Set data in motion.
Staff Security Risk & Compliance Program Manager – Access Management
Location
Texas
Posted
12 hours ago
Salary
$222.1K - $261K / year
Seniority
Lead
Job Description
Staff Security Risk & Compliance Program Manager – Access Management
Confluent
• Own the strategic direction and roadmap for Confluent's access management program • Lead the program to enforce service-to-service authentication • Formalize non-human identity from pilot into a funded, governed program • Own the Access Management Standard and policies for least privilege • Define and track program OKRs and articulate risk posture to leadership • Drive cross-functional delivery with engineering and platform teams • Ensure the access management program integrates with adjacent GRC domains
Job Requirements
- 8+ years in security program management, identity & access management, or related discipline
- 3 years running an enterprise-scale access program in technology
- Deep expertise in identity and access management concepts
- Working knowledge of machine and workload identity
- Strong security engineering fundamentals across cloud infrastructure security controls
- Familiarity with identity platforms and access tooling
- Experience integrating access processes into GRC and access-orchestration platforms
- Strong project management and organizational skills
- Exceptional analytical and problem-solving skills
- Excellent written and verbal communication skills
- Ability to articulate complex technical concepts to diverse audiences
Benefits
- Offers Equity
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Cybersecurity Assessment & Authorization Subject Matter Expert
Magnus Management Group LLCThis is a remote position.
Role Description We are seeking an experienced Cybersecurity Assessment & Authorization (A&A) Subject Matter Expert (SME) to support Department of Defense (DoD) cybersecurity programs. The A&A SME will lead Risk Management Framework (RMF) activities, support the Authorization to Operate (ATO) lifecycle, and provide expert guidance on cybersecurity compliance for complex enterprise environments, including traditional IT, cloud-hosted systems, operational technology (OT), applications, and outsourced IT services. The position requires expertise in NIST SP 800-53, DoD cybersecurity policies, and enterprise risk management. Key Responsibilities - Serve as the cybersecurity SME for Assessment & Authorization (A&A) and RMF activities. - Lead and support the development, review, and maintenance of RMF authorization packages, including SSPs, SARs, POA&Ms, and ATO documentation. - Assess security controls in accordance with NIST SP 800-53 and DoD cybersecurity requirements. - Evaluate vulnerabilities, determine residual risk, and recommend risk mitigation strategies to support authorization decisions. - Conduct security control assessments and continuous monitoring activities to maintain system authorization. - Support enterprise cybersecurity compliance for on-premises, cloud, and hybrid environments. - Advise Information System Owners (ISOs), ISSMs, ISSOs, engineers, and Authorizing Officials throughout the RMF process. - Prepare executive-level briefings and communicate cybersecurity risks, authorization status, and remediation recommendations to senior leadership. - Ensure compliance with DoD cybersecurity policies, DISA STIGs, and applicable federal security standards. Qualifications - Minimum five (5) years of relevant experience in Assessment & Authorization (A&A), Certification & Accreditation (C&A), Risk Management Framework (RMF), and NIST cybersecurity compliance within a DoD environment. - Demonstrated experience conducting security control assessments and authorization reviews for large, complex organizations. - Strong knowledge of NIST SP 800-53, DoDI 8510.01, DoD RMF, continuous monitoring, and cybersecurity governance. - Excellent analytical, technical writing, communication, and briefing skills. Requirements - Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field (or equivalent experience, if permitted by contract). - DoD 8570/8140 Baseline Certification – IAM Level III (e.g., CISSP, CISM, GSLC, or equivalent approved certification). Benefits - 401(k) - Dental insurance - Health insurance - Paid time off - Vision insurance Company Description This is a remote position.
Your own optical store, with the security of a fixed salary from day one
ConfiARTEEn ConfiARTE nos hemos reunido un amplio grupo de directivos y gerentes de empresas con acreditada experiencia para el desarrollo de negocios y personas.
