Reserv is building the industry-leading third-party administrator capability in the insurance industry. To do this, Reserv seeks a candidate to join the Security team as a
Cybersecurity Program Manager. The Cybersecurity Program Manager will be responsible for managing complex efforts, participating in broader planning efforts, and, in some cases, leading strategic elements of programs.
The Cybersecurity Program Manager is a hands-on technical role focused on overseeing and operationalizing efforts that drive daily success. Daily efforts will vary between vendor management, compliance audit management, and complicated IT transactions, but the mission remains the same: ensuring a secure and efficient Security and IT environment for Reserv. Successful candidates will bring experience managing complexity, building programs, and understanding software development, all while working in a heavily regulated environment. This position requires novel problem-solving, continuous learning, and the ability to adapt quickly to new technologies.
What to expect- Assess, build, and manage complex initiatives with the VP of Security
- Manage multiple projects simultaneously, ensuring successful completion and executive-level communications
- Develop, manage, and oversee the most critical and complex vendor relationships to empower IT and Security, including the third-party vendor risk management program
- Manage and assist the DPO with privacy initiatives spanning multiple regulatory environments
- Manage, lead, and deliver confidence across multiple regulatory and industry audit programs (both for customer and external assurance)
- Identify gaps and suggest solutions to efficiently improve security throughout development processes
- Serve as a "voice of security" to the organization, ensuring the security mission is well-understood and appreciated
- Deliver customer confidence and trust initiatives, including operationalizing efficiency in the customer due diligence process
- Improve, prepare, and empower Security and Technology executives to lead critical committees
- Manage and lead all aspects of policy and standards development across the Security and IT organization
- Distill and develop executive reporting programs to fulfill OKRs, working with Director and VP-level leadership to understand goals that will translate to metrics and measures
Does this sound like you?- Minimum of 7 years of experience directly working in a cybersecurity role
- Strong written and verbal communication skills
- Working understanding of NIST Cybersecurity Framework
- Technical proficiency with MacOS, Windows, Unix/Linux
- Demonstrated proficiency across multiple audit and regulatory frameworks
- Knowledge of current threat actors, TTPs, and MITRE ATT&CK framework
- Experience with cloud-based productivity platforms such as Google Workspace and/or Microsoft 365
- Experience performing risk assessments, drafting/maintaining cybersecurity policies and procedures, and constructing after-action reports with precise details
- Experience selecting vendors and managing relationships
Icing on the cake- Bachelors degree in Cybersecurity, IT, or related field
- Deep understanding of regulated environments
- Technical proficiency with common cybersecurity tools such as those found in SIEM/SOAR, EDR, or other toolkits
- Security certifications such as those from ISC2 (i.e. CISSP)
Benefits- Generous health-insurance package with nationwide coverage, vision, & dental
- 401(k) retirement plan with employer matching
- Competitive PTO policy - we want our employees fresh, healthy, happy, and energized!
- Generous family leave policy
- Work from anywhere to facilitate your work life balance
