Senior Technical Program Manager, Information Security / DR / BCP (Remote - USA)

5+ years of program/project management experience within Information Security, IT, or Infrastructure domains. Proven experience in security governance, compliance, and risk management frameworks (e.g., NIST CSF, HITRUST, SOC). Strong knowledge of security tool implementation (MDR, IAM, DLP, OneTrust). Jira knowledge. Experience leading portfolio-level program management, including intake, prioritization, and capacity planning. Track record of delivering large-scale projects with high on-time and in-scope success rates. Excellent communication, stakeholder management, and executive reporting skills. Must demonstrate flexibility and excellent organizational skills with the ability to complete various tasks accurately with high attention to detail and creativity. Develop, manage, and maintain customer relationships at all organizational levels. Excellent soft skills to handle stress and resolve conflicts. Ability to maintain confidentiality. Be Proactive, Self-Driven, Fast-Learner, and Accountable. Familiarity with cloud security (preferred). Strong analytical ability to connect project outcomes to business performance metrics (preferred). PMP, CISSP, CISM, CISA, or related certifications (preferred but not required).

Implement and scale a unified portfolio management framework for InfoSec and Infrastructure initiatives. Manage intake and prioritization processes for projects and new hires. Deliver 90%+ on-time, in-scope project execution for security and infrastructure portfolios. Manage timelines and deliverables for frameworks like SOC, HIPAA, and GDPR. Conduct quarterly portfolio reviews to connect project outcomes to business objectives. Drive workforce and hiring alignment with portfolio needs. Optimize resource allocation and track utilization. Establish and track KPIs/KRIs for operational readiness. Lead and manage assessments across Physical Security, Microsoft Security, Cybersecurity (NIST CSF 2.0), and HITRUST remediation. Oversee adoption of tools and frameworks for incident, risk, and policy management (e.g., OneTrust). Oversee delivery of security initiatives including MDR tool implementation, Penetration Testing, DLP tools, IAM rollouts, SOP updates, and PagerDuty integration. Develop and maintain DR/BCP policies, procedures, and runbooks. Conduct BIA and Risk Assessment to identify critical processes and dependencies. Lead Tabletop exercises, simulation testing, and failover tests for DR and continuity validation. Assess 3rd party vendor and partner DR/BCP capabilities. Work with security engineers to identify, evaluate, and mitigate risks. Lead compliance and risk initiatives including OneTrust deployment and questionnaire response automation.