About the Role
Cyber Security Project Managers play a pivotal part in overseeing regulatory engagements, managing Cyber Defence inspections and assessing the impact of regulations on business functions.
Key Responsibilities:
* Manage and schedule penetration tests across various business units, aligning with operational timelines.
* Facilitate operational meetings to engage stakeholders, provide status updates, track dependencies and resolve blockers for wider Cyber Security team.
* Ensure all key stakeholders are kept informed of testing progress, outstanding risks and using testing activities.
* Monitor changes in cyber security regulations such as DORA, NYDFS, and especially requirements around TLPT (Threat-Led Penetration Testing).
* Maintain accurate tracking of all penetration test requests, execution plans and remediation status using project tracking.
* Create and update high-quality slide decks and reporting packs for governance forums, steering committees and senior leadership reviews.
* Drive continuous improvement in security testing processes, communication workflows and stakeholder engagement practices.
* Leverage existing tooling and dashboards to support metrics, reporting and governance visibility.
Requirements
* Experience in managing cyber security or IT risk projects ideally within a regulated sector such as banking or insurance.
* Strong understanding of penetration testing red teaming and threat-led penetration testing processes.
* Familiarity with key regulations including DORA, NYDFS and TLPT frameworks.
* Ability to communicate effectively with both technical and non-technical stakeholders.
* Proven ability to create professional reports and slide decks for senior stakeholders.
* Strong organisational skills with attention to detail and ability to manage multiple tasks concurrently.
* Proficiency in tools like MS PowerPoint Excel Jira Confluence or similar project tracking systems.
* Project Management certification PMP Prince2 preferred but not mandatory.
* Cybersecurity certifications are advantageous but not mandatory.