1

Security Program Manager Jobs (NOW HIRING)

Security Program Manager

$132K - $160K/yr

We're hiring a Security Program Manager to serve as the operating backbone of the Office of the CISO. This is a senior individual contributor role for someone who thrives on connecting people ...

New

Security Program Manager

Burlington, MA · On-site

$140K - $170K/yr

The Security Program Manager (SPM) is responsible for driving Veracode customer's security programs while building and maintaining strong customer relationships. The SPM ensures a high level of ...

Security Program Manager

Burlington, MA · On-site

$140K - $170K/yr

The Security Program Manager (SPM) is responsible for driving Veracode customer's security programs while building and maintaining strong customer relationships. The SPM ensures a high level of ...

The Security Program Manager provides leadership and administrative management to teammates, develops, implements and coordinates the security program activities within a hospital/healthcare setting.

New

The Security Program Manager provides leadership and administrative management to teammates, develops, implements and coordinates the security program activities within a hospital/healthcare setting.

The Security Program Manager provides leadership and administrative management to teammates, develops, implements and coordinates the security program activities within a hospital/healthcare setting.

The Security Program Manager provides leadership and administrative management to teammates, develops, implements and coordinates the security program activities within a hospital/healthcare setting.

Staff Security Program Manager

San Jose, CA · On-site

$151K - $184K/yr

The Staff Security Program Manager will drive execution of key security initiatives across the organization, ensuring strategic security priorities translate into measurable outcomes while ...

next page

Showing results 1-20

Security Program Manager information

See salary details

$54.5K

$149K

$167K

How much do security program manager jobs pay per year?

As of Jul 14, 2026, the average yearly pay for security program manager in the United States is $149,013.00, according to ZipRecruiter salary data. Most workers in this role earn between $129,000.00 and $157,000.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Security Program Manager position, and why are they important?

To thrive as a Security Program Manager, you need a solid background in information security, risk management, and project management, typically bolstered by a relevant degree and experience in security operations. Experience with security frameworks (like NIST or ISO 27001), tools such as SIEM platforms, and certifications like CISSP or PMP are highly valued. Excellent cross-functional communication, leadership, and problem-solving abilities help you coordinate teams and drive initiatives forward. These capabilities are crucial to effectively lead security programs, mitigate risks, and ensure organizational compliance in a dynamic threat landscape.

What is a Security Program Manager job?

A Security Program Manager (SPM) oversees an organization's security initiatives, ensuring they align with business objectives and compliance requirements. They coordinate security programs, manage risks, and implement policies to protect assets, data, and infrastructure. SPMs work closely with cross-functional teams, including IT, legal, and leadership, to enhance security posture. Their role involves assessing threats, driving security awareness, and managing security projects efficiently.

What are some typical challenges faced by Security Program Managers, and how are they addressed?

Security Program Managers often face challenges such as balancing evolving cybersecurity threats with business objectives, managing cross-departmental initiatives, and ensuring ongoing compliance with industry standards. Success in this role typically involves continuous learning to stay ahead of threat trends, fostering collaboration among IT, compliance, and executive stakeholders, and implementing clear processes for incident response and policy enforcement. Program Managers regularly review and adjust security strategies, conduct gap analyses, and ensure team alignment through effective communication and stakeholder engagement. Proactively addressing these challenges helps maintain robust security postures while enabling organizations to achieve their goals.

More about Security Program Manager jobs
What cities are hiring for Security Program Manager jobs? Cities with the most Security Program Manager job openings:
Who are the top companies hiring for Security Program Manager jobs? The top employers for Security Program Manager jobs are:
What states have the most Security Program Manager jobs? States with the most job openings for Security Program Manager jobs include:
Infographic showing various Security Program Manager job openings in the United States as of July 2026, with employment types broken down into 85% Full Time, 13% Part Time, 1% Temporary, and 1% Contract. Highlights an 86% Physical, 1% Hybrid, and 13% Remote job distribution, with an average salary of $149,013 per year, or $71.6 per hour.
Security Program Manager

$132K - $160K/yr

Full-time

Posted 7 days ago

New


Job description

Job Description:
We're hiring a Security Program Manager to serve as the operating backbone of the Office of the CISO. This is a senior individual contributor role for someone who thrives on connecting people, programs, and priorities across a complex enterprise and who uses AI tooling deliberately to multiply their impact. You'll partner directly with the CISO across all pillars of our security organization to drive security initiatives, OKRs, KPIs, and metrics into a single, coherent operating system. This is not a traditional project manager role. You'll own the full lifecycle of security programs-from intake and prioritization through execution and long-term operational health-and you'll succeed through influence, structure, and clarity rather than direct authority. You'll have a direct line to the CISO and immediate visibility across the enterprise. You'll shape how security operates, how it reports, and how it scales, including how the company governs AI as adoption accelerates. If you want to do the highest-leverage program management work of your career in security, this is it.
Job Description
Run the Security Operating System
  • Own the operating cadence of the CISO function - weekly staff meetings, monthly program reviews, and quarterly business reviews.
  • Produce the recurring decision-grade CISO report (executive summary, OKR scorecard, KPI scorecard, portfolio milestones, decisions required).
  • Maintain a single portfolio view across all security programs - intake, approved, executing, complete - with clear stage gates, owners, and forecasts.
  • Drive meeting preparation, documentation, stakeholder communication, and follow-through so leadership can focus on judgment calls, not coordination.

