Manager, Digital Security & Risk

Manager, Digital Security & Risk

Are you a dreamer, innovator, thinker and a do-er who believes in contributing to something that makes a difference? Pursue your passion. Join PMI.

How You’ll Make a Difference

You will be responsible for shaping, executing, and continuously advancing Project Management Institute’s cybersecurity, governance/risk/compliance (GRC), threat management, third-party risk, and security enablement programs across both product development and technology infrastructure (data center + cloud). Providing operational oversight and cross-functional leadership to ensure the protection, resilience, and ethical use of technology across the enterprise. Partnering closely with senior leadership, technology teams, and key business units to ensure that security requirements are integrated into technology roadmaps, architecture decisions, and operational processes.

Key Functional Areas

Cybersecurity Strategy & Governance

• Define, maintain, and enforce security and risk policies, standards, and procedures consistent with industry best practices.
• Establish AI security standards and guardrails for secure design, development, deployment, and use of AI systems (including model access, data handling, retention, and monitoring).

Security Operations & Technology

• Lead risk management, vulnerability management, incident response, threat intelligence, and security awareness functions.
• Monitor emerging threats, industry trends, and new technologies to proactively enhance the organization's security posture.

Compliance, Audit & Risk Management

• Lead security audit readiness efforts and manage internal and external audit activities.
• Ensure strong data governance, including data protection, retention, and privacy controls aligned with regulatory and customer requirements.

Leadership, Collaboration & Culture

• Lead and develop a high performing team of security professionals, fostering continuous improvement and accountability.
• Collaborate with IT, Legal, HR, Compliance, Marketing, Product, and other business units to embed risk-based security practices across the enterprise.

What You’ll Bring to the Role

• Bachelor's degree in Information Security, Information Technology, Computer Science, or related field (or equivalent experience) preferred.
• 10+ years of professional work experience in an Information Technology discipline with a focus on Information Security preferred.
• Broad knowledge of IT and security controls in various application and infrastructure platforms including network, system platforms, storage, directory services, and end user computing.
• Experience developing actionable technology components and systems designs.
• Strong experience in related areas of Information Security Engineering, Architecture, Security Design, Security Operations, and IT.
• Strong knowledge of regulatory standards and frameworks (ISO 27001, NIST CSF, PCI-DSS, GDPR, etc.).
• Demonstrated experience designing and operating security controls across cloud, network, systems, identity, endpoints, and data platforms.
• Excellent executive communication and influencing skills with the ability to translate risk into business impact and decision options.
• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or similar certifications preferred.

What you can expect from us

We value and nurture an environment of inclusivity and diversity, and a culture of communication and collaboration. Your health, safety and well-being come first, and we believe that you should have time for your work, but you should also have time for you..

Join Us And You’ll Get

• an excellent total package, with compensation and benefits based upon your geographic location.
• skill development opportunities, to help you grow now and into the future.
• access to a global network, to enrich your professional experience.
• flexible options to help balance work time and your time.
• award and bonus opportunities.

The salary offer will be based on several factors, including the candidate’s demonstrated skills, qualifications and relevant experience.

Let’s help make the world work better for everyone. Apply today!

Project Management Institute, Inc. is committed to providing equal employment opportunities without regard to sex, gender identity, sexual orientation, race, color, religious creed, national origin, physical or mental disability, protected veteran status, or any other characteristic protected by applicable law.

Key skills/competency

• Cybersecurity Strategy
• Governance, Risk, and Compliance (GRC)
• Threat Management
• Third-Party Risk
• AI Security Standards
• Incident Response
• Data Governance
• Cloud Security
• ISO 27001 / NIST CSF
• Executive Communication