Description
We are seeking an experienced
Technical Portfolio Manager
to lead a critical
modernisation programme
focused on
cybersecurity enhancements
and
vulnerability management
. This role will oversee a portfolio of projects aimed at modernising our technology landscape, strengthening security postures, and addressing key vulnerabilities across systems and infrastructure. The successful candidate will work closely with technical teams, security experts, and senior stakeholders to ensure the delivery of a secure, resilient, and future-proof technology environment.
Key Responsibilities:
Portfolio Management:
Lead and manage the end-to-end delivery of the cybersecurity and modernization programme, ensuring alignment with business goals and regulatory standards.
Project Oversight:
Oversee multiple concurrent projects focused on cybersecurity improvements, vulnerability remediation, and technology upgrades.
Risk and Vulnerability Management:
Work with security and technical teams to prioritize projects based on threat intelligence, risk assessments, and identified vulnerabilities.
Stakeholder Collaboration:
Engage with security teams, IT leadership, and external vendors to coordinate efforts and ensure seamless delivery.
Governance and Reporting:
Establish portfolio governance, track progress against KPIs, and present status reports to senior leadership and steering committees.
Budget and Resource Management:
Manage portfolio budgets, forecast resources, and control costs effectively.
Compliance and Security:
Ensure all projects adhere to security frameworks and regulatory compliance standards (eg, NIST, ISO 27001).
Continuous Improvement:
Promote a culture of continuous improvement, incorporating lessons learned into future projects.
Qualifications and Experience:
Bachelor's degree in Information Technology, Cybersecurity, or a related field.
Minimum of
7 years' experience
in portfolio or program management, with a focus on
cybersecurity, IT modernization, or infrastructure upgrades.
Strong understanding of
cybersecurity frameworks, vulnerability management, and threat modeling.
Experience with security tools and technologies (eg, SIEM, vulnerability scanners, endpoint protection).
Knowledge of cloud security (AWS, Azure, or GCP) and modern infrastructure environments.
Familiarity with
regulatory standards
such as
ISO 27001, NIST, GDPR, or PCI-DSS.
Proficiency in project management tools (eg, JIRA, MS Project, ServiceNow).
Experience working with Agile, Waterfall, or hybrid delivery methodologies.
Certifications (Preferred):
PMP, Prince2, or PMI-PgMP
(Portfolio Management)
CISSP, CISM, or CISA
(Cybersecurity Certifications)
SAFe, Scrum, or Agile certifications
Key Competencies:
Strong leadership and decision-making skills
Exceptional communication and stakeholder management abilities
Analytical and problem-solving mindset
Ability to manage complex, cross-functional projects under pressure