Vertex Inc. logo
Vertex Inc.

Vertex is a global biotechnology company that invests in scientific innovation.

Security Program Manager

Security EngineerSecurity EngineerFull TimeRemoteLeadTeam 1,001-5,000

Location

United States

Posted

3 days ago

Salary

$114.5K - $148.8K / year

Seniority

Lead

Job Description

Security Program Manager

Vertex Inc.

Role Description We're hiring a Security Program Manager to serve as the operating backbone of the Office of the CISO. This is a senior individual contributor role for someone who thrives on connecting people, programs, and priorities across a complex enterprise and who uses AI tooling deliberately to multiply their impact. You'll partner directly with the CISO across all pillars of our security organization to drive security initiatives, OKRs, KPIs, and metrics into a single, coherent operating system. This is not a traditional project manager role. You'll own the full lifecycle of security programs—from intake and prioritization through execution and long-term operational health—and you'll succeed through influence, structure, and clarity rather than direct authority. You'll have a direct line to the CISO and immediate visibility across the enterprise. You'll shape how security operates, how it reports, and how it scales, including how the company governs AI as adoption accelerates. If you want to do the highest-leverage program management work of your career in security, this is it. - Run the Security Operating System - Own the operating cadence of the CISO function — weekly staff meetings, monthly program reviews, and quarterly business reviews. - Produce the recurring decision-grade CISO report (executive summary, OKR scorecard, KPI scorecard, portfolio milestones, decisions required). - Maintain a single portfolio view across all security programs — intake, approved, executing, complete — with clear stage gates, owners, and forecasts. - Drive meeting preparation, documentation, stakeholder communication, and follow-through so leadership can focus on judgment calls, not coordination. - Own the OKR, KPI, and Metrics System - Run the quarterly OKR lifecycle across all four security teams — define, align, health check, and score. Ensure every Key Result has a baseline, target, owner, measurement method, and confidence level. - Maintain a KPI dictionary with definitions, formulas, systems of record, thresholds, and cadence — covering posture KPIs, program delivery KPIs, and team execution KPIs. - Ensure 100% of project work is mapped to an OKR or documented as run the business. - Lead monthly trend analysis and tie outcomes back to security and business objectives. - Drive Cross-Functional Program Delivery - Own end-to-end delivery of security programs — risk management, vulnerability management, security awareness, product onboarding into security, M&A security execution, incident readiness, and compliance initiatives. - Act as the primary liaison between Security and Engineering, IT, Product, Legal, Privacy, Finance, People, Sales, and Customer Success. - Manage cross-team dependencies, and decision logs as drivers of action. - Enforce escalation SLAs and stage gates with a small, senior, expert team. - Build Executive & Board Communications - Build recurring deliverables for executive leadership, audit committee, and board updates — executive summaries, slide content, speaker notes, and Q&A prep. - Translate technical security and AI governance topics for non-technical executive audiences with clarity and brevity. - Produce decision-grade options memos with root cause, tradeoffs, recommendation, owner, and deadline. - Multiply Output Through Deliberate AI Use - Use AI tooling (e.g., Microsoft 365 Copilot, Claude, ServiceNow AI) deliberately and daily — for status synthesis, dashboard refresh, meeting recaps, draft communications, evidence collection, and audit response prep. - Identify and execute automation opportunities across security operations, GRC, and compliance workflows. Qualifications - 7+ years of progressive program or portfolio management experience, with 4+ years dedicated to information security, GRC, or product security programs in a SaaS or cloud environment. - Proven track record running OKR/KPI operating systems for security or technology leaders, including executive-ready reporting. - Direct experience coordinating across GRC, Product/Application Security, Security Operations/Incident Response, and emerging AI security and governance functions. - Demonstrated ability to operate as connective tissue across Engineering, Legal, Product, IT, Finance, and Sales — leading through influence rather than authority. - Mastery of program management tooling — Jira, Confluence, ServiceNow, Smartsheet, PowerPoint, Excel/Power BI. - Strong executive written and verbal communication; ability to produce concise, structured, dashboard-style one-pagers and decision memos. - Comfortable enforcing operating discipline (cadences, stage gates, escalation SLAs) in a small, senior, expert team. - Bias for action, ownership, and outcome — not activity. AI Literacy - Hands-on, deliberate daily use of AI tooling in your own workflows (drafting, synthesis, dashboards, evidence preparation, meeting recaps). - Understanding of AI security concerns: model risk, data leakage, prompt injection, third-party AI vendor risk, Shadow AI, AI guardrails, and Responsible AI principles. Preferred Certifications - PMP, PgMP, or equivalent program management certification. - CISSP, CISM, CRISC, or CISA (one strongly preferred). - AI Governance certification (e.g., IAPP AIGP, ISO 42001 Lead Implementer). Other Qualifications - The Winning Way behaviors that all Vertex employees need in order to meet the expectations of each other, our customers, and our partners. - Communicate with Clarity - Be clear, concise and actionable. Be relentlessly constructive. Seek and provide meaningful feedback. - Act with Urgency - Adopt an agile mentality - frequent iterations, improved speed, resilience. 80/20 rule – better is the enemy of done. Don’t spend hours when minutes are enough. - Work with Purpose - Exhibit a “We Can” mindset. Results outweigh effort. Everyone understands how their role contributes. Set aside personal objectives for team results. - Drive to Decision - Cut the swirl with defined deadlines and decision points. Be clear on individual accountability and decision authority. Guided by a commitment to and accountability for customer outcomes. - Own the Outcome - Defined milestones, commitments and intended results. Assess your work in context, if you’re unsure, ask. Demonstrate unwavering support for decisions. Pay Transparency Statement US Base Salary Range: $114,500.00 - $148,800.00. Base pay offered to new hires may vary based upon factors including relevant industry and job-related skills and experience, geographic location, and business needs. The range displayed does not encompass the full potential of the role, which allows for further growth and career progression. In addition, as a part of our total compensation package, this role may be eligible for the Vertex Bonus Plan (VOB), a role-specific sales commission/bonus, and/or equity grants. Learn more about Life at Vertex and connect with your recruiter for more details regarding Vertex's compensation and benefit programs. In no case will your pay fall below applicable local minimum wage requirements.

