Security Program Manager (Palo Alto) at TEK NINJAS

Job title: Information Security Program Manager - Customer Trust Duration: 6Months Work Mode: RemoteSchedule Notes:EST Hours preferred. CST also OKTravel: up to 2 times a year to the Palo Alto officeAbout the teamThe Information Security organization advances the overall state of security at client through critical initiativesand coordination of large security projects. Information Security builds technologies, tools, and processes to betterenable teams at client to develop secure software and protect data and systems with appropriate securitycontrols. Information Security also develops systems to monitor and respond to attacks against our assets,provides awareness education to teams on security best practices for data protection, and ensures datagovernance and data sharing relationships with third parties in order to securely protect client information.What You'll Do:Client is seeking an Information Security Program Manager who will oversee activities for the Customer Trustfunction. As a member of this team, you will be a highly motivated individual who will be responsible for theexecution and continuous maturity of these service areas. The successful candidate will need to build and maintainstrong cross-functional relationships across the company, and have exceptional interpersonal skills to managecustomer-facing conversations. To achieve this you must have excellent leadership, communication, and decision making skills.Responsibilities:We are looking for a highly motivated individual that wants to be a part of a front-line customer facing function ofsecurity within client that helps sales close revenue opportunities by sharing clients security posture withcustomers. Key responsibilities include sharing client security posture with customers by interacting with keysecurity stakeholders in the customers organization, responding to customer RFPs, facilitating customer audits andother customer requests that are related to enterprise or product security and compliance capabilities. In this role, you will:Respond to security and compliance portions of customer RFPs in an accurate and timely fashion (i.e.,within agreed upon internal SLAs).Coordinate with other Information Security, Product security and Engineering SMEs, as needed torespond to customers.Build narratives and perform security reviews of new products to ensure there are accurate responses for RFPs.Support security and compliance related customer audits, as requested.Be well-versed in products, particularly as they pertain to security and compliance features and secure SDLC practices.Work with Sales Operations, Field Operations, Sales, Sales Engineering, Marketing, and Engineering teams to intake requests and drive improvements to the customer trust process.Execute operational activities related to the maturity and measurement of the customer trust process to provide high quality services that enable sales.Drive the maturity of the customer facing collateral that disseminates security and compliance related announcements and thought leadership to new customers and prospects.Support the finalization of security and compliance language in customer contracts.Be well versed with industry leading frameworks such as ISO 27001, SOC 2, PCI DSS, HIPAA and HITRUSTQualifications:Required: 3+ years of Customer Trust/supporting RFPs experience in a tech industryHave driven several security and/or operational Information security processes within a company.Experience reviewing and negotiating contracts as it relates to security and compliance obligationsCan implement a solution (design), operational plan, and roadmap to achieve goals.Ability to meet demanding timelines and SLAs, manage changing priorities and execute tasks with minimal supervision.Knows how to estimate work effort and incubate skill sets to achieve team goals.Has knowledge of common security risks, vulnerabilities, and threats and can translate these issues through triage / risk treatment conversations.Not required but preferred: Experience implementing customer facing Trust portals for InfoSec documentation and experience supporting customer audits