We need: A senior (10 years) Program Manager to oversee the enterprise-class information technology and security vulnerability management experience with the capabilities in elevating a vulnerability program with proper reporting in place and ability to identify enhancements. They also need Strong hands-on experience and knowledge with Cloud Technologies: (e.g., related to Fundamentals, Security, Amazon AWS, Microsoft Azure, Google Cloud Platform).

**Candidates must have Long Projects/Good Tenure, Excellent communication skills and a State issued ID (Not Bills) showing they are Local.

Required Location: Hybrid/ Wilmington, DE or Urbandale/Des Moines, IA 3 days a week.

Candidates must be LOCAL to the Wilmington, DE or Urbandale/Des Moines, IA area and COMMUTE into the office THREE TIMES A WEEK. NO RELOCATION CONSIDERED.

Job Description:

Managers Notes:

The project is focused around an audit that Accenture completed in their Vulnerability and Patch Management Program. Essentially looking for a Program Manager overseeing 2 TDM's with a background in Infrastructure .particularly the Vulnerability and Patch Management world.

The BTS Value Management Office is seeking a Program Manager (Technical Delivery Manager, Lead) in support of the Vulnerability & Patch Management Program. Your primary responsibility is to plan, execute, and monitor multiple interrelated projects to ensure successful outcomes within defined timeframes, budgets, and quality standards. You will collaborate closely with various stakeholders within the IT teams, business units, vendors, and executive management, to align project objectives with organizational goals and drive effective cross-functional collaboration. Using your extensive technical and leadership expertise, you will work closely with all InfoSec teams to understand technical needs and constraints while setting realistic schedules. You will be a trusted advisor providing visibility into security, progress, risks, and roadblocks. Your focus will be driving on-time, high-quality delivery of security risk reduction through cross-functional collaboration and program management excellence.

Responsibilities:

• Develop comprehensive program and project plans, including timelines, milestones, and resource allocation for complex technical security projects and initiatives.
• Executes program tasks including issue and risk management, building multi-phase schedules, tracking dependencies and milestones, and communication of overall project status.
• Collaborate with stakeholders to drive successful program outcomes and identify potential risks and issues and work proactively to mitigate them.
• Use technical knowledge to make informed decisions and guide the team in solving complex technical challenges.
• Proposes potential solutions when faced with a new complex problem, even where little or no precedent exists, considering the needs of all collaborative groups.
• Allocate and manage resources effectively to ensure projects are completed on time and within budget, and monitor progress and adjust resource allocation as necessary.
• Foster open and clear communication within the project team and with external stakeholders, create timely status reports, and identify opportunities for process improvement and operational efficiency.
• Apply change, risk, and resource management.
• Leverages resources outside own group to solve problems and achieve results.
• Help identify key KPI gaps and monitor progress and commitments.
• Demonstrates timely and accurate completion of financial and administrative duties.

Preferred Knowledge, Skills, and Abilities:

• Five (5) years of enterprise-class information technology and security vulnerability management experience with the capabilities in elevating a vulnerability program with proper reporting in place and ability to identify enhancements.
• Five (5) years of relevant experience in a supervisory capacity managing small to medium sized teams in a large IT enterprise environment.
• Strong hands-on experience and knowledge with Cloud Technologies: (e.g., related to Fundamentals, Security, Amazon AWS, Microsoft Azure, Google Cloud Platform).
• Strong knowledge and experience evaluating, designing, testing, and supporting hardware and software-based security.
• Strong knowledge and experience with information security and network communications practices and principles, technologies, and systems.
• Proficient knowledge and experience with vulnerability scanning plus risk and mitigation best practices.
• Ability to stay knowledgeable of cybersecurity trends and emerging threats.
• Proficient knowledge and proven experience with the following skillsets:
  • Networking/Data Communications
  • Risk Management
  • Operating Systems (e.g., Windows/Linux)
  • Vulnerability management tools such as Tenable and Palo Alto Xpanse
  • Other Security Tool sets/categories (e.g., Firewalls, Routers/switches, Database, Web Servers, Applications); Common vulnerabilities, CVEs, and CWEs; Encryption and cipher technologies
  • Experience with security frameworks such as NIST (e.g., NIST 800-53) and CIS.
  • Demonstrated experience and success with development and promulgation of enterprise-class security policy and standards.
  • Demonstrated experience and success with completion of risk assessments and vulnerability assessments.
  • LAN/WAN operational experience, including networking, OS, web/application/Database servers, storage, hardware, firewalls, and monitoring and detection tools.
  • Excellent people management, communication, and customer interaction skills.
  • Ability to work independently, manage projects, and exercise judgement in reaching solutions.
  • Ability to quickly grasp how new technologies work and how they might be applied to achieve business goals.
  • Demonstrated ability to communicate effectively, both orally and in writing.

Certification(s):

CISSP, A , Security , CEH, CISA, CRISC, or other IT security operations/vulnerability management certifications is a plus, but not required.