Note: The position is not open for C2C/Third party vendors
Key Responsibilities:
- Lead the development and implementation of enterprise-wide cybersecurity programs, governance frameworks, and strategic initiatives.
- Create, document, and maintain IT security policies, standards, and procedures,ensuring alignment with industry best practices and regulatory requirements.
- Partner with IT, Security, Risk, Compliance, and business stakeholders to identify security gaps, establish controls, and drive continuous improvement.
- Oversee cybersecurity roadmaps, program objectives, KPIs, budgets, and resource planning to support organizational goals.
- Ensure compliance with frameworks and regulations such as NIST, ISO 27001, SOC2, CMMC, CCPA, and CPRA.
- Lead risk assessments, vulnerability management, security reviews, and incident response planning activities.
- Manage security architecture reviews, technology evaluations, and optimization of security tools and controls.
- Provide executive leadership and board-level reporting on cybersecurity posture, compliance status, risks, and program performance.
- Promote security awareness and foster a strong cybersecurity culture across the organization.
Required Qualifications:
- 10+ years of cybersecurity experience, including 5+ years leading security programs, governance, or strategic initiatives.
- Proven expertise in developing IT security policies, standards, and procedures from the ground up.
- Strong knowledge of cybersecurity frameworks and compliance standards, including NIST CSF, ISO 27001, CIS Controls, SOC 2, and CMMC.
- Experience in risk management, security governance, compliance programs, and vulnerability management.
- Demonstrated ability to lead cross-functional teams and manage complex enterprise security initiatives.
- Strong understanding of security controls, threat modeling, and cybersecurity best practices.
- Experience with Agile, Waterfall, or similar program management methodologies.
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
- PMP or equivalent project management certification is highly preferred.
Job Types: Full-time, Contract
Pay: $75.00 - $90.00 per hour
Benefits:
- Dental insurance
- Health insurance
- Vision insurance
Experience:
- Program management: 10 years (Required)
- Cybersecurity: 6 years (Required)
- GRC: 6 years (Required)
Ability to Commute:
- San Jose, CA 95139 (Required)
Work Location: In person