Cybersecurity Project Manager

Job Summary

We are seeking an experienced Cybersecurity L3 professional and Technical Project Manager to lead and drive security operations, governance, and vulnerability management initiatives. The ideal candidate will have hands-on expertise in Trend Micro Security Solutions, Rapid7 Vulnerability Management, and GRC frameworks, coupled with strong project leadership skills to deliver enterprise-level cybersecurity programs successfully.

This role demands a balance of technical depth, project management discipline, and leadership acumen to ensure seamless execution of cybersecurity projects and operations across a multi-stakeholder environment.

Key Responsibilities

1. Security Operations Leadership

• Coach and mentor Offshore Security Operations team ensuring efficient monitoring, incident detection, analysis, and response.
• Administer and optimize Trend Micro security platforms (Apex One, Deep Security, Cloud One) for endpoint, server, and cloud workloads.
• Coordinate with SOC teams to fine-tune detection rules, enhance EDR visibility, and automate incident workflows.
• Serve as an escalation point for critical incidents, providing expert guidance in containment and remediation.

1. Service Delivery Management

• Oversee day-to-day SOC operations, ensuring all services are delivered according to defined SLAs and KPIs.
• Act as the primary point of contact for service delivery escalations and performance reviews.
• Manage communication between SOC teams, customers, and stakeholders.
• Conduct regular service review meetings and provide reports on SOC performance, incident trends, and improvements.

1. Vulnerability & Threat Management

• Manage Rapid7 InsightVM/Nexpose for end-to-end vulnerability management scanning, analysis, prioritization, and remediation tracking.
• Collaborate with application, infrastructure, and DevOps teams to close vulnerabilities within SLA.
• Develop dashboards and periodic reports on vulnerability posture, remediation trends, and residual risk metrics.

1. Governance, Risk & Compliance (GRC)

• Establish and maintain governance frameworks aligned with ISO 27001, NIST, TISAX and CIS Controls.
• Drive risk assessment, policy compliance, and audit readiness activities across business units.
• Utilize GRC tools (ServiceNow GRC, RSA Archer, or similar) to manage risk registers, control libraries, and audit findings.
• Conduct periodic security posture reviews and report to senior management.

1. Technical Project Management

• Act as Technical Project Manager for cybersecurity initiatives, leading end-to-end delivery from requirement gathering to implementation and post-deployment validation.
• Define project scope, deliverables, timelines, and resource requirements for multiple concurrent security projects.
• Collaborate with stakeholders, vendors, and technical teams to ensure projects are executed within time, cost, and quality parameters.
• Maintain project documentation, risk registers, and progress reports for leadership visibility.
• Drive continuous improvement initiatives and implement process automation for operational efficiency.

1. Leadership & Collaboration

• Lead cross-functional discussions with IT, Network, and Application teams to align on cybersecurity objectives.
• Communicate complex security topics to non-technical audiences, including senior leadership and client.
• Contribute to the strategic cybersecurity roadmap and maturity improvement programs.
• Mentor junior engineers and analysts, fostering a culture of accountability and continuous learning.

Required Skills & Experience

• 10 12+ years of experience in Cybersecurity Operations, Vulnerability Management, Governance, and Technical Project Management.
• Strong hands-on experience with:
• Trend Micro (Apex One, Deep Security, Cloud One)
• Rapid7 InsightVM/Nexpose
• GRC Tools (ServiceNow GRC, Archer, or equivalent)
• Proven track record of managing end-to-end cybersecurity projects as a Technical Project Manager.
• Deep understanding of SIEM, EDR, IDS/IPS, endpoint protection, and security hardening techniques.
• Proficiency in risk management methodologies, incident response frameworks, and compliance audits.
• Excellent communication, stakeholder engagement, and documentation skills.
• Understanding of threat landscapes, incident response, and cyber defense strategies.
• Demonstrated success in stakeholder management and client communication.

Qualifications

• Certifications: CISSP, CISM, PMP, ISO 27001 Lead Implementer, CEH, or equivalent.
• Experience in cloud security (Azure, AWS).
• Exposure to regulated industries (Manufacturing / Automotive) preferred.
• Familiarity with DevSecOps and continuous monitoring practices.