Information Security Program Manager
DataRobot is looking for a Security Program Manager to be part of the Information Security team. The candidate should have strong documentation skills, experience with security awareness programs, and the ability to build strong relationships with IT leadership and business process owners. The ideal candidate should have a high level of knowledge across multiple information security domains and functions including network security, endpoint security, cloud security, security policies, security auditing, and security reporting.
Responsibilities
The Security Program Manager’s primary responsibilities include building and maintaining a global security awareness program, producing periodic security reports for team situational awareness and executive briefings, creating or updating policies, and auditing compliance with corporate policies or requirements. The Security Program Manager will also be responsible for receiving and managing security related requests from various teams and process owners to ensure that the requests are appropriately answered, handled, and/or tasked to the relevant team(s).
Main Requirements
Foster strong relationships with cross functional teams and process owners
Strong documentation and people skills
Establish with guidance from the CISO a comprehensive security awareness program
Promote security education and awareness
Audit compliance with implementing security controls
Provide recommendations for security controls and tracks remediation of any deficiencies
Ability to translate technical and security requirements into business proposals for new solutions, proof-of-concept (POC) initiatives, and discussions with process owners and stakeholders
Develop, maintain and report on Key Performance and Risk Indicators (KRI/KPI)
Experience with network and server configuration in accordance with policies and standards
Assist in creating and monitoring the information security policy, standards, controls and procedures
Experience with auditing systems and networks for compliance with company security policies and standards
Manage security related requests from various teams and process owners
Manage the information security inbox and Slack channel
Review requests for new applications and software to ensure that they are compliant to our security policies and requirements
Solid knowledge of information security principles and practices
Strong technical security skills
Experience with security compliance testing
Good writing and communication skills
Experience in building a security awareness program
Previous startup experience
Bachelors in Computer Science related field or equivalent demonstrable experience
Desired Skills
Certifications in security such as CISSP, CompTIA Security+, GIAC
Good knowledge in IT process automation
Knowledge working with security awareness
10-15 years related experience in information systems