Senior Program Manager – Cyber Security Program Governance
Job title: Senior Program Manager – Cyber Security Program GovernanceLocation: Portland, ORFulltimePosition OverviewThe Senior Delivery Manager – Cyber Security Program Governance owns the execution, engineering velocity, and compliance mapping of our core security pillars. Working in close alignment with the Chief Security Officer (CSO), this Portland-based, onsite leader manages the technical delivery teams responsible for safeguarding enterprise infrastructure. The role demands an expert coordinator who can balance rigorous GRC standards with aggressive technical rollouts in Splunk enterprise monitoring, IAM lifecycles, and advanced Network Security protocols.Essential Duties and ResponsibilitiesDrive execution velocity across dedicated engineering pods handling IAM migrations, Network Security architecture enhancements, and Splunk SIEM integrations.Manage the security program risk register, ensuring architectural vulnerabilities and compliance gaps are prioritized and remediated on schedule.Collaborate with the CSO to define, track, and report on security Key Performance Indicators (KPIs) and operational delivery metrics.Oversee the operationalization of GRC policies, ensuring engineering implementations align perfectly with internationally recognized compliance baselines.Guide technical teams on data onboarding strategies and Common Information Model (CIM) compliance within Splunk to maximize threat detection capabilities.Serve as the primary escalation point for delivery bottlenecks, resource constraints, and cross-departmental dependencies.Required Skills and QualificationsExperience: 15+ years leading large-scale, complex technical projects, with a heavy emphasis on enterprise infrastructure security and compliance delivery.Executive Presence: Strong experience prepping presentation materials, risk dashboards, and delivery timelines directly for a CSO or executive steering committee.Technical Domain Depth:Splunk / SIEM: Deep operational understanding of log aggregation, search heads, forwarders, and security analytics.GRC: Practical experience driving audit readiness, gap analysis, and policy enforcement (NIST, ISO, etc.).IAM & Network Security: Proven experience delivering enterprise identity management solutions alongside firewall, routing, and cloud network protections.Preferred CertificationsCISSP (Certified Information Systems Security Professional)CISM (Certified Information Security Manager)CRISC (Certified in Risk and Information Systems Control)