×
Register Here to Apply for Jobs or Post Jobs. X

Program Manager - Exposure Management

Job in Atlanta, Fulton County, Georgia, 30301, USA
Listing for: Southern Company
Full Time position
Listed on 2026-07-02
Job specializations:
  • IT/Tech
    Cybersecurity, IT Project Manager
Job Description & How to Apply Below

Exposure Management Program Manager

Southern Company is seeking a highly organized, execution-focused Program Manager to help drive delivery and operational effectiveness across the enterprise Exposure Management program. This role will report to cybersecurity leadership and serve as an operational lead, ensuring strategic priorities are translated into clear plans, measurable outcomes, and reliable execution. This is a primarily on-site role with 4 days per week in-office presence expected.

This position directly supports Southern Company's mission to identify, prioritize, and reduce cyber risk across its critical electric and gas utility infrastructure, operational technology environments, enterprise IT systems, and digital assets. The role partners closely with Cybersecurity, Technology, Infrastructure, Application teams, and business stakeholders to enable cross-functional alignment and consistent delivery of exposure reduction efforts.

The Exposure Management Program Manager will coordinate and drive execution across a portfolio of initiatives focused on vulnerability management, CTEM, exposure validation, attack surface visibility, prioritization, remediation tracking, and continuous improvement. This role is expected to help operationalize Continuous Threat Exposure Management (CTEM) efforts by connecting visibility, prioritization, validation, mobilization, and remediation activities into a repeatable program. Success in this role requires strong program management fundamentals, planning, governance, stakeholder alignment, metrics, and continuous improvement combined with the ability to operate in a highly regulated, mission-critical enterprise environment.

This role ensures disciplined delivery through clear roadmaps, defined milestones, and outcome-based measurement to achieve predictable results and ongoing exposure management maturity.

Job Responsibilities:

  • Execute the enterprise Exposure Management and CTEM program roadmap in alignment with strategic direction set by cybersecurity leadership.
  • Manage integrated program plans across vulnerability management, CTEM, exposure assessment, validation, remediation, and reporting initiatives, including milestones, dependencies, risks, and delivery timelines.
  • Establish and maintain program operating rhythms, including status reporting, risk and issue management, and action item tracking.
  • Implement and maintain operating models, workflows, and procedures to support effective and repeatable exposure management program execution.
  • Coordinate cross-functional delivery efforts across Cybersecurity, Technology, Infrastructure, Application, and business teams to ensure alignment and timely execution.
  • Ensure initiatives are operationally ready prior to scale or enforcement, including documented processes, escalation paths, communications, and stakeholder alignment.
  • Support enterprise efforts to define, implement, and govern risk-based prioritization models for vulnerabilities and exposures across on-prem, cloud, OT, and hybrid environments.
  • Support the design and execution of CTEM operating rhythms by coordinating activities across visibility, prioritization, validation, mobilization, and remediation functions.
  • Partner with validation and offensive security teams to support continuous testing efforts that confirm whether prioritized exposures are exploitable, materially impactful, and appropriately remediated.
  • Coordinate continuous offensive security validation activities, including purple team style assessments, adversary emulation informed testing, or other validation efforts that improve confidence in exposure prioritization and remediation decisions.
  • Drive ongoing maturity of exposure management capabilities by coordinating adoption, tuning, and remediation workflows to reduce risk while minimizing business friction.
  • Coordinate remediation activities for identified exposures, including vulnerabilities, misconfigurations, unsupported assets, weak controls, and externally visible risks.
  • Partner with security operations, threat intelligence, validation, and offensive security teams to support exposure triage, prioritization, escalation workflows, and continuous validation of control effectiveness.
  • Develop and maintain program metrics, dashboards, and reporting related to delivery progress, operational effectiveness, and exposure reduction outcomes.
  • Support governance, change management, and exception processes for exposure management policies, standards, and enforcement actions.
  • Promote a culture of accountability, collaboration, and continuous improvement across exposure management program stakeholders.

Requirements and

Qualifications:

Minimum:

  • Proven experience managing cybersecurity or technology programs for large‑scale enterprise initiatives.
  • 5+ years of experience in program management, cybersecurity operations, or technology delivery roles.
  • Experience coordinating or supporting exposure management capabilities such as vulnerability management, CTEM, attack surface management,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary