cyber security program manager.

job summary:
Randstad Digital is hiring and we're looking for someone like YOU to join our team! If you are seeking a new opportunity, looking to grow in your career, or you know someone who is - we want to hear from you! Take a look at the below opportunity, or feel free to visit RandstadUSA.com to view and apply.

 
 
location: Charlotte, North Carolina
job type: Contract
salary: $48.59 - 53.59 per hour
work hours: 8am to 5pm
education: Bachelors
 
responsibilities:
What You'll Do

Remediation Validation & Tracking (Primary Focus)

- Serve as the central owner for the remediation validation process across all third party and internal penetration test findings.

- Create, assign, and manage Jira validation tickets to ensure every finding is properly tracked through closure.

- Oversee the full validation lifecycle-monitoring progress, identifying blockers, escalating delays, and driving timely completion.

- Collaborate with remediation owners to clarify requirements, ensure evidence quality, and verify reproducibility of fixes.

- Provide recurring updates to leadership on validation status, overdue items, systemic risks, and cross team remediation performance.

- Ensure closure documentation is complete, accurate, and compliant with program standards.

________________________________________

Penetration Test Engagement Management

- Manage third party penetration testing engagements from initiation to closure.

- Lead scoping sessions to define test objectives, environment requirements, and timelines.

- Coordinate tester onboarding, including account creation, access provisioning, and environment preparation.

- Track communication during active testing, resolving issues and ensuring smooth execution.

- Host debrief sessions with testers and internal teams to confirm understanding of findings and remediation expectations.

________________________________________

Reporting & Documentation

- Receive, review, and process penetration test reports from third party vendors.

- Enter validated findings into the Security Findings Tracking Tool (SFTT) or designated platforms.

- Ensure consistent, accurate, and complete documentation of findings, severity ratings, and business impact.

________________________________________

Report Quality Assurance

- Assign test reports to QA reviewers and oversee QA workflow management.

- Monitor QA related Jira tickets to ensure timely review, escalation, and closure.

- Validate that reports meet program standards for clarity, reproducibility, completeness, and quality.

- Collaborate with testers and internal stakeholders to address inconsistencies, request revisions, and maintain quality controls.

________________________________________

Monthly Reporting & Metrics

- Run and distribute monthly penetration testing and remediation metrics reports.

- Summarize key insights including testing volume, findings trends, and remediation progress.

- Maintain consistent reporting archives and support leadership with data driven insights.

________________________________________

Continuous Improvement

- Identify opportunities to enhance program workflows, templates, validation standards, and operational processes.

- Analyze recurring issues and trends to drive process improvements and reduce risk exposure.

- Support audits, compliance reviews, and other internal governance initiatives related to penetration testing.

________________________________________

What You Bring

- Experience in security program management, penetration testing operations, or vulnerability management.

- Robust familiarity with Jira or similar workflow/tracking systems.

- Excellent communication and coordination skills across engineering, security, and vendor teams.

- Robust organizational skills, attention to detail, and ability to drive accountability and consistency.

- Understanding of offensive security concepts and industry standards (e.g., OWASP, NIST).

 
qualifications:
Required Qualifications: 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work or consulting experience, training, military experience, education.

What You'll Do

Remediation Validation & Tracking (Primary Focus)

- Serve as the central owner for the remediation validation process across all third party and internal penetration test findings.

- Create, assign, and manage Jira validation tickets to ensure every finding is properly tracked through closure.

- Oversee the full validation lifecycle-monitoring progress, identifying blockers, escalating delays, and driving timely completion.

- Collaborate with remediation owners to clarify requirements, ensure evidence quality, and verify reproducibility of fixes.

- Provide recurring updates to leadership on validation status, overdue items, systemic risks, and cross team remediation performance.

- Ensure closure documentation is complete, accurate, and compliant with program standards.

________________________________________

Penetration Test Engagement Management

- Manage third party penetration testing engagements from initiation to closure.

- Lead scoping sessions to define test objectives, environment requirements, and timelines.

- Coordinate tester onboarding, including account creation, access provisioning, and environment preparation.

- Track communication during active testing, resolving issues and ensuring smooth execution.

- Host debrief sessions with testers and internal teams to confirm understanding of findings and remediation expectations.

________________________________________

Reporting & Documentation

- Receive, review, and process penetration test reports from third party vendors.

- Enter validated findings into the Security Findings Tracking Tool (SFTT) or designated platforms.

- Ensure consistent, accurate, and complete documentation of findings, severity ratings, and business impact.

________________________________________

Report Quality Assurance

- Assign test reports to QA reviewers and oversee QA workflow management.

- Monitor QA related Jira tickets to ensure timely review, escalation, and closure.

- Validate that reports meet program standards for clarity, reproducibility, completeness, and quality.

- Collaborate with testers and internal stakeholders to address inconsistencies, request revisions, and maintain quality controls.

________________________________________

Monthly Reporting & Metrics

- Run and distribute monthly penetration testing and remediation metrics reports.

- Summarize key insights including testing volume, findings trends, and remediation progress.

- Maintain consistent reporting archives and support leadership with data driven insights.

________________________________________

Continuous Improvement

- Identify opportunities to enhance program workflows, templates, validation standards, and operational processes.

- Analyze recurring issues and trends to drive process improvements and reduce risk exposure.

- Support audits, compliance reviews, and other internal governance initiatives related to penetration testing.

________________________________________

What You Bring

- Experience in security program management, penetration testing operations, or vulnerability management.

- Robust familiarity with Jira or similar workflow/tracking systems.

- Excellent communication and coordination skills across engineering, security, and vendor teams.

- Robust organizational skills, attention to detail, and ability to drive accountability and consistency.

- Understanding of offensive security concepts and industry standards (e.g., OWASP, NIST).


Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact HRsupport@randstadusa.com.

Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including: medical, prescription, dental, vision, AD&D, and life insurance offerings, short-term disability, and a 401K plan (all benefits are based on eligibility).

This posting is open for thirty (30) days.