Related Categories

Related Job Pages

More Security Engineer Jobs

Full TimeRemoteTeam 5,001-10,000H1B No Sponsor

• Establish overall systems architecture vision and ensure that specific components are designed, procured, installed and used • Responsible for company level compliance and architectural standards, guidelines, policies, frameworks, and reference models • Oversee all company-level IT architecture components (e.g., data architecture, application/software architecture, technical architecture) • Establish a compliant protected information system (CUI) environment and develop a sustainable model for IT and Cybersecurity future function including company structure and relations with an external service provider • Oversee incident remediation activities to ensure compliance with WGS policies and security and nuclear industry best practices • Lead the IT and Security teams through the Cybersecurity Maturation Model Certification and C3PAO assessment including writing and reviewing WGS procedures and verifying and validating that the WGS process is within compliance • Oversee the Managed Service Provider (MSP) to ensure all company IT and cybersecurity requirements are met • Develop a framework for performing and overseeing the performance of IT risk assessments observing established company risk management policies for projects and of suppliers / vendors and within compliance requirements • Identify, recruit, develop Cybersecurity and IT staff and meet daily IT requests including installing for the WGS IT end-users • Oversee the development framework for performing technical vulnerability and penetration assessments • Maintain Main Risk Indicators, including metrics to ensure measurement of risk and threats • Conduct or oversee self-inspections and audits on WGS protected systems at least annually; document, track, and resolve corrective actions • Establish and oversee the process for capturing, assessing, decisioning, and reporting risks across the IT organization, both internally and coordinating with the overarching Westinghouse protocols • Oversee the development of the Security Controls Traceability Matrix (SCTM) to document implementation of applicable NIST 800-53 and 800-171 controls • Collaborate with the Security Team, Program Management, and MSP to address incidents, reportable events, and non-compliance findings, ensuring reporting to appropriate authorities and leadership

Pennsylvania
$179K - $206K / year

Coordinador de Embarques

Magna International

Founded in 1957, Magna International is now one of the largest automotive suppliers in the world. Headquartered in Aurora, Ontario, Canada, the company maintains more than 320 manu

