Manager, Information Security (Program Management) - Hybrid

What you'll need to succeed as a Manager, Information Security at XPO

Minimum qualifications:

• Bachelor's degree or equivalent related work or military experience
• 5 years of experience leading, driving, and delivering IT projects with multiple integrated work streams.
• 3 years of leading, managing, and developing a team.
• Management consulting experience that includes project management, strategy and planning, leadership roles, client management, and vendor management.
• Experience leading Information Security transformation projects that involve building an Information Security organization and strengthening the enterprise security posture.
• Knowledge of IT security technology and delivery aspects in Cloud computing, Cloud security, Threat Vulnerability Management, Security Framework, Security Policies and Standards, Identity & Access Management, Data Loss Prevention, Risk Analytics platform, Network Security, BC/DR Management, Security Operations, SIEM platforms, advanced Email protection, Risk Evaluations, Security Governance & Compliance controls, and NIST.
• Knowledge of cyber security compromise assessments and strategies
• Knowledge of Information Security governance frameworks
• PMP certified.
• Demonstrated experience in delivering full life cycle projects with different methodologies, such as waterfall, Agile, Kanban.
• Strong communication and stakeholder management skills to navigate a dynamic organization.
• Excellent presentation, speaking and written communication skills to manage communication with a diverse group of stakeholders at all organization levels.
• Advanced proficiency in Microsoft Office, including MS Project, Word, Excel, PowerPoint.
• Highly analytical, detail-oriented, and strong problem solving with a common-sense approach to resolving problems.
• Able to conduct and facilitate workshops when needed.

Preferred qualifications:

• Master's degree in an information technology or engineering related field
• 12+ years of experience leading, driving, and delivering IT projects with multiple integrated work streams.
• Experience with application and network scanning tools and approaches
• Experience with contract renewals and budgeting
• Experience within vendor management
• Experience leading human risk, insider threat, and phishing campaigns
• Experience with cyber security AI-driven analytics dashboards.
• Skills to motivate and drive a team of business and IT professionals.
• Possesses relevant security certifications such as CISSP, CISM or CISA.
• Experience in a fast-paced, startup environment.

About the Manager, Information Security job

Pay, benefits and more:

• Competitive compensation package
• Full health insurance benefits available on day one
• Life and disability insurance
• Earn up to 15 days of PTO over your first year
• 9 paid company holidays
• 401(k) option with company match
• Education assistance
• Opportunity to participate in a company incentive plan

What you'll do on a typical day:

• Deliver Information Security projects by researching, planning, communicating, and coordinating across the InfoSec team and other XPO departments.
• Manage project managers and coordinators for project management delivery excellence.
• Plan, lead and deliver programs that identify access risks and issues, define and drive mitigations plans and coordinate communication, production readiness and transition plans across all Infosec teams.
• Understand how different information security projects interlink and overlap. Identify and manage cross project dependencies and resolve conflicts.
• Work with other XPO departments to manage staff and resources for projects.
• Ensure key Incident Response Readiness initiatives are managed effectively.
• During crisis situations, step in and lead designated Incident Response work streams as directed.
• Partner closely with our Vendor Management Office to ensure information security tools and services purchases and renewals are completed efficiently and collaboratively.
• Collaborate and coordinate geographically dispersed project teams and business stakeholders to deliver security projects.
• Maintain strong confidence of Infosec leadership and internal stakeholders throughout the project implementation process.
• Under direction, manage all aspects of an SDLC process including project timelines, scope, budgets, reporting on fund allocation, resources, and delivery.
• Report on program performance to executive and leadership team.
• Identify opportunities and best practices for continual process improvements for Information security initiatives.

About XPO

XPO is a top ten global provider of transportation services, with a highly integrated network of people, technology and physical assets. At XPO, we look for employees who like a challenge and can communicate effectively in all situations. We want to leverage your skills and years of experience to drive positive results while ensuring a bright future for yourself and XPO. If you're looking for a growth opportunity, join us at XPO.

We are proud to be an Equal Opportunity/Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, sex, disability, veteran or other protected status.

All applicants who receive a conditional offer of employment may be required to take and pass a pre-employment drug test.

The above statements are not an exhaustive list of all required responsibilities, duties and skills for this job classification.

Review XPO's candidate privacy statement here.