Program Manager, CISO Remediations

About the job

A problem isn’t truly solved until it’s solved for all. That’s why Googlers build products that help create opportunities for everyone, whether down the street or across the globe. As a Program Manager at Google, you will lead complex, multi-disciplinary projects from start to finish — working with stakeholders to plan requirements, manage project schedules, identify risks, and communicate clearly with cross-functional partners across the company. Your projects will often span offices, time zones, and hemispheres. It's your job to coordinate the players and keep them up to date on progress and deadlines.

Our goal is to build a Google that looks like the world around us — and we want Googlers to stay and grow when they join us. As part of our efforts to build a Google for everyone, we build diversity, equity, and inclusion into our work and we aim to cultivate a sense of belonging throughout the company.

As a Program Manager, Risk Remediations Team Member, you will drive the execution of remediation efforts across a broad spectrum of risk areas within Google Cloud. This role involves collaborating with cross-functional teams to drive progress and address identified vulnerabilities, implement corrective actions, and enhance the overall risk and compliance posture of our critical systems and infrastructure.

Google Cloud accelerates every organization’s ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google’s cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.

Responsibilities:

• Develop and implement comprehensive remediation plans to address identified technical risks, ensuring timely and effective mitigation of vulnerabilities.
• Partner with engineering, security, and operations teams to coordinate remediation activities, track progress, and ensure alignment with overall risk management objectives.
• Collaborate with security teams to prioritize and track remediation efforts for identified vulnerabilities, leveraging vulnerability management tools and processes.
• Develop and maintain key performance indicators (KPIs) and metrics to track the effectiveness of remediation efforts and communicate progress to stakeholders.
• Identify opportunities to enhance remediation processes, tools, and techniques, driving continuous improvement in our approach to risk mitigation.

Minimum qualifications:

• Bachelor's degree or equivalent practical experience
• 5 years of experience in program management.
• 5 years of experience in information security or IT risk management roles, with a focus on remediation and vulnerability management.
• Experience with security or privacy domain.

Preferred qualifications:

• Experience in one or more of the following: data protection, threat modeling, incident/emergency response, security risk mitigation or evaluation, OS hardening, vulnerability management, penetration testing, access management, or cryptographic concepts.
• Experience with industry frameworks and standards such as NIST CSF, ISO 27001, and CIS Controls.
• Experience in problem solving in a fluid environment.
• Knowledge of Security capabilities of Cloud products.
• Ability to be an influential leader of a team composed of both technical and non-technical members.

Benefits: 

• Health and Wellbeing (Medical, dental, and vision insurance for employees and dependents)
• Financial wellbeing (Competitive compensation, regular bonus and equity refresh opportunities)
• Flexibility and time off (Paid time off, including vacation, bereavement, jury duty, sick leave, parental leave, disability, and holidays)
• Family support and care (Fertility and growing family support, parental leave and baby bonding leave)
• Community and personal development (Educational reimbursement)
• Googley extras (Inspiring spaces to work, recharge, and collaborate with fellow Googlers)