Senior Program Manager, Security Engineering

About the Role

Day-to-day, the Senior Program Manager will lead and manage Kong's cybersecurity programs, collaborating closely with engineering, product, and business teams to define, prioritize, and deliver technical solutions. This role also involves presenting complex technical challenges and resolutions to leadership and stakeholders, necessitating excellent communication and stakeholder engagement skills.

The ideal candidate will have experience working on an Information Security or Cybersecurity team, with a strong program and project management background. The ability to navigate ambiguity, solve complex problems, and influence across teams in a matrixed environment is crucial.

What You Will Do

• Lead and manage cybersecurity programs across the OCISO
• Establish, develop, and track KPIs for program success
• Collaborate with cross-functional teams to define and deliver technical solutions
• Present technical challenges and resolutions to leadership and stakeholders
• Stay current with regulatory and industry standards to inform risk and control strategies
• Build strategies for issue and risk mitigation, contingency planning, and compliance adherence
• Demonstrate ownership and autonomy in managing programs and delivering high-quality results
• Engage with engineers to understand infrastructure, cloud, and network security
• Influence across teams to drive alignment and facilitate solutions
• Navigate ambiguity and solve complex problems with a proactive mindset

What We Are Looking For

• Experience working on an Information Security or Cybersecurity team
• Strong program and project management skills with a deep understanding of security and audit frameworks
• Ability to bridge the gap between Product, Engineering, and Architecture to facilitate solutions
• Excellent communication, stakeholder engagement, and organizational skills
• Technical credibility to engage with engineers and understand infrastructure, cloud, and network security
• Ability to influence across teams and drive alignment in a complex environment
• Comfort navigating ambiguity and solving complex problems
• Bachelor’s degree in Computer Science, Information Technology, or a related field
• 5+ years of experience in Cloud Risk Management, Cybersecurity, or related fields
• 5+ years in a Technical Program Manager or similar role

Nice to Have

• Certifications such as CISSP, CISM, CRISC, CISA, CGEIT, PMP
• Experience with security frameworks like ISO 27001, PCI-DSS, FedRAMP, NIST 800-53
• Knowledge of cloud security platforms and technologies
• Experience working in a hybrid-friendly environment with occasional travel

Benefits and Perks

• Competitive salary
• Opportunities for professional growth and development in a leading tech company
• Hybrid-friendly work environment with flexibility
• Comprehensive health benefits
• Generous PTO policy
• Remote stipend for home office setup
• Access to cutting-edge technologies and tools
• Collaborative and dynamic work culture

• Tip: Highlight your experience with security frameworks and certifications like CISSP or CISM to stand out.
• Be prepared to discuss your approach to risk management and compliance automation in your interview.
• Showcase your ability to communicate complex technical information to non-technical stakeholders.
• Emphasize your experience working in cross-functional teams and influencing team members to drive alignment.
• Prepare examples of how you have navigated ambiguity and solved complex problems in previous roles.
• Consider including relevant projects or certifications in your application to demonstrate your technical credibility.
• When discussing salary, be prepared to talk about your expectations and how they align with industry standards.