Own the OKR, KPI, and Metrics System
  • Run the quarterly OKR lifecycle across all four security teams - define, align, health check, and score. Ensure every Key Result has a baseline, target, owner, measurement method, and confidence level.
  • Maintain a KPI dictionary with definitions, formulas, systems of record, thresholds, and cadence - covering posture KPIs, program delivery KPIs, and team execution KPIs.
  • Ensure 100% of project work is mapped to an OKR or documented as run the business.
  • Lead monthly trend analysis and tie outcomes back to security and business objectives.

Drive Cross-Functional Program Delivery
  • Own end-to-end delivery of security programs - risk management, vulnerability management, security awareness, product onboarding into security, M&A security execution, incident readiness, and compliance initiatives.
  • Act as the primary liaison between Security and Engineering, IT, Product, Legal, Privacy, Finance, People, Sales, and Customer Success.
  • Manage cross-team dependencies, and decision logs as drivers of action.
  • Enforce escalation SLAs and stage gates with a small, senior, expert team.

Build Executive & Board Communications
  • Build recurring deliverables for executive leadership, audit committee, and board updates - executive summaries, slide content, speaker notes, and Q&A prep.
  • Translate technical security and AI governance topics for non-technical executive audiences with clarity and brevity.
  • Produce decision-grade options memos with root cause, tradeoffs, recommendation, owner, and deadline.

Multiply Output Through Deliberate AI Use
  • Use AI tooling (e.g., Microsoft 365 Copilot, Claude, ServiceNow AI) deliberately and daily - for status synthesis, dashboard refresh, meeting recaps, draft communications, evidence collection, and audit response prep.
  • Identify and execute automation opportunities across security operations, GRC, and compliance workflows.

Required Experience
  • 7+ years of progressive program or portfolio management experience, with 4+ years dedicated to information security, GRC, or product security programs in a SaaS or cloud environment.
  • Proven track record running OKR/KPI operating systems for security or technology leaders, including executive-ready reporting.
  • Direct experience coordinating across GRC, Product/Application Security, Security Operations/Incident Response, and emerging AI security and governance functions.
  • Demonstrated ability to operate as connective tissue across Engineering, Legal, Product, IT, Finance, and Sales - leading through influence rather than authority.
  • Mastery of program management tooling - Jira, Confluence, ServiceNow, Smartsheet, PowerPoint, Excel/Power BI.
  • Strong executive written and verbal communication; ability to produce concise, structured, dashboard-style one-pagers and decision memos.
  • Comfortable enforcing operating discipline (cadences, stage gates, escalation SLAs) in a small, senior, expert team.
  • Bias for action, ownership, and outcome - not activity.

AI Literacy
- Hands-on, deliberate daily use of AI tooling in your own workflows (drafting, synthesis, dashboards, evidence preparation, meeting recaps).
- Understanding of AI security concerns: model risk, data leakage, prompt injection, third-party AI vendor risk, Shadow AI, AI guardrails, and Responsible AI principles.
Preferred Certifications
  • PMP, PgMP, or equivalent program management certification.
  • CISSP, CISM, CRISC, or CISA (one strongly preferred).
  • AI Governance certification (e.g., IAPP AIGP, ISO 42001 Lead Implementer).

Other Qualifications
The Winning Way behaviors that all Vertex employees need in order to meet the expectations of each other, our customers, and our partners.
• Communicate with Clarity - Be clear, concise and actionable. Be relentlessly constructive. Seek and provide meaningful feedback.
• Act with Urgency - Adopt an agile mentality - frequent iterations, improved speed, resilience. 80/20 rule - better is the enemy of done. Don't spend hours when minutes are enough.
• Work with Purpose - Exhibit a "We Can" mindset. Results outweigh effort. Everyone understands how their role contributes. Set aside personal objectives for team results.
• Drive to Decision - Cut the swirl with defined deadlines and decision points. Be clear on individual accountability and decision authority. Guided by a commitment to and accountability for customer outcomes.
• Own the Outcome - Defined milestones, commitments and intended results. Assess your work in context, if you're unsure, ask. Demonstrate unwavering support for decisions.
COMMENTS:
The above statements are intended to describe the general nature and level of work being performed by individuals in this position. Other functions may be assigned, and management retains the right to add or change the duties at any time.
Pay Transparency Statement:
US Base Salary Range: $114,500.00 - $148,800.00
Base pay offered to new hires may vary based upon factors including relevant industry and job-related skills and experience, geographic location, and business needs.* The range displayed does not encompass the full potential of the role, which allows for further growth and career progression.
In addition, as a part of our total compensation package, this role may be eligible for the Vertex Bonus Plan (VOB), a role-specific sales commission/bonus, and/or equity grants.
Learn more about Life at Vertex and connect with your recruiter for more details regarding Vertex's compensation and benefit programs.
*In no case will your pay fall below applicable local minimum wage requirements.