Job Type:

Senior Level Cybersecurity Project Manager - Information Security, Information Services (IS)

RAND's Information Security is seeking a skilled and experienced senior level Cybersecurity Project Manager to lead and oversee InfoSec's cybersecurity initiatives, projects, and programs.

• The ideal candidate will have a strong background in technical project management, cybersecurity, and the expertise to effectively manage and deliver complex cybersecurity projects. This position reports to the Chief Information Security Officer.

• This person will be responsible for documenting RAND's information security roadmap for RAND'S Zero Trust Architecture and program implementation as well as several related projects including Data Loss Prevention, Identity Management, Cybersecurity Maturity Model Certification (CMMC) preparation and cloud security. The project manager will collaborate across organization teams to drive results. The individual will support the CISO in resource demand planning, change management, and project pipeline planning decisions.

Duties and Responsibilities

We seek a skilled and experienced Senior Level Cybersecurity Technical Project Manager to lead and oversee several information security projects and initiatives.

Program Planning and Execution:

• Establish a comprehensive cybersecurity program to align with the organization's security strategy, roadmap, and priorities.
• Provide security program oversight and reporting to ensure regulatory requirements and security commitments are being met by cybersecurity projects.
• Operationalize the security program to standardize processes, monitor progress against key milestones, and track deliverables and artifacts.
• Collaborate with subject matter experts to apply cybersecurity guidelines and best practices and report on security capabilities metrics.
• Develop comprehensive project plans for InfoSec programs, projects, and complex tasks.
• Execute and manage the implementation of cybersecurity projects ensuring on-time delivery.
• Apply project management techniques and best practices to achieve project completion.
• Participate as systems process analyst for security engineers.
• Work with project managers to identify and manage project dependencies.

Technical Expertise:

• Possess an understanding of cybersecurity technologies, tools, and industry best practices.
• Collaborate with cross-functional teams to ensure technical requirements are met.
• Strong background in cloud platforms and cloud security.

Risk Management:

• Identify and assess cybersecurity risks and financial risks associated with projects.
• Implement risk mitigation strategies and ensure compliance with information security regulations including federal government regulations.

Stakeholder Communication:

• Communicate project status, risks, and issues to stakeholders and team members.
• Collaborate with technical and non-technical teams, fostering effective communication.
• Ensure projects, tasks and programs are updated and clearly documented.
• Establish clear and consistent visibility on cybersecurity projects.
• Prepare executive level communications for the CISO and other stakeholders.
• Supports the CISO by refining project metrics and data for board reviews.

Budget Management:

• Manage the financial project portfolio of security projects, tasks, and programs.
• Works with financial analysts to understand project budgets and provide multi-year financial projections.
• Manage project budgets, ensuring optimal resource allocation.

Quality Assurance:

• Implement and oversee quality control measures for cybersecurity projects.
• Conduct regular assessments to ensure compliance with cybersecurity standards.
• Collaborate with the Information Assurance teams to ensure projects meet compliance requirements.

Team Leadership:

• Lead and motivate project teams of cybersecurity professionals and cross-functional teams of diverse technical expertise.
• Collaborate with other Information Services project managers and adopt organizational project practices; ensure project compatibility and schedule of deliverables.
• Foster a collaborative and innovative work environment.

Qualifications:

• In-depth knowledge of cybersecurity technologies, cloud technology, Risk Management Framework (RMF), information assurance and risk management.
• Proven experience (minimum 12 years) in project management with a focus on information technology and cybersecurity.
• Strong communication, leadership, and problem-solving skills.
• Self-starter, motivated strong desire when required drive prototypes.
• Experience in cloud security, vulnerability management, and use of common security tools
• Appropriate technical skills, such as Networking, Servers, and environments
• Ability to direct and coordinate team of contractors and cross-functional teams.

Preferred qualifications:

• Certifications such as PMP, ITIL, or CISM are highly desirable.

Education:

• Bachelor's degree in IT/IS/MIS/CS or similar, or equivalent experience.

Security Clearance:

• This position requires ability to obtain and maintain DoD Secret Security Clearance.

Location:

• Santa Monica, or Washington D.C., or Pittsburgh
• This position offers a hybrid work schedule with the ability to work from home up to 4 days per week.

Salary Range

$147,000 - $224,000

RAND considers a variety of factors when formulating an offer, including but not limited to, the specific role and associated responsibilities; a candidate's work experience, education/training, skills, expertise; and internal equity.The salary range includes base pay plus RAND's sabbatic pay (which provides additional compensation above base pay when vacation is taken). In addition, RAND provides strong benefits including health insurance coverage, life and disability insurance, savings plan, paid time-off and more.

Equal Opportunity Employer: race/color/religion/sex/sexual orientation/gender identity/national origin/disability/vet