intelligence, Business Resilience, and Digital Experience. Founded in , the company is headquartered in Morristown, New Jersey, US, , with a team of 501-1000 employees. The company is currently Late Stage.