Job Description

Reading

Role Purpose

The Senior Cybersecurity Project Manager leads end-to-end tactical cyber remediation projects that reduce risk and enable the Target Operating Model (TOM) across IT and OT. The role owns project delivery through EPM, agile execution via Azure DevOps (ADO), and governance/compliance through PTDA (Project Triage & Delivery Assurance), ensuring artefacts, controls and approvals meet enterprise and regulatory standards.

Key Responsibilities
1) End‑to‑End Delivery & Governance
Plan and manage cybersecurity projects from initiation to closure under the tactical workstream (scope, schedule, cost, quality, resources).
Register and manage projects in EPM: initiation, business case inputs, financials, milestones, RAID, benefits, and status.
Lead projects through PTDA gates (initiation, design, build, test, implement, closure), ensuring required artefacts, approvals, and evidence packs are complete.
Enforce Change Control governance and Change Control Board (CCB) processes (impact assessment, risk/rollback, approvals, comms).
Maintain audit‑ready documentation across all lifecycle phases.
2) Risk Remediation & TOM Alignment
Drive remediation outcomes across domains (Network/Segmentation, Identity/IAM, Endpoint, Cloud, Vulnerability Mgmt, GRC, SecOps, OT security).
Translate findings (audits, assessments, pen tests, risk registers) into executable workstreams with measurable risk reduction.
Align delivery with cyber resilience strategies, regulatory obligations (e.g., NIS‑D/NIS2 context for OT), and TOM capabilities.

3) Stakeholder & Vendor Management

Coordinate cross‑functional delivery (Cyber, Digital, Engineering, IT/OT Ops, Architecture, SecOps, Controls, Audit, 3rd‑party vendors).
Manage vendor SOWs, deliverables, acceptance criteria, runbooks, and SLAs; oversee commercials and performance.

4) Tooling & Reporting (ADO / EPM / Power BI)

Orchestrate epics, features, user stories, sprint plans, and dependencies in Azure DevOps (ADO).
Maintain accurate delivery data in EPM and publish Power BI dashboards (status, KPIs, risk posture, PTDA readiness).
Provide exec‑level reporting: progress, risk/issue trends, dependencies, capacity, and decision requests.

5) Quality, Assurance & Change Readiness

Collaborate with BA and Solution Architects to ensure clear requirements, solution options, design decisions, test strategy, and deployment plans.
Ensure test evidence, acceptance, and handover to BAU are complete (support model, SOPs, controls runbooks, training, measurements).
Proactively identify delivery blockers and lead mitigation/escalation.

͏

Key Deliverables
Project Charter / PID; Delivery Plan & Schedule
RAID, Decision Log, Dependency Map
EPM records (financials, milestones, status)
PTDA artefacts & Evidence Pack (per gate)
Change Requests & CCB approvals
Cutover/Implementation Plan & Back‑out Plan
Power BI status dashboards and executive packs
Handover to BAU (SOPs, support model, control KPIs)

Required Skills & Experience
10+ years project management in Cybersecurity/IT Risk (IT & preferably OT).
Proven delivery of cyber remediation initiatives in complex, regulated environments.
Hands‑on with Azure DevOps (ADO) (boards, epics/stories, sprint mgmt) and EPM (portfolio/project lifecycle).
Strong experience with PTDA or equivalent enterprise delivery/assurance frameworks.
Mastery of change control governance and CCB processes.
Familiarity with security frameworks (e.g., NIST CSF, ISO 27001, CIS Controls), and audit/assurance practices.
Vendor/SI management and commercial oversight experience.
Excellent communication with senior stakeholders; strong facilitation and report writing.

Preferred Qualifications
PMP / PRINCE2 / MSP / Agile‑Scrum certifications.
Security certifications (CISM, CISSP, CRISC, Security+) desirable.
Experience with Power BI, Confluence/SharePoint, and Visio.

Success Measures / KPIs
PTDA gate pass rate (on‑time, first‑time approval).
% of risks remediated and risk reduction achieved vs. baseline.
Milestone adherence and schedule variance.
Quality of artefacts (audit‑ready, evidence completeness).
Change success rate (no‑fault change %, incidents/rollbacks).
Stakeholder satisfaction (survey/NPS).
Effective handover to BAU and control sustainability.

Personal Attributes
Delivery‑focused, structured, and calm under pressure.
Influences without authority; constructively challenges blockers.
Clear, succinct communicator with exec presence.
Collaborative and resilient; high integrity and ownership.

͏