CrawlJobs Logo

Senior Security Risk & Compliance Program Manager

confluent.io Logo

Confluent

Location Icon

Location:

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

163400.00 - 192000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

We’re not just building better tech. We’re rewriting how data moves and what the world can do with it. With Confluent, data doesn’t sit still. Our platform puts information in motion, streaming in near real-time so companies can react faster, build smarter, and deliver experiences as dynamic as the world around them. As a Security Technical Program Manager in the Trust & Security organization, you will play a critical role in fulfilling the vision to secure Confluent’s platform and cloud offerings through a combination of technical expertise, security experience, and excellent program management skills.

Job Responsibility:

  • Mentor other Security Program Managers on execution and delivery
  • Work with stakeholders to drive critical security initiatives for the company
  • Manage and scale security programs by defining milestones and success criteria, resource allocation, and successful on-time delivery
  • Proactively identify and resolve roadblocks/challenges affecting projects
  • Drive automation and process improvements for security programs
  • Explain technical architecture, decisions, and tradeoffs to both engineering and other functions
  • Work with Engineering, Product, and Security leadership to streamline and drive our projects on a predictable schedule
  • Participate in operational security work, including incident response and vulnerability management

Requirements:

  • 5+ years of relevant industry experience
  • Strong foundational knowledge in security domains with expertise in at least one
  • Experience in running long-term security programs that deliver iterative improvements and risk reduction over time
  • Experience in operational security work, such as incident response and vulnerability management
  • Experience driving complex and large programs across organizations
  • Strong communication, interpersonal, and leadership skills to work with both engineering and non-technical stakeholders
  • Experience managing end-to-end lifecycle of technical projects
  • Bachelor's degree in Computer Science, a related field, or equivalent practical experience

Nice to have:

  • Experience in areas such as release management, cost modeling, and capacity planning
  • Strong technical skills
  • Experience in actual design and development of software programs
  • Experience in leveraging artificial intelligence to manage programs at scale
What we offer:
  • Remote-First Work
  • Robust Insurance Benefits
  • Flexible Time Away
  • The Best Teammates
  • Experience Ambassadors
  • Open and Honest Culture
  • Well-Being and Growth
  • Offers Equity

Additional Information:

Job Posted:
April 05, 2026

Work Type:
Remote work
Icon
Confluent - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Security Risk & Compliance Program Manager

Senior Compliance Program Manager

We are seeking an experienced Senior Compliance Program Manager to lead our Fede...
Location
Location
United States , San Francisco
Salary
Salary:
116100.00 - 186500.00 USD / Year
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Technology, Cybersecurity, or a related field
  • A Master's degree or relevant experience with certifications (e.g., CISSP, CISM, PMP) are preferred
  • A minimum of 10 years of experience in compliance program management, with a focus on FedRAMP or similar regulatory frameworks
  • In-depth knowledge of FedRAMP, IRAP, ISMAP requirements, processes, and documentation, including the authorization process and continuous monitoring
  • Demonstrated experience in managing compliance audits and assessments, preferably with experience working with 3PAOs
  • Strong understanding of cloud computing technologies and security practices, particularly in a government context
  • Excellent project management skills, with the ability to manage multiple projects and priorities effectively
  • Strong analytical and problem-solving skills, with a keen attention to detail
  • Excellent communication and interpersonal skills, with the ability to engage and influence stakeholders at all levels
Job Responsibility
Job Responsibility
  • Oversee and manage the entire FedRAMP compliance lifecycle, from initial assessment through continuous monitoring
  • Develop and implement compliance strategies to meet FedRAMP requirements and maintain authorization
  • Prepare, maintain, and update all necessary documentation, including System Security Plans (SSPs), policies, procedures, and incident response plans
  • Ensure timely and accurate reporting of compliance status, issues, and risks to senior management and stakeholders
  • Develop and manage Plans of Action and Milestones (POAMs) to address identified compliance gaps and vulnerabilities
  • Track and monitor the progress of POAMs, ensuring timely resolution and reporting of status to stakeholders
  • Coordinate and manage internal and external audits and assessments to ensure compliance with FedRAMP standards
  • Act as the primary point of contact for third-party assessment organizations (3PAOs) and facilitate the audit process
  • Identify, evaluate, and mitigate risks associated with FedRAMP compliance
  • Develop and implement risk management plans to address potential compliance gaps
What we offer
What we offer
  • health and wellbeing resources
  • paid volunteer days
  • Fulltime
Read More
Arrow Right

