Technical Program Manager III, Information System Security, CISO

Minimum qualifications:

• Bachelor's degree or equivalent practical experience.
• 5 years of experience in program management.
• Experience in information security or risk management.
  
• Experience working with cyber-security incident response processes, tools, and engagements.
  

Preferred qualifications:

• Industry certifications: CISSP, CCSP, GIAC, GCIA, ISACA CRISC.
  
• 5 years of experience in information security.
• Experience with Infrastructure systems, security assessments, and security processes.
  
• Experience with information security governance (e.g., XACTA, RSA Archer, ServiceNOW GRC, etc.).
  
• Knowledge of threat modeling, risk assessments, or security assessments of systems.
• Knowledge of compliance regimes and requirements (e.g., NIST, FedRAMP, DoD SRG, IL2/4/5/6, etc.).
  

About the job

A problem isn’t truly solved until it’s solved for all. That’s why Googlers build products that help create opportunities for everyone, whether down the street or across the globe. As a Technical Program Manager at Google, you’ll use your technical expertise to lead complex, multi-disciplinary projects from start to finish. You’ll work with stakeholders to plan requirements, identify risks, manage project schedules, and communicate clearly with cross-functional partners across the company. You're equally comfortable explaining your team's analyses and recommendations to executives as you are discussing the technical tradeoffs in product development with engineers.

Our goal is to build a Google that looks like the world around us — and we want Googlers to stay and grow when they join us. As part of our efforts to build a Google for everyone, we build diversity, equity, and inclusion into our work and we aim to cultivate a sense of belonging throughout the company.

As a Security Program Manager for Cloud Chief Information Security Office (CISO), You will have the opportunity to help set the direction for security in Google Cloud and partner with existing security teams, privacy teams, and engineering teams. You will help set the focus, direction, and impact of the organization with regards to product security.

Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google’s cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.

The US base salary range for this full-time position is $142,000-$211,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.

Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

• Analyze data to surface high impact programs to reduce security vulnerabilities.
• Surface recommendations for security improvement across multiple domains.
• Drive a data driven strategy mindset in the organization, and the programs identified to reduce risk.
• Bring visibility and support communication across teams to executives and other key stakeholders, and lead teams across multiple disciplines, domains, and levels on programs.
• Develop and maintain the organization's information security governance framework.