Scrum Master Enterprise Security Office (ESO)
Location: Minneapolis, MN (On-site)
Employment Type: Contract
As a Scrum Master within the Enterprise Security Office (ESO), you are more than just a facilitator; you are the engine driving agility across our most critical defense layers. You will lead dedicated security squads-ranging from Identity Access Management (IAM) to Incident Response and Compliance-helping them navigate the high-stakes, fast-paced world of cybersecurity.
Your mission is to remove blockers that impede our security posture, foster a culture of continuous improvement, and ensure that complex security initiatives are delivered with precision and speed.
Key Responsibilities
1. Agile Facilitation & Coaching
-
Guide the Squad: Lead all standard Scrum ceremonies (Daily Stand-ups, Sprint Planning, Reviews, and Retrospectives) for multiple security workstreams.
-
Promote Agility: Coach the ESO teams on Agile values and principles, adapting the framework to fit the unique "interrupt-driven" nature of security work (e.g., balancing planned sprints with emergency patch deployments).
-
Support the Product Owner: Partner with Security Lead/Product Owners to manage the backlog, ensuring items are prioritized by risk level and technical debt.
2. Execution & Operational Excellence
-
Remove Impediments: Proactively identify and eliminate "friction" for the team-whether it's cross-departmental bureaucracy, resource gaps, or technical hurdles.
-
Metrics & Reporting: Utilize JIRA/Confluence to track and report on team velocity, burn-down charts, and cycle time, providing visibility into the ESO's progress to executive leadership.
-
Workflow Optimization: Help the team transition from "firefighting" to a sustainable flow by implementing Kanban or Scrumban where appropriate for operational security tasks.
3. Security & Compliance Integration
-
Cross-Team Coordination: Manage dependencies between the ESO and other departments like DevOps, Legal, and Infrastructure.
-
Compliance Alignment: Ensure that Agile processes do not bypass necessary security controls or audit requirements; help "bake" security into the Definition of Done (DoD).
Required Qualifications
-
Experience: 3+ years of experience as a Scrum Master, preferably within a Cybersecurity, IT Risk, or highly regulated technical environment.
-
Education: Bachelor's degree in Computer Science, Information Technology, or a related field.
-
Certifications: First-level Scrum Master certification (PSM I, CSM).
-
Technical Literacy: A solid understanding of the Security Development Lifecycle (SDL), threat modeling, or general security domains (GRC, SOC, Network Security).
-
Tools: Mastery of JIRA and Confluence is non-negotiable.
Preferred Skills (The "Nice-to-Haves")
-
Advanced certifications (A-CSM, PSM II, or SAFe Agilist).
-
Familiarity with security frameworks like NIST, ISO 27001, or SOC2.
-
Experience with DevSecOps practices and CI/CD pipelines.
Never miss an opportunity! Create an alert based on the job you applied for.
