Security Program Manager

Duration: 6+ Months
Location: 100% Remote

Job Description:
A highly skilled and experienced Program Manager to lead the moving parts of the Cyber Recovery Program. This critical role is responsible for ensuring the resilience of our core business operations against sophisticated cyber threats by establishing robust recovery plans, validating application readiness, and ensuring seamless program integration across key internal and external stakeholders.

Responsibilities/Requirements:

• Recovery Plan Documentation and Testing: Develop, maintain, and rigorously test detailed cyber recovery documentation and playbooks. Coordinate and manage regular test events (e.g., table-top exercises and full operational simulations) to validate the effectiveness of recovery strategies and identify areas for continuous improvement. Define and assign test schedule with team and ensure test planning, execution and post test reporting and follow on is managed effectively.
• Application Vetting and Validation: Manage and continuously improve the process for vetting critical applications to ensure they meet stringent criteria for protection in partnership with the ITDR Architecture team. This includes confirming criticality and data integrity and ensuring readiness for restoration within an immutable, isolated recovery vault environment.
• Program Documentation Management: Oversee all aspects of program documentation, governance records, and audit artifacts. Ensure that all program activities are accurately documented, traceable, and compliant with regulatory and organizational standards.
• Program Team and Larger Org Engagement and Alignment:
• Cyber Recovery (CR) Team: Coordinate and verify that vault operations are maintained in accordance with agreed upon processes, practices and reporting. Ensure that CR architects are regularly reviewing security and operations of vault and clean room environments. Guide project manager through required projects ensuring scope, objectives, resources and project artifacts and managed to achieve expected outcomes
• ITDR Leadership: Provide regular check-ins and reporting on the Cyber Recovery program. Escalate as necessary when leadership support is required. Highlight wins, newly vetted candidates for final approval, current operations, etc. to ensure transparency and awareness
• Disaster Recovery (DR) Program: Guarantee seamless integration, communication, and transparency between cyber recovery efforts and broader IT disaster recovery processes, orchestration, and management.
• Stakeholder Engagement and Alignment: Serve as the primary liaison and engagement lead for crucial partners, including:
• Enterprise Data Protection Team (EDPT): Partner in the ordering of replication and subsequent replication commitment of vetted backups for vault protection.
• Cyber Security Teams: Ensure alignment with threat intelligence, incident response protocols, and security best practices.
• Risk Management: Integrate program activities with enterprise risk frameworks and reporting requirements.
• Communication and Transparency: Facilitate clear, consistent, and transparent communication regarding recovery processes, test results, and program status to executive leadership and all engaged partners.