Senior Third-Party Security Risk Analyst

As a Senior Third-Party Security Risk Specialist at Ledger, you will play a vita...
Location
Location
France , Paris
Salary
Salary:
Not provided
https://www.ledger.com Logo
Ledger
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree in Information Security, Cybersecurity, or a related field
  • 5+ years of progressive experience in third-party risk management, with a strong background in audit, risk management, compliance, or a related control function within a complex organization
  • Proven project management skills with the ability to manage complex, cross-functional projects and maintain comprehensive documentation
  • In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework) and experience in applying them to third-party risk management and regulatory requirements
  • Excellent analytical and problem-solving skills with a focus on identifying root causes and developing effective solutions
  • Strong communication and interpersonal skills, including the ability to influence and negotiate with vendors and stakeholders at all levels
Job Responsibility
Job Responsibility
  • Conduct comprehensive security assessments of third-party vendors, including reviewing their security policies, procedures, and controls
  • Proactively identify and evaluate potential security/privacy risks associated with a particular focus on those that could impact Ledger's reputation, financial stability, and customer trust
  • Develop and implement risk mitigation strategies to address identified vulnerabilities
  • Lead the collaboration with vendors to remediate security gaps and ensure compliance with Ledger's stringent security requirements
  • Establish and maintain a robust vendor security monitoring program, driving continuous improvement in vendor security posture and compliance
  • Develop, implement, and continuously improve Ledger's third-party security risk management program, including policies, standards, procedures, and tools
  • Prepare reports and presentations on vendor security risks and mitigation efforts to senior management, stakeholders, and the Comex
  • Participate in audits as part of the Privacy audit program according to the agreed annual audit plan
What we offer
What we offer
  • Equity: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow
  • Flexibility: A hybrid work policy
  • Social: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
  • Medical: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage
  • Well-being: Personal development, coaching & fitness with our dedicated partners
  • Vacation: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days
  • High tech: Access to high performance office equipment and gadgets
  • Transport: Ledger reimburses part of your preferred means of transportation
  • Discounts: Employee discount on all our products
  • Fulltime
Read More
Arrow Right

Legal Third-Party Management and Information Security Risk Lead

As part of the Legal Outside Counsel, Third Party Management and Operations team...
Location
Location
United Kingdom , Belfast
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to assess residual risk in complex vendor environments and make sound defensible recommendations
  • Experience applying risk-based frameworks to prioritize issues and mitigation efforts
  • Strong interpersonal skills for engaging legal, compliance, technology, procurement and senior risk stakeholders
  • Proficiency in creating clear and concise reports dashboards and governance experience
  • Leading or supporting cross functional projects, ability to support risk transformation initiatives, and integrate evolving legal tech and regulatory guidance into assessment methodologies
  • Bachelor’s degree or equivalent
Job Responsibility
Job Responsibility
  • Manage and oversee a set of complex initiatives that span multiple lines of business in the Cyber Security (CS), Information Security (IS) and Third-Party Risk Management (TPRM) space for Global Legal Solutions
  • Assess the risks and effectiveness of Third Party IS processes and controls based on enterprise requirements ensuring the IS risk is within tolerance
  • Evaluate the design and execution of the Legal IS Program, identifies potential enhancements and drives implementation of governance, methodologies and tools required for the effective oversight of Third-Party Management IS risk to continually strengthen the Program
  • Assist the day-to-day activities within the TPM Risk and Info Sec group
  • Monitor, track and control outcomes to resolve issues, conflicts, dependencies and critical path deliverables related to issues and gaps found in the TPISA process
  • Drive implementation of enterprise Third Party Management controls required to be assessed as part of the Managers Control Assessment, reviews results, and determines if remediation actions are appropriate
  • Document control design, testing methodology, and evidence for effectiveness reviews in compliance with Citi's Risk and Control Standards
  • Contribute to quarterly control certifications, issue management processes and audit engagements
What we offer
What we offer
  • Generous holiday allowance starting at 27 days plus bank holidays
  • increasing with tenure
  • A discretional annual performance related bonus
  • Employee Assistance Program
  • Pension Plan
  • Paid Parental Leave
  • Special discounts for employees, family, and friends
  • Access to an array of learning and development resources
  • Private medical insurance packages to suit your personal circumstances
  • Fulltime
Read More
Arrow Right

