Security Program Manager (United States)

The Program Manager will support the Security team in providing the highest quality of information security and compliance services to our internal and external customers. The primary function of this role is to assist clients and prospective clients in understanding on technology environment, disaster recovery/business continuity plan, and technology compliance programs in place. In addition, the position will participate in the developing and implementation of security and compliance services, including ongoing assessments, and tracking of adherence to required security guidelines across the enterprise computing environment.

We are looking for someone with a strong background in information security and a proven ability to deliver under pressure and meet deadlines.

In this role you will..

• Field technical issues and questions from prospects, clients, and co-workers

• Present technical capabilities to prospective and existing client base, and influence client expectations

• Work with Product Management to help drive appropriate product enhancements

• Engage internal team(s) to complement customer solutions

• Assist in response to internal and external audits and security assessments

• Research emerging technology in support of security enhancement and development efforts

• Create and update technical documentation

• Perform project leadership tasks on security and compliance projects

Youve got what it takes if you have..

• A bachelors degree in Computer Science or related field; or equivalent post high school education and/or work related experience

• Five or more years of experience in a cybersecurity and/or compliance role

• Experience working with compliance and regulatory program requirements, i.e. technical controls supporting SOX, SSAE16 SOC1/2, ISO 27001, FISMA/FedRAMP, CSA STAR, PCI, etc.

• Experience with applications security such as architecture review, threat modeling, OWASP, open source component and container vuln management, SAST, DAST, and application penetration testing.

• Some exposure to microservice-based applications in the cloud, such as in AWS or GCP

• Experience creating dashboards, trending reports, management presentations, etc

• Proven project management and organizational skills, specifically managing multiple concurrent projects and/or clients

• Excellent analytical, problem solving and decision making skills, applied with a solution-focused attitude

• Excellent written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy

Equal Employment Opportunity has been, and will continue to be, a fundamental commitment at Cornerstone OnDemand. All qualified applicants are given consideration regardless of race, color, gender, age, sexual orientation, national origin, marital status, citizenship status, disability, veteran status, or any other protected class as provided in applicable Federal, State, or Local fair employment laws. If you have a disability or special need that requires accommodation, please contact us at {apply below}