Full TimeRemoteTeam 171,000Since 1957

Job descriptions may display in multiple languages based on your language selection. What we offer:At Magna, you can expect an engaging and dynamic environment where you can help to develop industry-leading automotive technologies. We invest in our employees, providing them with the support and resources they need to succeed. As a member of our global team, you can expect exciting, varied responsibilities as well as a wide range of development prospects. Because we believe that your career path should be as unique as you are. Group Summary:Cosma provides a comprehensive range of body, chassis and engineering solutions to global customers. Through our robust product engineering, outstanding tooling capabilities and diverse process expertise, we continue to bring lightweight and innovative products to market. Job Responsibilities: Coordinar y asegurar el cumplimiento a los requerimientos de los clientes tanto de producción regular como refacciones por medio del seguimiento a los programas diarios de embarque. Asegurar la generación de la facturación información vía EDI en tiempo y de forma correcta. Dar seguimiento a las proyecciones de los requerimientos a futuro de los diferentes clientes. Ser capaz de coordinar el proceso de embarque y de asegurar la disponibilidad de equipo vacío para facilitar el traslado del producto terminado en tiempo y forma con el cliente. Ser capaz de administrar el área de embarques garantizando el cumplimiento de los procesos para dar cumplimiento a los requerimientos del cliente. ESCOLARIDAD/EDUCACIÓN: Licenciatura en Comercio Exterior / Licenciatura en Administración de empresas / Ingeniería Industrial FORMACIÓN/EXPERIENCIA: Mínima de 3 años en la Industria Automotriz en puesto similar - CONOCIMIENTOS TECNICOS: - APICS - Cadena de Suministro - Conocimiento de sistemas de embarques de los clientes - Estadística básica - Metodología de solución de problemas - Administración de almacenes - Módulos que le apliquen de SAP - Office - Procedimientos, instrucciones y formatos del área que le apliquen - SPC Básico IDIOMAS: Inglés Avanzado Awareness, Unity, Empowerment:At Magna, we believe that a diverse workforce is critical to our success. That’s why we are proud to be an equal opportunity employer. We hire on the basis of experience and qualifications, and in consideration of job requirements, regardless of, in particular, color, ancestry, religion, gender, origin, sexual orientation, age, citizenship, marital status, disability or gender identity. Magna takes the privacy of your personal information seriously. We discourage you from sending applications via email or traditional mail to comply with GDPR requirements and your local Data Privacy Law. AI-Assisted Screening DisclosureAs part of our commitment to a fair, consistent, and efficient recruitment process, we may use artificial intelligence (AI) tools to assist in the initial screening of applications submitted through our Workday system. These tools help identify qualifications and experience that align with the role requirements. Please note that AI is used solely to support our recruiters. Final decisions are always made by the hiring manager and the hiring team. Importantly, no applicant data is shared externally through these AI tools. All information remains securely within our systems and is handled in accordance with our privacy and data protection policies. Under conditions defined by applicable law, you may have the right to request an explanation of how AI is used to support decision-making.If you have any questions or concerns about this process, feel free to contact our Talent Attraction team. Worker Type: Regular / Permanent Group: Cosma International

Mexico
CrowdStrike logo

Security Advisor I – Falcon Complete

CrowdStrike

CrowdStrike has redefined security with the world’s most advanced cloud-native platform that protects and enables the people, processes and technologies that drive modern enterprise. Tested and proven, the world's largest organizations trust CrowdStrike to stop breaches with unparalleled protection against the most sophisticated cyberattacks. The CrowdStrike culture has been built upon our Core Values since the day we began. We are Fanatical About the Customer, Relentlessly Focused on Innovation and believe that our Limitless Passion drives Unlimited Potential for every CrowdStriker. As a purpose-built remote-first company, we believe cultivating a connected culture for every employee, no matter where they are in the world, is a key ingredient in building a high-performing, diverse team. We don’t have a mission statement. We’re on a mission—to stop breaches. Ready to join a mission that matters?

Full TimeRemoteTeam 5,001-10,000Since 2011H1B Sponsor

• Assess customer’s Falcon environment and ensure alignment with Falcon Complete standards. • Provide Falcon Complete customers with recommendations that align to improved security. • Create and recommend remediation for components of CrowdStrike products that may lead to improved security posture. • Contact customers directly upon identification of misalignment with Falcon Complete standards. • Document, update, and resolve all customer related issues in accordance with established procedures and SLAs. • Develop and provide customers with service reports and stats as requested. • Partner with internal teams to ensure customer satisfaction. • Liaise with support team to help troubleshoot and coordinate efforts to resolve technical issues.

California
$85K - $120K / year
CrowdStrike logo

Security Advisor II – Falcon Complete

CrowdStrike

CrowdStrike has redefined security with the world’s most advanced cloud-native platform that protects and enables the people, processes and technologies that drive modern enterprise. Tested and proven, the world's largest organizations trust CrowdStrike to stop breaches with unparalleled protection against the most sophisticated cyberattacks. The CrowdStrike culture has been built upon our Core Values since the day we began. We are Fanatical About the Customer, Relentlessly Focused on Innovation and believe that our Limitless Passion drives Unlimited Potential for every CrowdStriker. As a purpose-built remote-first company, we believe cultivating a connected culture for every employee, no matter where they are in the world, is a key ingredient in building a high-performing, diverse team. We don’t have a mission statement. We’re on a mission—to stop breaches. Ready to join a mission that matters?

Full TimeRemoteTeam 5,001-10,000Since 2011H1B Sponsor

• Assess customer’s Falcon environment and ensure alignment with Falcon Complete standards. • Provide Falcon Complete customers with recommendations that align to improved security. • Create and recommend remediation for components of CrowdStrike products that may lead to improved security posture. • Contact customers directly upon identification of misalignment with Falcon Complete standards. • Document, update, and resolve all customer related issues in accordance with established procedures and SLAs. • Develop and provide customers with service reports and stats as requested. • Partner with internal teams to ensure customer satisfaction. • Liaise with support team to help troubleshoot and coordinate efforts to resolve technical issues.

California
$100K - $155K / year