Position: Technical Program Manager 2, Compliance Assessments (Hybrid)
Location: Seattle, WA- Hybrid
Pay rate: $66/hr on W2
Start Date: 01/06/2025
Overview:
- As part of the Governance, Risk, and Compliance organization, this Technical Program Manager will support our Compliance Assessments Team. This team focuses on helping the technology groups understand and meet security requirements in a way that drives efficiency, increases revenue, and makes a world class technology focused environment.
Responsibilities:
- Work with teams in Technology and the broader community to prioritize remediating SOC and other regulatory issues with their systems or processes
- Document remediation plans from those teams, ensuring that all plans meet risk-based remediation timing requirements
- Track and report on remediation progress through our Findings and SOC program tools
- Escalate security issues to appropriate leadership when teams are unresponsive or do not believe they can remediate the issue in a timely manner
- Drive security and technical process improvement efforts based on industry best practices
- Develop and drive timelines to support internal and external requirements
- Manage stakeholder expectations and ensure communication throughout the process
- Engage in project teams and represent security sponsorship and requirements
- Establish and maintain productive and respectful relationships with other internal business and technology teams
Qualification:
- 3+ years of program management experience in a security or IT compliance field
- Working knowledge of various regulatory and internal control frameworks (e.g. PCI DSS, COSO, HIPAA, CIS, NIST, ISO, etc.)
- Data management skills, including analysis, metrics, and reporting
- Ability to track and maintain multiple projects and deliverables
- Strong partnership and relationship development skills
- Excellent presentation and verbal communication skills
- High-level understanding of a broad range of security topics, such as networking, cloud security, secure software, cryptography; CISSP or equivalent is a plus
- Previous experience with security audits like PCI, SOX, SOC I is a plus
- Bachelor's degree or demonstrated equivalent knowledge