ZipRecruiter

Log In

1

Security Program Manager Jobs in New York (NOW HIRING)

Norm AI, Inc

Security Program Manager

New York, NY · On-site

$30/hr

The Security Program Manager at Norm Ai is a hybrid between a GRC Manager and a Program Manager within the Office of the Chief Security Officer. You will own the execution of Norm Ai's security ...

Securitas Services

Program Manager

Morristown, NJ · On-site

The Program Manager (PM) serves as the Security Advisor for the client and provides strategic direction and leadership for the assigned account/s. The PM will have full responsibility for the overall ...

Securitas

Program Manager

Morristown, NJ · On-site

$70K - $82K/yr

The Program Manager (PM) serves as the Security Advisor for the client and provides strategic direction and leadership for the assigned account/s. The PM will have full responsibility for the overall ...

Securitas

Program Manager

Morristown, NJ · On-site

$70K - $82K/yr

The Program Manager (PM) serves as the Security Advisor for the client and provides strategic direction and leadership for the assigned account/s. The PM will have full responsibility for the overall ...

Securitas

Program Manager

Manhattan, NY · On-site

$70K - $82K/yr

The Program Manager (PM) serves as the Security Advisor for the client and provides strategic direction and leadership for the assigned account/s. The PM will have full responsibility for the overall ...

eClerx

Cyber Security Program Manager

Manhattan, NY

$150K - $165K/yr

This role requires a seasoned professional with a strong background in program and project management, a deep understanding of information security controls and risk management, and a user centric ...

Noblesoft Technologies

Archer GRC Program Manager

Secaucus, NJ · On-site

$131K - $159K/yr

This role develops the program roadmap, aligns stakeholders, and ensures Archer supports risk management, compliance, audit, and security initiatives across the organization. The Program Manager acts ...

Curtisswright

Program Manager

East Farmingdale, NY · On-site

$150K - $170K/yr

US citizen and able to obtain and maintain DOD security clearance * Five (5) years' experience in Program Management and familiarity with Technical/Engineering specifications and procedures.

Curtiss-Wright

Program Manager

East Farmingdale, NY · On-site

$150K - $170K/yr

US citizen and able to obtain and maintain DOD security clearance * Five (5) years' experience in Program Management and familiarity with Technical/Engineering specifications and procedures.

next page

Showing results 1-20

All JobsSecurity Program Manager JobsSecurity Program Manager Jobs in New York

Security Program Manager information

See New York salary details

$59.6K

$163K

$182.7K

How much do security program manager jobs pay per year?

As of Jun 24, 2026, the average yearly pay for security program manager in New York is $163,026.00, according to ZipRecruiter salary data. Most workers in this role earn between $141,100.00 and $171,800.00 per year, depending on experience, location, and employer.

What jobs pay 2000 a day?

Security Program Managers in high-level consulting, cybersecurity, or executive roles can earn around $2,000 per day, especially with extensive experience, certifications, and leadership responsibilities. Such roles often require specialized skills, strategic planning, and sometimes involve project-based or contract work with high compensation rates.

What are the key skills and qualifications needed to thrive in the Security Program Manager position, and why are they important?

To thrive as a Security Program Manager, you need a solid background in information security, risk management, and project management, typically bolstered by a relevant degree and experience in security operations. Experience with security frameworks (like NIST or ISO 27001), tools such as SIEM platforms, and certifications like CISSP or PMP are highly valued. Excellent cross-functional communication, leadership, and problem-solving abilities help you coordinate teams and drive initiatives forward. These capabilities are crucial to effectively lead security programs, mitigate risks, and ensure organizational compliance in a dynamic threat landscape.

Can you make $500,000 a year in cyber security?

Security Program Managers with extensive experience, advanced certifications, and leadership roles in large organizations can potentially earn $500,000 or more annually, especially with bonuses and stock options. Achieving this level typically requires a combination of technical expertise, strategic skills, and years of senior-level management in cybersecurity. Most professionals in the field earn lower salaries, but top executives and specialized experts can reach or exceed this income level.

What is a Security Program Manager job?

