Sr. Security Program Manager (Remote - US)

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Sr. Security Program Manager in the United States.

In this role, you will play a pivotal part in strengthening and scaling the organization’s security program, ensuring robust information risk management across all business units. You will collaborate with product, engineering, and executive teams to embed security-by-design principles into daily operations, optimize compliance frameworks, and streamline customer security diligence processes. The role offers a blend of strategic planning, hands-on project execution, and cross-functional collaboration in a fast-paced, high-impact environment. You will have the opportunity to enhance security controls, support audits, and drive initiatives that protect enterprise assets while enabling business growth. This is an ideal opportunity for a proactive, detail-oriented professional who thrives at the intersection of security, compliance, and project leadership.

Accountabilities:

• Scale and refine the organization’s control framework, policies, and procedures to reduce information risks and support business growth.
• Integrate and maintain security frameworks such as ISO 27001 and ISO 42001.
• Assist in annual planning for security initiatives, aligning with business objectives and demonstrating program value.
• Develop and implement metrics to measure the performance, efficiency, and effectiveness of security initiatives.
• Collaborate with engineering and product teams to embed security-by-design principles into development and delivery processes.
• Establish relationships with stakeholders, providing guidance on effective control environments and audit evidence.
• Translate complex security frameworks into actionable controls and support implementation.
• Coordinate internal teams during third-party audits and manage security control exception processes.
• Support customer security diligence efforts, including questionnaire management and response optimization.
• Provide guidance and oversight on priority tasks and project execution for team members as needed.

• Proven experience in information security and compliance, including hands-on project management.
• Strong knowledge of auditing standards and frameworks such as SOC2, HIPAA, FedRAMP (800-53), NIST, and ISO 27001.
• Ability to navigate compliance controls and cloud security best practices effectively.
• Demonstrated ability to manage multiple projects and priorities simultaneously.
• Excellent communication skills to align internal and external stakeholders.
• Proactive, detail-oriented, and driven with a strong focus on delivering results.

Preferred / Bonus Qualifications:

• Security certifications such as CISA or CISSP.
• Project Management certification (e.g., PMP).
• Experience with Hyperproof GRC Platform and Atlassian Suite.