Security Business Partner working in a hybrid model coordinating cybersecurity strategies for Liebherr Hotels. Leading projects and ensuring risk - based decision - making in hospitality technology.
About the role
- Technical Program Manager leading the delivery of security and compliance solutions for Onit’s SaaS platforms. Collaborating with multiple teams to ensure regulatory compliance and best practices.
Responsibilities
- Drive cross-functional initiatives to deliver security and compliance solutions, including resource planning, timeline management, and coordination with external vendors.
- Monitor and manage remediation efforts across applications and infrastructure for issues identified via scans, assessments, and customer feedback.
- Manage and track the execution of key security and compliance such as access reviews, WAF reviews, and other quarterly and yearly BAU activities required by our security and compliance certifications and customer contracts.
- Facilitate the rollout and adoption of the Security Champion Program across teams to level up security knowledge, increase security visibility with tooling, and other key practices.
- Oversee the continued adoption and integration of Vanta for automated compliance monitoring.
- Support selection, onboarding, and coordination of vendors for penetration testing, audits, and other security services.
- Evaluate system designs for security strengths and weaknesses and facilitate technical discussions.
- Act as product owner for security and compliance initiatives, creating user stories, prioritizing work, and guiding teams through grooming and delivery.
- Work with teams across regions to define, design, and deliver secure SaaS solutions.
- Assist with process improvements with incident response, training, runbook definition, and other key areas of the security and compliance program.
- Maintain, track, and report key performance indicators/metrics for various activities in security and compliance.
- Document key practices within the security and compliance function to improve visibility and adoption.
Requirements
- 10+ years in technical project management or similar leadership roles.
- 5+ years in security and compliance domains.
- Strong technical background in the cybersecurity domain which includes experience with security tooling, vulnerability management, 3rd party penetration testing, incident response, thread detection, etc.
- Proven track record executing security and compliance projects for Enterprise SaaS solutions.
- Extensive experience managing the security of cloud-based applications (AWS preferred)
- Ability to navigate trade-offs and prioritize across multiple teams.
- Proficiency in agile methodologies and tools (e.g., Jira, Scrum, Kanban).
- Experience with security and compliance frameworks such as SOC2, NIST, and ISO 27001.
- Strong communication, problem-solving, and collaboration skills.
- Experience with EDR, CSPM, and SEIM security tooling.
- Relevant certifications (CISSP, CCSP, CISM, AWS Security Specialty) are a plus.
- Regulatory, compliance, or legal experience is a plus.
- Experience with containerized applications is a plus.
Benefits
- Health Coverage: Employee and immediate family members.
- Time Away: Flexible paid time off and 10 company paid holidays annually.
- Family Support: Exceptional paid leave for birth parents, non-birth parents, and caregivers. Onit also offers surrogacy and adoption reimbursement.
- Income Protection: 100% employer-paid life and disability insurance.
- Additional Coverage Options: Voluntary benefits including hospital indemnity, critical illness, accident, and even pet insurance.
- Tax-Advantaged Accounts: Flexi, NPS.
- Community Engagement: One paid volunteer day each year to give back to the community.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Senior Cyber Security Engineer responsible for designing scalable security solutions and mentoring team members at Sonepar. Involved in cloud migration and ensuring protection against evolving threats.
Consultant for Cyber Security at UNITY, advising clients on effective security strategies and implementations to build trust in digital futures. Engage in client transformation for sustainable security programs.
Cyber Security Specialist responsible for monitoring and defending against cyberattacks for an international bank in Zurich. Focus on threat intelligence, incident response, and cyber security compliance.
IT Security Specialist managing security processes and responding to incidents for a technical service company. Collaborating on internal audits and enhancing IT security strategies.
Senior Security Researcher analyzing and mitigating complex web threats. Leading automation of security research workflows with AI at Menlo Security.
Head of IT Infrastructure and Security managing strategy and operations for banking IT service. Leading expert teams in IT security, infrastructure, and modernization with a focus on high availability.
Cybersecurity Governance expert managing cybersecurity efforts for international logistics and services company. Enhancing frameworks, reporting, and conducting gap analyses and pen tests.
Activity Security Representative providing multi - disciplined security support for Collateral and Special Access Programs. Responsibilities include document control, inbound and outbound mail processing, and personnel security maintenance.
Cybersecurity Advisor supporting Rapid7’s Managed Services and improving customer security posture. Engaging with clients to provide incident response and advisory relationships while leveraging technical knowledge.