Technical Program Manager (TPM) - Security - Afresh San Francisco, California, United States Bookmark Share Print 360 0 0

Listing Description

We are looking for an experienced Security Technical Program Manager to own our security posture, security culture, and InfoSec program.  Security plays a key part in building and maintaining the trust of our customers, and plays a critical role as we continue to scale and integrate more customer data. You will collaborate closely with many functions across the organization to implement security safeguards, manage security risk, and build and maintain trust with our customers and users. You'll play a foundational role in helping define and shape how our security organization grows and evolves as we scale!

  • Work cross-functionally—with Engineering, Product, Deployment, Sales, among others!—and with our security vendors and contractors to ensure a strong security posture and culture

  • Own, evolve, and implement our InfoSec program—policies, procedures, and controls—that form the foundation of our InfoSec program

  • Own the roadmap and execution of our InfoSec program towards achieving continuous SOC2 compliance

  • Surface, prioritize, and track to completion any security assessments, issues, and escalations

  • Clearly communicate our InfoSec program to customers and other external parties

  • Own and manage security training and awareness programs towards building an organizational culture of security awareness

  • Play a key role in building out our security team, consisting both of in-house employees and contractors

Skills and experience
The following represent attributes our ideal candidate possesses. We encourage all highly-qualified candidates with security or compliance experience to apply, even if they do not fulfill all the listed criteria.

  • 3+ years of experience managing InfoSec and compliance projects, processes, procedures, and controls in a technical environment, including experience overseeing and completing audits (SOC2, ISO27001, PCI, etc.)

  • Excellent communication, leadership, interpersonal, and problem-solving skills

  • Demonstrated technical program management experience in managing and delivering on multiple cross-functional projects

  • Ability to take initiative, multitask, prioritize work, and meet deadlines in a fast-changing, ambiguous environment with precision and accuracy

  • Experience using and maintaining InfoSec programs via GRC software (e.g., Tugboat Logic) preferred

  • Experience working on the security and auditing of various cloud technologies (e.g., Azure) preferred

  • Experience working on security as it applies to data integration, onboarding, and management preferred

  • Experience with scripting languages (e.g., Python) to automate processes, such as audit evidence collection, preferred

  • Familiarity with handling customer security assessments preferred

Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided


  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided

About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765