Responsible for managing merger, acquisition, divestiture, and spin-off-related cybersecurity activities. The focus will be to automate the assessment process (no coding for this role but must be well-versed in development/interdependencies/cloud). A strong development background is a must.
Requirement Criteria
Demonstrated knowledge of program and project management methodologies and best practices, software, and product development lifecycles (SDLC/PDLC) required.
10+ Years of experience
Expert knowledge of business and management principles involved in strategic planning, financial planning, resource allocation, and production methods, with an ability to think strategically.
Proficient with project-related financial management, including variance analysis, resource forecast to actuals, and capitalized vs. non-capitalized hardware and software management.
Strong understanding and experience with multiple security domains, the Security Software Development Life Cycle (SSDLC) process, Security Assessment processes, and Pen Testing.
Excellent verbal, written, and presentation skills. In particular, demonstrated ability to effectively communicate technical and business issues and solutions to different organizational levels including executive leadership.,
Knowledge
Knowledge of information technology (IT) acquisition/procurement requirements.
Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development, CMMI for Services, and CMMI for Acquisitions).
Knowledge of the acquisition/procurement life cycle process.
Qualities
A bachelor's degree in computer science, information technology, or a related field. At least five years of experience in cyber security, risk management, or audit. Knowledge of cyber security frameworks, standards, and best practices.
Ability to assess and mitigate cyber risks across various domains and systems.
Excellent communication and presentation skills.
Certification in cyber security or risk management (e.g., CISSP, CISM, or CRISC) is preferred.
Understanding of insider threat techniques.
Business awareness mindset, with understanding of business terms and processes.
Knowledge of general regulatory requirements.
Strong documentation skillset.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Project Management and Information Technology
Industries
IT Services and IT Consulting
Referrals increase your chances of interviewing at Donato Technologies, Inc. by 2x