Security Technical Program Manager
Remote in Seattle, WA or San Fransico, CA (onsite periodically for meetings)
7- month contract
Pay Rate: $75.00 - $80.00per hr.
The Security Technical Program Manager (TPM) will be responsible for the definition, execution, and oversight of security programs focused on client assurance, operational compliance, and platform security. This role requires a strong focus on cross-functional coordination to embed security and legal standardization across client projects and manage ongoing compliance activities. The ideal candidate will be a technical program manager responsible for driving multiple security programs across various security capabilities within the organization. This role will ensure consistent execution, reduced organizational risk, and the successful delivery of complex, cross-functional security initiatives, partnering closely with Security, Engineering, Legal, Compliance, and Client teams.
Responsibilities
· Program Management Structure and manage strategic programs required to deliver critical security roadmap objectives.
- Define milestones, delivery plans, and measurable success metrics for major security initiatives.
- Track progress against portfolio commitments, analyze program health, and proactively escalate risks to senior leadership.
- Manage complex cross-functional dependencies across Engineering, Product Management, Legal, Compliance, and other stakeholders.
- Support quarterly and annual planning cycles, including investment prioritization and justification of security initiatives.
- Ensure predictable program execution and accountability through structured governance and consistent reporting cadence.
- Cross-Functional Collaboration
- Collaborate with Engineering, Product Management, Legal, Risk, and Compliance stakeholders.
- Facilitate stakeholder alignment, trade-off decisions (e.g., security vs. speed), and expectation management.
- Influence without direct authority to drive secure design principles and manage cross-functional projects to ensure delivery.
- Operational Program Management & Reporting
- Established and maintained standardized JIRA workflows, dashboards, and reporting standards to manage program backlogs, priorities, and security remediation efforts across all capabilities.
- Developed and published executive-level and operational dashboards to report on program health, key performance indicators (KPIs), security risk posture, and compliance metrics.
- Executed day-to-day vendor management tasks, including coordinating security due diligence questionnaires, facilitating contract reviews with Legal, and driving the remediation of vendor-related control gaps.
- Develop and report compliance artifacts for 1LOD, 2LOD, and 3LOD to support risk reduction strategies.
Required Skills:
- 5+ years of experience in technical program management, cybersecurity, or risk management
- Demonstrated experience in Product Security (AppSec), DevSecOps, or AI/ML Security, Identity, Platform security domains
- Demonstrated experience building and managing strategic roadmaps tied to measurable outcomes.
- Strong understanding of security compliance frameworks (e.g., PCI, ISO) and operational security domains (e.g., User Access Reviews, AWS security roles, Secure SDLC/SAST)
- Proven ability to partner with engineering and legal teams to drive standardization and manage security due diligence.
- Excellent written and verbal communication skills, with demonstrated experience facilitating stakeholder alignment and influencing without direct authority
- Experience working in matrixed organizations and managing dependencies across multiple business units.