A Security Program Manager (SPM) oversees an organization's security initiatives, ensuring they align with business objectives and compliance requirements. They coordinate security programs, manage risks, and implement policies to protect assets, data, and infrastructure. SPMs work closely with cross-functional teams, including IT, legal, and leadership, to enhance security posture. Their role involves assessing threats, driving security awareness, and managing security projects efficiently.

How much does a security manager get paid?

A security program manager's average salary in the United States ranges from $80,000 to $150,000 annually, depending on experience, certifications, and location. They often oversee security policies, coordinate teams, and implement risk management strategies, with higher salaries typically associated with advanced certifications like CISSP or CISM.

What are some typical challenges faced by Security Program Managers, and how are they addressed?

Security Program Managers often face challenges such as balancing evolving cybersecurity threats with business objectives, managing cross-departmental initiatives, and ensuring ongoing compliance with industry standards. Success in this role typically involves continuous learning to stay ahead of threat trends, fostering collaboration among IT, compliance, and executive stakeholders, and implementing clear processes for incident response and policy enforcement. Program Managers regularly review and adjust security strategies, conduct gap analyses, and ensure team alignment through effective communication and stakeholder engagement. Proactively addressing these challenges helps maintain robust security postures while enabling organizations to achieve their goals.

What is the role of a security program manager?

A security program manager oversees an organization’s security initiatives, developing and implementing security policies, managing risk assessments, and coordinating security teams. They ensure compliance with industry standards and often utilize tools like security information and event management (SIEM) systems, requiring strong leadership and communication skills. Certifications such as CISSP or CISM are commonly valued in this role.
What are popular job titles related to Security Program Manager jobs in New York? For Security Program Manager jobs in New York, the most frequently searched job titles are:
What job categories do people searching Security Program Manager jobs in New York look for? The top searched job categories for Security Program Manager jobs in New York are:
What cities in New York are hiring for Security Program Manager jobs? Cities in New York with the most Security Program Manager job openings:
Security Program Manager jobs near you

Security Program Manager

Norm AI, Inc

New York, NY • On-site

$30/hr

Full-time

Medical, Dental, Vision, Retirement

Posted 5 days ago

Job description

About Norm Ai
Norm Ai, the agentic law company, has a client base with a combined $30 trillion in assets under management.
Norm Ai pioneered Legal Engineering, the process that empowers lawyers to build and supervise domain-specific AI agents with Norm's proprietary suite of no-code software tools. Norm Ai technology is deployed inside many of the largest and most consequential institutions in the world.
Norm Ai is also the technology behind Norm Law, LLP, a separate but affiliated AI-native law firm built for the era of agentic AI. Norm Law's attorneys advise leading institutions across private funds, private equity, venture capital, real estate, registered funds, and financial regulation, using the same legal intelligence platform that powers Norm Ai's products.
AI Fluency:
Norm Ai expects all team members to be fluent in AI. Successful candidates actively use AI in their day-to-day work to support thinking, creation, and problem-solving. They use it to improve the quality and speed of their work and to continuously refine how work gets done end-to-end.
Candidates should be prepared to demonstrate and discuss their AI usage throughout the interview process, including concrete examples of tools, workflows, and outcomes. We look for practical, hands-on experience, not theoretical familiarity.
This Role:
The Security Program Manager at Norm Ai is a hybrid between a GRC Manager and a Program Manager within the Office of the Chief Security Officer. You will own the execution of Norm Ai's security compliance programs, serve as the CSO's operational right hand, and drive cross-functional security and compliance initiatives across Engineering, Legal, IT, and the affiliated Norm Law practice. Security is your primary function, but this role sits at the intersection of compliance execution, risk management, and day-to-day program operations. You are the person who brings structure to ambiguity and makes sure nothing falls through the cracks.
You Will:
  • Own and mature the GRC program across SOC 2 Type II, ISO 27001, and other applicable frameworks, including control mapping, evidence collection, gap analysis, remediation tracking, and audit coordination.
  • Serve as the primary liaison with external auditors and certification bodies; manage the full audit lifecycle from scoping and evidence gathering through report issuance.
  • Build and maintain the enterprise risk register; conduct periodic risk assessments and track risk treatment plans to closure with clear stakeholder accountability.
  • Lead the vendor security assessment program: evaluate third-party security posture, manage security questionnaires, and track remediation to completion.
  • Maintain and update security policies, standards, and procedures; own the policy review lifecycle from drafting through approval.
  • Manage priorities, track deliverables, and maintain operational cadence across the security organization including but not limited to staff meetings, quarterly planning, board reporting.
  • Drive cross-functional security initiatives and ensure alignment between Security, Engineering, Product, Legal, IT, and Business teams.
  • Manage security OKRs, KPIs, and metrics reporting; prepare dashboards and executive summaries for leadership and board audiences.
  • Coordinate incident response program readiness: maintain runbooks, organize tabletop exercises, and drive post-incident reviews to ensure lessons learned are captured and tracked.
  • Design, implement, and manage the security awareness and training program, including phishing simulations and effectiveness reporting.
  • Participate in client due diligence reviews and manage the intake process for inbound security questionnaires.
  • Support business continuity and disaster recovery planning in coordination with Engineering and IT.

