Technical Program Manager - Cybersecurity & Risk Mgmt.

Technical Program Manager•Cybersecurity & Risk Mgmt. at Motion Recruitment Technical Program Manager•Cybersecurity & Risk Mgmt. at Motion Recruitment in Los Altos, California Posted in about 18 hours ago.

Type:

full-time

Job Description:

Must be based in or live within commuting distance to San Francisco, CA or Seattle, WA area Hello Looking for a Technical Program Manager with Cybersecurity and Risk Management experience Remote Roles•Must be based in or live within commuting distance to San Francisco, CA or Seattle, WA area

Duration:

6+ months with possibility of longer term extensions Pay rate: $82/hr on W2 If interested, please email your resume to grace.johnson@motionrecruitment.com

Please Note:

W2 ONLY•Per Client Requirement

NO C2C, H1B, TN

Visa, 1099, F1•CPT & OPT •Must be located/authorized to work in the USA without visa sponsorship or transfer now or in the future. No C2C inquiries, please!!

Description:

The Security Technical Program Manager (TPM) will be responsible for the definition, execution, and oversight of security programs focused on client assurance, operational compliance, and platform security. This role requires a strong focus on cross-functional coordination to embed security and legal standardization across client projects and manage ongoing compliance activities. The ideal candidate will be a technical program manager responsible for driving multiple security programs across various security capabilities within the organization. This role will ensure consistent execution, reduced organizational risk, and the successful delivery of complex, cross-functional security initiatives, partnering closely with Security, Engineering, Legal, Compliance, and Client teams.

Key Responsibilities:

Program Management Structure and manage strategic programs required to deliver critical security roadmap objectives. Define milestones, delivery plans, and measurable success metrics for major security initiatives. Track progress against portfolio commitments, analyze program health, and proactively escalate risks to senior leadership. Manage complex cross-functional dependencies across Engineering, Product Management, Legal, Compliance, and other stakeholders. Support quarterly and annual planning cycles, including investment prioritization and justification of security initiatives . Ensure predictable program execution and accountability through structured governance and consistent reporting cadence. Facilitate stakeholder alignment, trade-off decisions (e.g., security vs. speed), and expectation management. Influence without direct authority to drive secure design principles and manage cross-functional projects to ensure delivery. Establish and maintain standardized JIRA workflows, dashboards, and reporting standards to manage program backlogs, priorities, and security remediation efforts across all capabilities. Develop and publish executive-level and operational dashboards to report on program health, key performance indicators (KPIs), security risk posture, and compliance metrics. Execute day-to-day vendor management tasks, including coordinating security due diligence questionnaires, facilitating contract reviews with Legal, and driving the remediation of vendor-related control gaps. Develop and report compliance artifacts for 1LOD, 2LOD, and 3LOD to support risk reduction strategies .

Qualifications:

MUST HAVES

Bachelor's degree in Computer Science, Cybersecurity, or related discipline. 5+ years of experience in technical program management 5+ years of experience in cybersecurity 5+ years of experience in risk management Demonstrated experience in Product Security (AppSec), DevSecOps, AI/ML Security, Identity, Platform security domains Demonstrated experience building and managing strategic roadmaps tied to measurable outcomes. Strong understanding of security compliance frameworks (e.g., PCI, ISO) and operational security domains (e.g., User Access Reviews, AWS security roles, Secure

SDLC/SAST

) Proven ability to partner with engineering and legal teams to drive standardization and manage security due diligence. Excellent written and verbal communication skills, with demonstrated experience facilitating stakeholder alignment and influencing without direct authority.

HIGHLY DESIRED CERTS

CISA (Certified Information Systems Auditor) CRISC (Certified in Risk and Information Systems Control) CIA (Certified Internal Auditor) CISM (Certified Information Security Manager)