Canada Compliance Risk Management Sr. Analyst

The AVP, Canada Compliance Risk Management Sr. Analyst serves as a senior compli...
Location
Location
Canada , Toronto
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of experience
  • Knowledge of Compliance laws, rules, regulations, risks and typologies
  • A general understanding of securities trading and corresponding regulations with proven ability to prioritize and manage multiple responsibilities
  • Excellent research and analytical skills
  • Excellent written and verbal communication skills
  • Must be a self-starter, flexible, innovative and adaptive
  • Has the ability to operate with a limited level of direct supervision
  • Can exercise independence of judgement and autonomy
  • Acts as subject matter expert (SME) to senior stakeholders and/or other team members
  • Demonstrated interpersonal skills with the ability to work collaboratively and with people at all levels of the organization, as well as the ability to navigate a complex organization
Job Responsibility
Job Responsibility
  • Reviews and analyzes surveillance and trading activity data and assists with developing, maintaining, and performing surveillance reviews and reports as necessary
  • Identifies potential risks and escalates the issue to a designated supervisor/manager and the respective product coverage areas, as appropriate
  • Provides troubleshooting support on a wide variety of projects, including ad-hoc projects and regulatory exams directed by other organizations within the compliance and legal departments, to ensure they remain compliant with regulatory and legal requirements
  • Monitors adherence to ICRM’s risk policies and relevant procedures and remains abreast of any changes to regulations and/or policies to prevent risk and protect the organization
  • Assists with editing and maintaining ICRM program related materials and interacts with other areas within Citi in a collaborative manner to provide best-in-class surveillance support
  • Influences senior managerial decisions by advising, counseling, and contributing to team deliverables and projects that impact both the team and the business
  • Acts as a subject matter expert (SME) to senior stakeholders and/or other team members
  • Assumes both formal and informal leadership roles within team and assists in training and mentoring new team members upon their arrival
  • Assesses and mitigates risks to ensure that team projects and deliverables are uninterrupted, and that Citigroup’s reputation is safeguarded when business decisions are made
  • Appropriately assesses risk when business decisions are made, demonstrating particular consideration for the company's reputation and safeguarding Citi, its clients and assets
  • Fulltime
Read More
Arrow Right

Senior Third-Party Security Risk Analyst

As a Senior Third-Party Security Risk Specialist at Ledger, you will contribute ...
Location
Location
France , Paris
Salary
Salary:
Not provided
https://www.ledger.com Logo
Ledger
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree in Information Security, Cybersecurity, or a related field
  • 5+ years of progressive experience in third-party risk management, with a strong background in audit, risk management, compliance, or a related control function within a complex organization
  • Proven project management skills with the ability to manage complex, cross-functional projects and maintain comprehensive documentation
  • In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework) and experience in applying them to third-party risk management and regulatory requirements
  • Excellent analytical and problem-solving skills with a focus on identifying root causes and developing effective solutions
  • Strong communication and interpersonal skills, including the ability to influence and negotiate with vendors and stakeholders at all levels.
Job Responsibility
Job Responsibility
  • Conduct comprehensive security assessments of third-party vendors, including reviewing their security policies, procedures, and controls
  • Proactively identify and evaluate potential security/privacy risks associated with a particular focus on those that could impact Ledger's reputation, financial stability, and customer trust
  • Develop and implement risk mitigation strategies to address identified vulnerabilities
  • Lead the collaboration with vendors to remediate security gaps and ensure compliance with Ledger's stringent security requirements
  • Establish and maintain a robust vendor security monitoring program, driving continuous improvement in vendor security posture and compliance
  • Develop, implement, and continuously improve Ledger's third-party security risk management program, including policies, standards, procedures, and tools
  • Prepare reports and presentations on vendor security risks and mitigation efforts to senior management, stakeholders, and the Comex
  • Participate in audits as part of the Privacy audit program according to the agreed annual audit plan.
What we offer
What we offer
  • Equity: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow
  • Flexibility: A hybrid work policy
  • Social: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
  • Medical: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage
  • Well-being: Personal development, coaching & fitness with our dedicated partners
  • Vacation: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days
  • High tech: Access to high performance office equipment and gadgets
  • Transport: Ledger reimburses part of your preferred means of transportation
  • Discounts: Employee discount on all our products.
  • Fulltime
Read More
Arrow Right