Skills & Experience - Core:
  • 5+ years of experience in security program management, GRC, or a related security operations role.
  • Hands-on experience managing compliance programs across at least two major frameworks (e.g., SOC 2, ISO 27001, GDPR, HIPAA). You don't need to be a security controls expert, but you need to know how audits work and how to run one.
  • Working knowledge of risk management frameworks such as NIST RMF, ISO 31000, or FAIR.
  • Experience with GRC and compliance automation tooling; we use Vanta.
  • Strong project management skills with the ability to manage multiple concurrent initiatives; experience with Linear, Jira, Notion, or equivalent tools.
  • Comfortable using AI tools to accelerate security and compliance work.
  • Experience coordinating external audits and working directly with auditors.
  • Familiar enough with cloud environments (AWS) and developer tooling (GitHub) to have substantive conversations with engineering teams.
  • Proven ability to drive cross-functional work without direct authority.
  • Clear, concise communicator; experienced preparing executive-level updates and board materials.
  • Background in a fast-paced startup, scale-up, or boutique consulting environment where you had to build programs with limited resources.

Skills & Experience - Pluses:
  • Experience in a strategic operations role within a security or technology organization.
  • Background in government, financial services, or other highly regulated industries.
  • Relevant certifications: CISSP, CISM, CRISC, CISA, CGRC, or PMP.

What Success Looks Like
30 Days:
  • Map the existing security program and compliance calendar; understand Norm Ai's current control environment, open audit gaps, and active risks.
  • Get fully onboarded into Vanta, Linear, and Notion and establish working relationships with the CSO, Director of Compliance, Engineering leads, and Legal.
  • Identify the most pressing open thread and start driving it.

60 Days:
  • Own the GRC program calendar with a clear view of upcoming audit milestones, evidence collection owners, and remediation timelines.
  • Establish a regular reporting cadence for the CSO, including OKR tracking and cross-functional status updates.
  • Have moved at least one active compliance or risk initiative from intake to measurable progress.

Location / Office Requirement
This role is open to candidates based anywhere on the East Coast. Travel to the office is expected approximately once per quarter for remote employees.
Candidates local to New York City and within commuting distance of our office will be expected to come in 3-4 days per week.
Compensation and Benefits
$140,000-$155,000 per year plus equity.
The range displayed in this job posting reflects the minimum and maximum target for new hire salary for this position. Within the range, individual pay is determined by various factors, including job-related skills (as uncovered during the interview process), experience, and relevant education or training. Please note that the compensation details listed here reflect the base salary only, and do not include equity or benefits. We offer a competitive salary along with equity compensation. Our comprehensive benefits package includes a 401(k) plan with an employer match. Employees enjoy top-tier insurance coverage, encompassing health, dental, hospital, accident, and vision plans. For candidates needing to relocate to NYC, we provide relocation reimbursement. You'll thrive in our fast-paced learning environment where professional growth is constant.
To learn more about Norm Ai, visit our website.

Apply