Role Description Dirige tu propia óptica con el respaldo de una gran marca internacional. Convierte tu experiencia en un proyecto empresarial de éxito. En ConfiARTE colaboramos con una importante compañía internacional del sector óptico en la búsqueda de Ópticos-Optometristas colegiados con vocación de liderazgo que quieran dar un paso más en su carrera profesional. Te ofrecemos la oportunidad de convertirte en Director/a y socio/a de tu propia óptica, gestionando un centro propio con el respaldo financiero, operativo y estratégico de una marca consolidada. - Modelo de negocio validado y rentable. - Estudios de viabilidad realizados antes de cada apertura. - Procesos y metodología contrastados. - Acompañamiento continuo durante todas las fases del proyecto. - Incorporación a una red internacional con amplia experiencia en el sector. - Comienzas con una estructura sólida, no desde cero. Emprende con la tranquilidad de tener ingresos garantizados. Sabemos que emprender supone asumir incertidumbre. Por eso este modelo está diseñado para ofrecerte estabilidad desde el primer día. - Salario fijo garantizado antes de la apertura del centro. - Ingresos asegurados durante la fase de lanzamiento y consolidación. - Contrato de gestión que aporta estabilidad económica mientras el negocio alcanza su máximo potencial. Como Director/a de la óptica asumirás un papel estratégico y de liderazgo, combinando la actividad asistencial con la gestión integral del centro. - Dirección y organización global de la óptica. - Atención clínica como Óptico-Optometrista. - Liderazgo, motivación y desarrollo del equipo. - Gestión de resultados económicos y operativos. - Seguimiento de indicadores de negocio. - Fidelización y desarrollo de la cartera de clientes. - Implantación de acciones comerciales y mejora continua del servicio. Durante todo el proyecto tendrás el apoyo de especialistas en diferentes áreas: - Marketing: Campañas nacionales de captación de clientes, estrategias de comunicación y posicionamiento. - Gestión empresarial: Soporte en administración, contabilidad y fiscalidad, gestión de Recursos Humanos, control de compras, stock e indicadores de negocio. - Compras: Condiciones preferentes con proveedores, amplio catálogo de productos y marcas. - Formación continua: Dirección y gestión empresarial, liderazgo de equipos, desarrollo comercial, actualización clínica y técnica. Qualifications - Grado o Diplomatura en Óptica y Optometría. - Colegiación en vigor. - Experiencia mínima de 2 años como Óptico-Optometrista. - Capacidad de liderazgo y orientación al cliente. - Interés por la gestión y el desarrollo de negocio. - Actitud proactiva, compromiso e ilusión por emprender con garantías. Requirements - Titulación oficial en Óptica y Optometría. - Colegiación en vigor. - Mínimo 2 años de experiencia en gabinete y venta en óptica. - Capacidad de liderazgo y orientación a resultados. - Compromiso con un proyecto empresarial a medio y largo plazo. Benefits - Estabilidad económica desde el inicio. - Un modelo de negocio consolidado y rentable. - Desarrollo profesional a largo plazo. - Participación directa en tu propio negocio. - Respaldo permanente de una compañía internacional líder. - Formación y acompañamiento continuo. - Posibilidades reales de crecimiento.
Senior Microsoft Security Consultant
InsightNow is the time to bring your expertise to Insight. We are not just a tech company; we are a people-first company. We believe that by unlocking the power of people and technology, we can accelerate transformation and achieve extraordinary results. Fortune 500 Solutions Integrator with deep expertise in cloud, data, AI, cybersecurity, and intelligent edge. Guiding organizations through complex digital decisions.
Role Description As a Senior Microsoft Security Consultant, you will provide consulting, analysis, design, and/or implementation support for Microsoft 365, Microsoft Purview, Microsoft Entra, Microsoft Defender, and other cloud security and compliance solutions. We will count on you to include project delivery, solution proposal creation and delivery, customization, and integration with the intent of optimizing the customer’s security posture, strengthening governance and compliance, and delivering business outcomes. Along the way, you will get to: - Deliver end to end project success in the Microsoft security and governance space, leading complex and varied engagements as required. - Provide technical leadership and support for customers in highly complex cloud and on-premises environments, with a focus on security, identity, data protection, and compliance. - Provide pre-sales analysis, design, recommendations, and support for security and governance solutions focused around, but not limited to, Microsoft Purview (data governance, data loss prevention, information protection, insider risk, eDiscovery, compliance), Microsoft Entra (identity and access management, conditional access, identity governance), Microsoft Defender, Zero Trust architecture, security assessments, road mapping, and strategy. - Design and implement information protection, data lifecycle, records management, and retention strategies aligned to customer regulatory and compliance requirements. Qualifications - 7+ years of Microsoft 365 and cloud security/governance delivery and design architecture experience. - 5+ years technical consulting experience in a customer facing role. - BS in Computer Science or equivalent experience proving subject matter expertise. - Expert level knowledge of best practices around Microsoft security and governance solutions, including Microsoft Purview, Microsoft Entra ID, Microsoft Defender, information protection, data loss prevention, compliance, Zero Trust, and emerging solutions and technologies within the stack. Benefits - Freedom to work from another location—even an international destination—for up to 30 consecutive calendar days per year.
Senior Technical Program Manager, Security
JumpCloudAn open directory platform for secure, frictionless access from any device to any resource, anywhere
• Apply a single operating standard across every security project. Drive project hygiene at scale: ownership, dates, scope, plans, status. Review and act on AI-generated drafts that flag gaps, propose fixes and surface stale work to project owners. • Own the front door for security requests across Slack channels, ticket forms and direct asks. Classify, route, set expectations with requestors and capture demand as data. Train the AI classification system through your corrections and feedback. • Produce per-person, per-project and program-level status briefs and the reports the security org commits to (weekly operating reviews, monthly engineering-relevant metrics, quarterly roadmap progress). Edit AI-drafted reports for narrative, framing and the relationship context the data does not capture. • Maintain a working model of team capacity and project commitments. Flag slippage early. Surface overcommitment to leadership before dates slip. Apply judgment for factors the data does not see (team morale, growth needs, strategic context). • Inventory and measure the categories of interruption work the team handles (elevation requests, threat model processing, team requests, secret rotations, vulnerability alerts and others). Propose new projects to reduce unplanned work and improve processing efficiency. • Place new work in the priority queue using stated criteria of impact, urgency, dependencies and capacity. Apply judgment for political and strategic context. • Work directly with the AI engineering function as an internal customer. File feature requests, validate output quality, define what good looks like and shape the system over time. You are the product owner for the program management capability that supports your work. • Refine the operating standard as edge cases surface. Propose updates, build team buy-in and roll out changes consistently. • Represent the security organization's program management practice to peers, stakeholders, and leadership across the company. Ensure all program reporting provides an accurate, transparent, and objective view of current progress and risks.