Security Strategy and Risk Management Head of Department

The Security Strategy and Risk Management Head of Department is a senior leaders...
Location
Location
United States , Irvine
Salary
Salary:
181240.00 - 259160.00 USD / Year
haeaus.com Logo
Hyundai AutoEver America
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15–20 years of progressive experience across Information Security, GRC/Risk Management, customer/vendor security management and/or strategic operations
  • Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, Business Administration or a related discipline
  • Excellent stakeholder management, communication, and leadership skills
  • Demonstrated experience working across multi-disciplinary teams to achieve common objectives
  • Proficient in English for effective communication and coordination
Job Responsibility
Job Responsibility
  • Lead enterprise-wide risk assessment, risk issue management, and risk exception management
  • Maintain and enhance risk management frameworks aligned with industry best practices
  • Deliver insightful, data-driven risk reporting to senior leadership
  • Oversee the Information Security compliance and control assurance program
  • Lead coordination of internal and external audits, assessments, and certification processes
  • Lead the Third-Party Risk Management (TPRM) program
  • Oversee creation, governance, maintenance, and communication of Information Security policies, standards, and procedures
  • Direct the Information Security Training and Awareness program
  • Partner with the CISO to define and maintain the Information Security strategic roadmap
  • Lead budget planning, forecasting, tracking, and optimization for the full Information Security organization
  • Fulltime
Read More
Arrow Right

D&T Senior Program Manager - Networks

The Snr. Programme Manager is responsible for managing and overseeing complex IT...
Location
Location
Salary
Salary:
Not provided
aramex.com Logo
Aramex
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A university degree in Management Information Systems, computer Science or related field is essential
  • Minimum 12–15 years of experience in IT
  • At least 9–11 years in leading complex, multinational network and infrastructure projects
  • Experience in: Global SD-WAN rollouts and ISP consolidation
  • Network segmentation and security zone implementations
  • On-prem to cloud network transformation across hybrid environments (Azure, AWS, OCI)
  • Strong understanding of network governance, performance management (NPM/APM), cloud connectivity models (VPN/Direct Connect/ExpressRoute), and high availability designs
  • Strong understanding of IT Governance, processes, and methodologies – waterfall and agile methodologies and qualifications
  • Excellent leadership, communication, and analytical skills
  • Excellent Knowledge of performance evaluation techniques and key metrics
Job Responsibility
Job Responsibility
  • Manage and oversee complex IT projects from inception to completion
  • Ensure projects are delivered on time, within budget, and to the specified quality standards
  • Strategic planning, resource allocation, risk management
  • Lead IT project teams to achieve project goals
  • Maintain strong communication with stakeholders
  • Manage project budgets
  • Ensure compliance with relevant regulations and quality standards
  • Monitor project performance
  • Implement continuous improvement practices
  • Document all project activities
Read More
Arrow Right

Senior Program Manager

The Senior Program Manager (SPM) will lead program execution, financial manageme...
Location
Location
United States , Crane
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Engineering, Business, Program Management, or related field
  • 7+ years of program or project management experience supporting DoD programs
  • experience with NSWC Crane strongly preferred
  • Proven success leading multi-disciplinary technical programs of similar size and scope
  • Demonstrated ability to manage budgets, schedules, risks, and performance for complex programs
  • Strong understanding of DoD acquisition processes, FAR/DFARS, and contract types (CPFF, T&M, FFP)
  • Exceptional communication skills, with experience briefing senior government leadership
  • Active DoD Secret clearance required
  • TS/SCI eligible preferred
  • PMP certification highly desirable
Job Responsibility
Job Responsibility
  • Provide overall leadership, direction, and management of program activities aligned with NSWC Crane MXM Division mission objectives
  • Serve as the primary interface with government customers, contracting officers, and technical representatives
  • Oversee planning, execution, tracking, and reporting of all program tasks, milestones, and deliverables
  • Manage program budgets, staffing, procurement actions, and forecasts
  • ensure compliance with DoD financial and contractual requirements
  • Lead risk management, issue resolution, and continuous process improvement initiatives
  • Coordinate cross-functional teams (engineering, logistics, finance, contracting, cybersecurity) to ensure seamless program execution
  • Prepare and deliver high-quality briefings, reports, and contract documentation
  • Ensure adherence to all applicable DoD policies, security standards, and QA processes
  • Mentor junior staff and support talent planning for program growth and sustainment
Read More
Arrow Right
Remote jobs Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog Salaries About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy